GitHub
github.com › psantana5 › vuln-scanner
GitHub - psantana5/vuln-scanner: A python script that checks for many vulnerabilities, such as XSS, SQL Injection, CSRF, etc. · GitHub
The Vulnerability Scanner is a Python-based tool that scans web applications for various vulnerabilities.
Starred by 33 users
Forked by 8 users
Languages Python
Mohamed Ezzat
mohamedaezzat.github.io › posts › vulnerabilityscanner
Writing a vulnerability scanner using python | Mohamed Ezzat
December 13, 2020 - So, we are going to convert the port scanner program into a class then import it into our vulnerability scanner program to scan our target then determine the open ports and discover some of services that are running over these open ports then we are going to create a list of common vulnerable services in a text file as our database to compare our discovered services with that list and if we find matches that means we discovered vulnerable services that can be exploited. Here is a port scanner class as depicted below. what we just did is defining the class name “class portscan()” at the fir
Videos
27:22
Build a Network & Vulnerability Scanner in Python | Ethical Hacking ...
05:14
Build a Python Vulnerability Scanner | Search CVE - YouTube
10:23
Python for Cybersecurity: Building a Vulnerability Scanner - YouTube
01:36:30
Detecting Code Vulnerabilities Using Python with AI and LLMs - YouTube
17:35
Python -Vulnerability Scanner Libraries - Safety (Dependent Libraries ...
14:15
Vulnerability Scanner | Building Hacking Tools Using Python - YouTube
freeCodeCamp
freecodecamp.org › news › build-a-web-application-security-scanner-with-python
Building a Simple Web Application Security Scanner with Python: A Beginner's Guide
December 12, 2024 - In this article, you are going to learn to create a basic security tool that can be helpful in identifying common vulnerabilities in web applications. I have two goals here. The first is to empower you with the skills to develop tools that can help enhance the overall security posture of your websites. The second is to help you practice some Python programming. In this guide, you will be building a Python-based security scanner that can detect XSS, SQL injection, and sensitive PII (Personally Identifiable Information).
PyPI
pypi.org › project › safety
safety · PyPI
Safety CLI is a Python dependency vulnerability scanner designed to enhance software supply chain security by detecting packages with known vulnerabilities and malicious packages in local development environments, CI/CD, and production systems.
» pip install safety
Published Nov 06, 2025
Version 3.7.0
Medium
medium.com › @carylrobert16 › how-to-build-a-basic-vulnerability-scanner-in-python-using-apis-for-beginners-1e5c39b29468
How to Build a Basic Vulnerability Scanner in Python Using APIs (For Beginners) | by Carylrobert | Medium
July 26, 2025 - In this guide, we built a basic vulnerability scanner in Python using public APIs.
Safety
getsafety.com › home › safety cli
Safety CLI | Open Source Vulnerability Scanner
Safety CLI leverages our proprietary vulnerability database, detecting 4x more security issues than public sources. Every scan is backed by our team of security researchers and AI-powered analysis.
Snyk
snyk.io › platform › snyk-python-security
Python Security Platform | Snyk
Snyk continuously monitors your apps for vulnerabilities in real time. Apply in-line security fixes in your IDE or merge suggested fix PRs. Snyk supports your favorite Python package managers, frameworks, libraries, and IDEs.
Red Hat
redhat.com › en › blog › find-python-vulnerabilities
How to find third-party vulnerabilities in your Python code
November 20, 2025 - A good project keeps versions up to date when a vulnerability is found, and tools like pip-audit make this job easier. Here's how to use pip-audit to scan your Python project and learn whether any of your third-party libraries have known ...
Reddit
reddit.com › r/python › 🐶 immunipy: find vulnerable dependencies in your python projects
r/Python on Reddit: 🐶 immunipy: Find vulnerable dependencies in your Python projects
July 29, 2024 -
What My Project Does
I've created immunipy a Python SCA tool that acts as a watchdog, keeping an eye out for security vulnerabilities and reporting them promptly, written in Rust. immunipy will scan your requirements.txt or poetry.lock files and search for existing vulnerabilities in your dependencies, if any of your dependencies is reported as vulnerable then you will get the information, such as: package, version, fixed version (if exists), vuln id, aliases and the location.
It's easy to use and is really fast, all the vulnerabilities are reported in real time.
Target Audience
I think that immunipy is useful for every project, specially the production ready ones, due that every time that you run it you will get an instant scan of your dependencies.
