Skip to content

manyahhh07/VaultScanner

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

VaultScanner — Security Reconnaissance & Vulnerability Analysis Platform

Full-stack cybersecurity reconnaissance platform featuring port scanning, banner grabbing, subdomain enumeration, HTTP header analysis, and SSL/TLS security auditing.

Built with Python + Flask, focused on network reconnaissance, web security analysis, and lightweight vulnerability assessment workflows.

Python Flask Security Recon License

---

Features

  • Port Scanner — Detects open ports across configurable ranges
  • Banner Grabbing — Captures exposed service banners from discovered ports
  • Subdomain Enumeration — DNS-based hidden subdomain discovery
  • HTTP Header Analysis — Detects missing security headers and information leaks
  • SSL/TLS Analysis — Audits certificates, ciphers, and protocol configuration
  • Full Scan Pipeline — Unified reconnaissance workflow across all modules
  • Input Validation System — Handles malformed URLs, invalid domains, and IP errors
  • Responsive Dashboard UI — Security-focused interface with real-time scan feedback
  • Lightweight Architecture — Pure Flask + Vanilla JavaScript implementation

Screenshots

Homepage UI

VaultScanner Homepage

Modules Empty State

VaultScanner Empty State

Port Scanner + Subdomain Enumeration

Port Scan and Subdomain Results

HTTP Header Analysis + SSL/TLS Analysis

Header and SSL Analysis

Detailed Security Findings

Detailed Security Findings

Full Scan Report

Full Scan Report

Invalid Domain Error Handling

Invalid Domain Error

Invalid IP Validation

Invalid IP Error

Malformed URL Error Handling

Malformed URL Error


Core Modules

Port Scanner

Features:

  • Common/top-range scanning
  • Custom port range support
  • Open-port detection
  • Multi-threaded scanning
  • Service banner extraction

Banner Grabbing

Captures:

  • HTTP server banners
  • Service signatures
  • Exposed software metadata
  • Protocol responses

Subdomain Enumeration

Supports:

  • DNS resolution checks
  • Hidden subdomain discovery
  • Common wordlist probing
  • Recursive subdomain scanning

HTTP Header Analysis

Detects:

  • Missing CSP headers
  • Weak security policies
  • Clickjacking exposure
  • Missing HSTS
  • Sensitive header leakage

SSL/TLS Analysis

Audits:

  • Certificate validity
  • TLS protocol support
  • Cipher configuration
  • Expiry information
  • SSL misconfiguration

Full Scan Pipeline

Target Input
      ↓
Validation Layer
      ↓
Port Scanning
      ↓
Banner Grabbing
      ↓
Subdomain Enumeration
      ↓
Header + SSL Analysis
      ↓
Security Findings Aggregation
      ↓
Report Generation

Tech Stack

Layer Technology
Backend Python 3
Framework Flask 3.x
Networking socket
SSL Analysis ssl
Concurrency concurrent.futures
URL Handling urllib
Frontend HTML5, CSS3, Vanilla JavaScript
Architecture Modular security scanner

Project Structure

vaultscanner/
├── app.py
├── requirements.txt
├── templates/
│   └── index.html
├── static/
│   ├── css/
│   │   └── style.css
│   └── js/
│       └── main.js
├── screenshots/
│   ├── homepage-ui.png
│   ├── modules-empty-state.png
│   ├── portscan-subdomain-results.png
│   ├── header-ssl-analysis-results.png
│   ├── detailed-security-findings.png
│   ├── full-scan-report.png
│   ├── invalid-domain-error.png
│   ├── invalid-ip-error.png
│   └── malformed-url-error.png
└── README.md

API Endpoints

Method Endpoint Description
POST /api/scan/ports Port scanning
POST /api/scan/subdomains Subdomain enumeration
POST /api/scan/headers HTTP header analysis
POST /api/scan/ssl SSL/TLS audit
POST /api/scan/full Full reconnaissance scan

Port Range Options

Mode Description
common 20 most common ports
top100 Ports 1–100
1-1024 Well-known ports
1-65535 Full-range scan

Getting Started

Prerequisites

  • Python 3.8+
  • pip

Installation

# 1. Clone the repository
git clone https://github.com/YOUR_USERNAME/VaultScanner.git

# 2. Enter project directory
cd VaultScanner

# 3. Install dependencies
pip install -r requirements.txt

Run Application

python app.py

Open:

http://localhost:5000

Security Features

Includes detection for:

  • Missing security headers
  • SSL/TLS weaknesses
  • Exposed services
  • Open-port exposure
  • Misconfigured servers
  • Information leakage
  • Invalid target handling

Technical Highlights

Multi-Module Scan Pipeline

Combines multiple reconnaissance systems into a unified vulnerability assessment workflow.

Concurrent Scanning

Uses thread pools for faster port enumeration and network operations.

Validation Layer

Prevents:

  • Malformed URL scans
  • Invalid IP requests
  • Broken domain handling
  • Unsafe target parsing

Lightweight Security Architecture

No external scanning frameworks required — implemented directly with Python standard libraries.


Concepts Demonstrated

  • Cybersecurity Fundamentals
  • Network Reconnaissance
  • Port Scanning
  • SSL/TLS Analysis
  • Web Security Auditing
  • Concurrent Programming
  • Flask Backend Engineering
  • Full-Stack Security Tooling

Legal Disclaimer

Only scan systems you own or have explicit written permission to test.

Unauthorized scanning may violate laws or terms of service in your jurisdiction.


Future Improvements

  • CVE database integration
  • Nmap integration
  • WHOIS analysis
  • OS fingerprinting
  • Exportable PDF reports
  • Authentication system
  • Docker deployment
  • Distributed scanning workers

License

MIT © Manya Singh

About

Full-stack cybersecurity reconnaissance platform built with Python and Flask. Features port scanning, banner grabbing, subdomain enumeration, HTTP header analysis, SSL/TLS auditing, and a unified vulnerability assessment pipeline.

Topics

Resources

Stars

0 stars

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors