Skip to content

jayeshthk/ArachnoScan-Framework

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
images
images
 
 
pen-app
pen-app
 
 
pen-ui
pen-ui
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
ReadMe.md
ReadMe.md
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

🕸️ ArachnoScan Framework

Map Website Structures | Analyze Security Posture | Open-Source Pen-Testing Toolkit

ArachnoScan Framework

Purpose

ArachnoScan crawls websites and renders their URL structures as interactive trees while flagging potential security weak points (analysis pending). Designed as the visualization layer for penetration testing workflows.

                      ┌──────────────┐
                      │  Target URL  │
                      └──────┬───────┘
                             ▽
                      ┌──────────────┐
                      │ Async Crawler│
                      └──────┬───────┘
                             ▽
                    ┌────────────────────┐
                    │ Tree Visualization │
                    └─────────┬──────────┘
                              ▽
                ┌─────────────────────────────┐
                │ [Future] Security Analysis  │
                └─────────────────────────────┘

🚀 Features

  • 🕸️ Depth-Limited Crawling (Max Depth 2 - Stability Focused)
  • 🌳 Interactive Tree Visualization of URL Structures
  • Async Python Backend + Next.js Frontend
  • 🔍 Multi-Source Discovery (Links/Scripts/Forms)
  • 🤖 [Planned] AI agent integration (Attack simulation)
  • 🛡️ [Planned] Safety Scoring & Threat Detection

⚙️ Installation

Prerequisites: Python 3.9+, Node.js 18+, npm

1. Clone & Setup

git clone https://github.com/jayeshthk/ArachnoScan-Framework.git
cd ArachnoScan-Framework

2. Install Dependencies

Via Makefile:

make install  # Installs both UI and API dependencies

Manually:

# Backend
cd pen-app && pip install -r requirements.txt

# Frontend
cd pen-ui && npm install

🖥️ Usage

Start Both Services (Recommended)

make run  # Parallel execution of UI (port 3000) + API (port 8000)

Individual Start

Backend Only:

cd pen-app && uvicorn app.main:app --reload --host 0.0.0.0 --port 8000

Frontend Only:

cd pen-ui && npm run dev

🐳 Docker Deployment

docker-compose up --build
  • Frontend: http://localhost:3000
  • API Docs: http://localhost:8000/docs

Limitations

  • Depth-2 Crawling: Optimized for speed over completeness
  • Early-Stage Analysis: Security checks marked "pending"
  • No Auth Support: Public pages only in v0.1
  • Beta Visualization: Tree rendering may lag for >100 nodes

Future Roadmap

  • Safety Analysis Layer
    • Malware URL Detection (VirusTotal Integration)
    • SSL/TLS Grading
    • Suspicious Parameter Flagging
  • Performance
    • Distributed Crawling with Celery
    • Redis Caching
  • Enterprise Features
    • OAuth/SSO Support
    • PDF/CSV Reporting

Workflow Screenshots

  1. Interface with input Interface with input

  2. Tree Visualization Interface Tree Visualization Interface

  3. Security Analysis Preview Security Analysis Preview

  4. Sub-Branching the URL (extend/minimise) Sub-Branching the URL (extend/minimise)

  5. API Response Example API Response Example

Citations

  • Backend Inspiration: jayeshthk/ArachnoScan0
  • Research Papers:
    • "Automated Web Path Discovery for Penetration Testing" (IEEE 2023)
    • "Async Crawling Architectures" (ACM Security Journal)

License

MIT License - See LICENSE

Contributing

PRs welcome!, for:

  • Bug Reports
  • Visualization Improvements
  • Analysis Module Plugins

About

Visual Web Pathfinder with Security Analysis Pipeline...Further Penn-test AI agent.

Topics

pentesting ai-agents crawling-python react-d3-graph

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages