pentestba / VinaScanHub

Software scan Vulns Web Application

VinaScanHub version 1.1

Software scan vulnerability web application PHP, dotNet (aspx), Java (jsp)

About My Team

Eyes Of God team
Member: Shaco JX (Toan Vu Van), Trung Lax (Trung La Bao), Daitvd1997 (Dai Trinh Van - https://github.com/daitvd1997)

Requirement

JDK 11 (https://www.oracle.com/technetwork/java/javase/downloads/jdk11-downloads-5066655.html)

Vulnerability can detect

CVE-2017-9248 (Telerik UI on web dotNet, DDN)
SQL Injection (error base)
Blind SQL Injection (boolean base)
OS Command Injection
Weak Password
Cross-site Scripting (XSS)
Local File Inclusion (LFI)
PHP Code Injection
XML XPath Injection
Unrestricted File Upload

Feature

Scan port
Save, Delete history scan to database to management

Method Scan

BlackBox Pentesting
GrayBox Pentesting (Authentication)
WhiteBox Pentesting (Updating)
Analysis response and Compare origin response with response sent payload

Download file application

Link download: https://drive.google.com/file/d/1ivwpz0lj9Gum67S2Lu3apN_5mrthQt3B/view?usp=sharing

Video Demo

{@youtube: https://www.youtube.com/watch?v=xSfpJVxXuGI}

About

Software scan Vulns Web Application

Languages

Language:Java 98.6%Language:HTML 1.4%