Version 0.03

A Python GUI application for scanning websites for their frameworks and detecting vulnerabilities off them.

1. Install and upgrade virtualenv if not already done by executing pip3 install virtualenv --user
2. Clone the repository on your local drive and make it your current working directory.
3. Create a virtual environment by executing virtualenv venv
4. Activate the virtual environment by executing source venv/bin/activate
5. Install all dependencies for the project by executing pip3 install -r requirements.txt
6. Run the project by executing python3 fwvulgui.py
7. Scan URLs for framework one-by-one by typing them in the textbox.
8. Scan URLs for framework in a batch by indicating a text file storing them linewise.
9. When done tinkering, deactivate the virtual environment by executing deactivate
10. Give stars to the repository if it was helpful

• Build GUI and prototype UX for loopholes
• Add scanning function for single URL through text entry
• Add scanning function for multiple URLs through file reading
• Add timer function to note the duration for scanning
• List down all tracked frameworks
• Add clear button for all line edit boxes
• Add file picker module for text files
• Add scrapped data about vulnerabilities
• List down vulnerabilities for all tracked frameworks
• Make miscellaneous bug fixes

1. Initial build
2. Built a robust GUI and checked loopholes
3. Resolved dependencies on data.json
4. Added functionality to scan single URL

1. Added functionality to scan multiple URLs
2. Added timer function for scan time calculation
3. Handled exception where URLs could not be found
4. Added warning messages

1. Switched fontface to improve legibility
2. Added clear button for all line edit boxes
3. Added message for timing and scan success
4. Added branched dictionary for multiple URLs

To be decided

• Default window layout with no action (v0.03 onwards)
• Single URL scan for framework detection (Results from t0xic0der.netlify.com) (v0.03 onwards)
• Multiple URL scan through batch file input (v0.03 onwards)

1. Scanning some URLs might take very long
2. Some domains have abstracted frameworks so a scan results nothing