EgyScan is an advanced vulnerability scanning tool designed to identify potential security risks in your website. Our comprehensive scanning capabilities help you address key vulnerabilities, ensuring the protection of your valuable data.

• Thorough Scanning: EgyScan performs a wide range of checks to identify common vulnerabilities, including:

  • SQL Injection
  • Remote Code Execution
  • Cross-Site Scripting (XSS)
  • Local File Inclusion (LFI)
  • Open Redirect
  • Backup Files
  • Database Exposure
  • Directory Listings
  • Sensitive Information Exposure
  • XML External Entity (XXE) Injection
  • Server-Side Request Forgery (SSRF)
  • Remote File Inclusion (RFI)
  • Log File Disclosure
  • Insecure Direct Object Reference (IDOR)
  • Cross-Origin Resource Sharing (CORS)
  • Cross-Site Request Forgery (CSRF)
  • Command Injection
  • File Upload Vulnerabilities
  • Authentication Bypass
  • Insecure Configuration
  • Server Misconfiguration
  • Injection Flaws
  • Weak Session Management
  • Clickjacking
  • Host Header Injection
  • Remote File Execution
  • Brute Force Attacks
  • Security Misconfiguration
  • Missing Authentication
  • CRLF Injection
  • Session Fixation
  • Unvalidated Redirects
  • Command Execution
  • Cross-Site Tracing
  • Server-Side Template Injection
  • File Inclusion
  • Privilege Escalation
  • XML Injection
  • Weak Cryptography
  • Deserialization Vulnerabilities
  • Server-Side Request Forgery (SSRF)

• URL Collection: EgyScan collects URLs from your target website by crawling web pages and extracting links.

• Payload Injection: The tool injects payloads into parameters, query strings, and form inputs of the collected URLs to test for vulnerabilities.

• Multithreading: EgyScan utilizes a thread pool to parallelize scanning and payload injection processes, enhancing performance.

• User-Agent Randomization: The tool randomly selects a User-Agent header from a predefined list for each HTTP request, aiding in bypassing certain security measures.

• Logging and Output: EgyScan logs scanning results with different log levels (INFO, WARNING, ERROR) and provides colorful output for improved readability.

Don't leave your website vulnerable to threats. Contact us today to fortify your defenses and ensure the security of your valuable data!

• Python 3.x
• requests library
• bs4 (BeautifulSoup) library
• colorama library
• tqdm library

1. Clone the repository:

   git clone https://github.com/dragonked2/Egyscan.git

2. Install the required dependencies:

   pip install -r requirements.txt

1. Run the tool:

   python egy.py

2. Enter the target URL to scan for vulnerabilities.

This tool is intended for educational purposes only. Use it responsibly and only on websites that you have permission to test.

This project is licensed under the MIT License. See the LICENSE file for details.

Contributions to improve and enhance the tool are welcome. Feel free to submit issues and pull requests.

EgyScan V2.0 was developed by [AliElTop].