Comparison
It's easy to use, just pip install immunipy and you can run it! Also, you can add it in your CI/CD pipeline and run it regularly, this is useful if you want to keep your projects free of vulnerable dependencies.
Top answer 1 of 2
20
This is a nice piece of work and a useful pyoxide example, thanks. But the implementation does not make a lot of sense. And it certainly would not be noticeably faster than a pure python version using requests to hit the vuln api. I don't get why people insist on mentioning "written in rust" as that somehow makes something faster. rust is not going to make your internet faster.
2 of 2
10
Could you explain why members of the Python community should prefer this over PyPA tooling like pip-audit and the PyPA Advisory DB ? There may be good reasons, but I don't feel like this post elaborates on them! (FD: I help maintain pip-audit, which was purpose-built to be a vendor-neutral vulnerability reporting tool for Python. But there are other popular ones out there; Safety also seems to be widely used.)
Wapiti-scanner
wapiti-scanner.github.io
Wapiti : a Free and Open-Source web-application vulnerability scanner in Python
Once it gets the list of URLs, forms and their inputs, Wapiti acts like a fuzzer, injecting payloads to see if a script is vulnerable.
GitHub
github.com › topics › vulnerability-scanners
vulnerability-scanners · GitHub Topics · GitHub
scanner enumeration penetration-testing ... security-scanning ... Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected....
Medium
medium.com › offensive-security-walk-throughs › creating-a-vulnerability-scanner-in-python-b5b59817b38d
Creating a Vulnerability Scanner in Python | by Aleksa Zatezalo | Offensive Security Library | Medium
June 20, 2023 - Creating a basic vulnerability scanner will really only require two functions: one to retrieve banners, and another to check vulnerabilities. In order to create these we will need a basic knowledge of socket programing in python which we will use to scan ports, and fileIO as we will be storing a list of vulnerable software in a file.
SOOS
soos.io › home › python vulnerability scanner
Python Vulnerability Scanner - SOOS SCA
October 10, 2022 - SOOS provides a deep dependency tree scan for Python open source package vulnerabilities for your entire team.
The Python Code
thepythoncode.com › article › make-a-xss-vulnerability-scanner-in-python
How to Build an XSS Vulnerability Scanner in Python - The Python Code
Building a simple network scanner using ARP requests and monitor the network using Scapy library in Python. Learn how to write a simple Python script to detect SQL Injection vulnerability on web applications using requests and BeautifulSoup in Python.
ZeroThreat
zerothreat.ai › python-vulnerability-scanner
Python Vulnerability Scanner | Python Pentesting Tool
February 7, 2025 - Protect your Python apps from security threats with our Python vulnerability scanner. Enhance your cybersecurity with our automated pentesting capabilities.
Linux Security Expert
linuxsecurity.expert › linux security expert › security tools › python security tools
Python security tools - Linux Security Expert
Python Taint (or PyT) is a static code analyzer for Python scripts and applications. It tries to discover vulnerabilities or other possible weaknesses.
SecureCoding
securecoding.com › home › blog › best python open source security tools
Best Python Open Source Security Tools - SecureCoding
October 14, 2020 - Using its paid plans, it also allows you to extend its functionality by using pyup.io’s Safety API. ... Hawkeye scanner is generally a vulnerability, security, and risk highlighting tool.
Geekflare
geekflare.com › security › how to find security vulnerabilities in python application?
How to Find Security Vulnerabilities in Python Application?
December 22, 2024 - Furthermore, PyUp maintains a database of vulnerabilities, and to date, it has recorded 472,750 Python dependencies. Its scanners are built for solving complex environments and scanning your files for outdated and insecure requirements.
GitHub
github.com › wapiti-scanner › wapiti
GitHub - wapiti-scanner/wapiti: Web vulnerability scanner written in Python3 · GitHub
Wapiti is a web vulnerability scanner written in Python.
Starred by 1.7K users
Forked by 250 users
Languages Python 85.3% | HTML 6.0% | PHP 3.1% | JavaScript 2.4% | Shell 1.4% | CSS 0.9%
Python⇒Speed
pythonspeed.com › articles › docker-python-security-scan
Security scanners for Python and Docker: from code to dependencies
January 30, 2026 - Automated security scanners are handy! Another tool to look at is pysa, which is included in the Pyre type checker. It can trace values as they flow through your code to see if unsafe inputs are reaching particular functions. Your Python application likely depends on many Python libraries; occasionally one of them will have a security vulnerability, and you’ll want to make sure you’re using the fixed version.