How to Scan and know if a site is vulnerable to SQL and XSS
This Section of this site will teach you how to Scan a site and tell if it is vulnerable to SQL injection or XSS (Cross Site Scripting attacks)
What is WebScan?
WebScan is a web vulnerability Scanning tool, which scans sites for SQL injection and XSS vulnerabilities Which is a great tool for web pentesters. Coded in python3, CLI. WebScan is capable of scanning and detecting sql injection vulnerabilities across HTTP and HTTP sites.
How does WebScan Work
While a network vulnerability scanner scans the web server itself, including its operating system, the webserver daemon and the various other open sources, such as database services running on the same system, WebScan or web application scanner focuses on the code of the application
How to Install WebScan
Installation of webscan is very easy and doesnt take much time all you need to do is to install necessary dependencies and start up webscan
Go to your home directory
For Both: cd $HOME
Update and Upgrade your repo
For Termux: pkg update -y && pkg upgrade -y
For Linux:
sudo apt update -y && sudo apt upgrade -y
Install git into your terminal
For Termux: pkg install git -y
For Linux:
sudo apt install git -y
Clone my repository
For Both: git clone https://github.com/TermuxHackz/WebScan.git
Go into directory and grant permissions to all files
For Both: cd WebScan && chmod +x *
Install requirements
For Both: pip install -r requirements.txt
Run and start WebScan
For Both: python3 webscan.py
I hope the installation of webscan has been understood, if you face errors during installation be sure to report them to me and i will help you fix them.