A small framework capable of running open-source vulnerability scanners to inspect and scan any kind of webpage
π Moved to https://codeberg.org/david-prv/overmind
This tool is not intended to be used for any criminal act. It's used to find vulnerabilites on websites whose owners have given me express permission to do so! You are responsible for all your decisions.
- FIX final report layout
- ADD sonar mode
- ADD website auto-detection (selects e.g. "wordpress" automatically)
- ADD more dependencies (components) for single pages
- ADD customization option for engines (add own runners with corresponding requirements)
- ADD json-import for engines
- ADD AI-assistant for report analysis
Don't forget issues, that should be re-opened: label:willreopen
- Apache2
- PHP (>= 8.2.0)
- Python (>= 3.9.13)
- Composer (>= 2.1.2)
snapshot.zip/
βββ _extra/
β βββ empty
βββ _tools/
β βββ sample
β β βββ sample.info
β β βββ sample.reference
β β βββ sample.schedule
β β βββ sample.zip
β βββ sample2
β βββ sample2.info
β βββ sample2.reference
β βββ sample2.schedule
β βββ sample2.zip
βββ .author
βββ .info
Clone repository:
git clone https://github.com/david-prv/overmind.git
Navigate into project's root folder:
cd overmind
Install dependencies:
composer install
Run compressor:
php compressor.php
This application is only meant to be running locally. It's not supposed to be a public accessible application in the
web. To run a local instance, you can either use XAMPP
to run a local web-server, or just launch a PHP development
server.
# in project's root folder...
php -S localhost:8080
Now open a web browser and navigate to http://localhost:8080/
. The Overmind framework should appear.
Information about what to do next will be provided here. For guests, check out the github wiki.
Released under GPL by @david-prv.