A complete web security scanning platform for local development and testing. Run both frontend and backend services locally to test website security vulnerabilities.
cd backend
npm install
npm startBackend server will run at: http://localhost:4000
cd frontend
npm install
npm run devFrontend will open at: http://localhost:5173
Backend Setup (in backend/ folder) Create a .env file with:
.env
DB_URL=mongodb://localhost:27017/webshield
JWT_SECRET=your-secret-key-here
PORT=4000
EMAIL_USER=your-email@gmail.com
EMAIL_PASSWORD=your-app-password
GROQ_API=your-groq-apiUser Authentication System - Secure login, registration, and profile management Multiple Security Tools - Integrated scanning with 4 powerful tools: Nmap - Network port and service detection Nikto - Web server vulnerability scanning SQLmap - SQL injection testing SSLScan - TLS/SSL security analysis Real-time Scan Monitoring - Live progress tracking with detailed logs AI-Powered Analysis - Intelligent vulnerability assessment and recommendations Dashboard & History - Track all scans and usage statistics Report Generation - Download detailed security reports
Nmap (brew install nmap or apt install nmap) Nikto (brew install nikto or apt install nikto) SQLmap (brew install sqlmap or apt install sqlmap) SSLScan (brew install sslscan or apt install sslscan)
CRITICAL: USE RESPONSIBLY This tool is designed for ethical security testing only:
Testing your own websites and applications Authorized penetration testing with written permission Educational purposes in controlled environments Security research with proper authorization
Scanning websites without explicit permission Attempting to breach systems you don't own Any illegal or malicious activities Disrupting services or causing damage You are solely responsible for ensuring your activities are legal and ethical.