Skip to content

Harshal-behare/Vulnerability--Assessment-Framework

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
README.md
README.md
 
 
app.py
app.py
 
 
index.html
index.html
 
 
results.html
results.html
 
 
scans.html
scans.html
 
 

Repository files navigation

Vulnerability--Assessment-Framework

a robust backend using Python to handle the core functionalities of the vulnerability assessment framework.

INTRODUCTION

Our team has designed a framework for the vulnerability scans where the user is required to paste the URL of the website he/she is going to check for its vulnerability and flaws. Our framework ensures to deliver out the true and up to date information about the flaws in a very unique way. Besides getting the vulnerability scan, user gets a description about the vulnerability so that he/she can check and work on it. It also shows how vulnerable your site is as low, medium, high risk using various colors.

TOOLS AND LIBRARIES USED

Flask:

A micro web framework for Python. Handles routing (@app.route) and HTTP requests (request object). Renders HTML templates (render_template function).

SQLAlchemy:

Object-Relational Mapping (ORM) library for Python. Manages database models (Scan, Alert, NmapResult). Handles database connections and queries (db.session).

Flask-Migrate:

Extension for Flask to handle database migrations. Simplifies the process of applying and managing database schema changes.

ZAPv2 (OWASP ZAP):

Open-source web application security scanner. Integrated for performing active and passive scans (zap.ascan and zap.pscan). Retrieves security alerts (zap.core.alerts).

nmap:

Network exploration tool and security/port scanner. Used to perform network scans (nmap.PortScanner()).

Files and Directories:

App Initialization:

app = Flask(_name_, static_folder=r"C:\Users\(user's computer directory where template is stored)"): Defines the Flask application and specifies the static file directory.

Database Configuration:

app.config['SQLALCHEMY_DATABASE_URI']: Specifies the SQLite database location. app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False: Disables SQLAlchemy modification tracking.

Database Models:

Defines three database models (Scan, Alert, NmapResult) using SQLAlchemy ORM.

Routes:

/: Serves the index.html file from the specified static directory. /scan: Endpoint for initiating a scan, handling both ZAP and nmap scans, storing results in the database, and rendering a results template. /scans: Displays a list of scan records from the database.

Templates:

index.html: Main HTML file served by the application. results.html: Template for displaying scan results. scans.html: Template for displaying a list of scan records.

Files and Directories Overview:

Static Files:

Located at C:\Users\(user's computer directory where template is stored). Contains static assets like CSS, JavaScript, and index.html.

Database File:

SQLite database file (zap_scans.db). from flask import Flask, request, jsonify, render_template, send_from_directory from zapv2 import ZAPv2 from flask_sqlalchemy import SQLAlchemy import os import time from flask_migrate import Migrate import nmap

app = Flask(name, static_folder=r"C:\Users\nehal\AppData\Roaming\Microsoft\Windows\Templates")

Database configuration

app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///zap_scans.db' app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False db = SQLAlchemy(app) migrate = Migrate(app, db)

Initialize ZAP API client

zap = ZAPv2(apikey='6js95ca2qv5fr7d7h17l38u0a', proxies={'http': 'http://localhost:8080', 'https': 'http://localhost:8080'})

Database models

class Scan(db.Model): id = db.Column(db.Integer, primary_key=True) url = db.Column(db.String(200), nullable=False) status = db.Column(db.String(50), nullable=False) timestamp = db.Column(db.DateTime, default=db.func.current_timestamp()) alerts = db.relationship('Alert', backref='scan', lazy=True) nmap_results = db.relationship('NmapResult', backref='scan', uselist=False)

class Alert(db.Model): id = db.Column(db.Integer, primary_key=True) scan_id = db.Column(db.Integer, db.ForeignKey('scan.id'), nullable=False) risk = db.Column(db.String(50), nullable=False) alert = db.Column(db.String(200), nullable=False) description = db.Column(db.Text, nullable=False) url = db.Column(db.String(200), nullable=False)

class NmapResult(db.Model): id = db.Column(db.Integer, primary_key=True) scan_id = db.Column(db.Integer, db.ForeignKey('scan.id'), nullable=False) host = db.Column(db.String(200), nullable=False) port = db.Column(db.Integer, nullable=False) protocol = db.Column(db.String(50), nullable=False) service = db.Column(db.String(200))

def __repr__(self):
    return f'<NmapResult host={self.host}, port={self.port}, protocol={self.protocol}, service={self.service}>'

Create tables

with app.app_context(): db.create_all()

@app.route('/') def home(): return send_from_directory(app.static_folder, 'index.html')

@app.route('/scan', methods=['POST']) def scan(): url = request.form.get('url')

if not url:
    return jsonify({"error": "URL is required"}), 400

try:
    # Open URL in ZAP
    zap.urlopen(url)
    time.sleep(2)

    # Start passive scan
    zap.pscan.enable_all_scanners()
    time.sleep(2)

    # Start active scan
    scan_id = zap.ascan.scan(url)
    while int(zap.ascan.status(scan_id)) < 100:
        time.sleep(5)

    # Get alerts from ZAP
    alerts = zap.core.alerts(baseurl=url)
    categorized_alerts = {
        'High': [],
        'Medium': [],
        'Low': [],
        'Informational': []
    }

    # Store ZAP alerts in database
    scan = Scan(url=url, status='Completed')
    db.session.add(scan)
    db.session.commit()

    for alert in alerts:
        risk = alert['risk']
        categorized_alerts[risk].append(alert)
        new_alert = Alert(scan_id=scan.id, risk=alert['risk'], alert=alert['alert'], description=alert['description'], url=alert['url'])
        db.session.add(new_alert)
    
    # Perform Nmap scan
    nm = nmap.PortScanner()
    nm.scan(url, arguments='-sV -O')

    # Store Nmap scan results in database
    if nm.all_hosts():
        for host in nm.all_hosts():
            for proto in nm[host].all_protocols():
                lport = nm[host][proto].keys()
                for port in lport:
                    service = nm[host][proto][port]['product']
                    nmap_result = NmapResult(scan_id=scan.id, host=host, port=int(port), protocol=proto, service=service)
                    db.session.add(nmap_result)

    db.session.commit()

    return render_template('results.html', categorized_alerts=categorized_alerts)

except Exception as e:
    return jsonify({"error": str(e)}), 500

@app.route('/scans') def scans(): scan_records = Scan.query.all() return render_template('scans.html', scan_records=scan_records)

if name == 'main': app.run(debug=True) index-html-img
scans-html-img
results-html-img

TEAM CREDITS

PROJECT ON VULNERABILITY ASSESSMENT FRAMEWORK USING MODERN GUI
BY: TEAM GUARDIANS
DETAILS OF THE GROUP MEMBERS:
 1. KUSHAGRA KALE
 2. JAYADITHYA G
 3. JISHNU O
 4. KAMISETTY LAKSHMI CHAITRIKA
 5. KHUSHI MADAVI
 6. HARSHAL BEHARE
 7. MADHUR SAPRA
 8. MANAS PATEKAR
 9. MD. ASADULLAH ABBASI
 10.NAMIT SHARMA
 11. NEHAL HEMDEV

About

A website to check the vulnerability in website.

harshal-behare.github.io/Vulnerability--Assessment-Framework/

Topics

flask zap nmap sqlachemy flask-migrate

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages