Inspectra is a web vulnerability scanner designed to identify security weaknesses in web applications, specifically focusing on HTML, JavaScript, and Content Security Policy (CSP) headers. This tool helps developers and security professionals ensure that their web applications are secure and compliant with best practices.
- Scans web applications for vulnerabilities in HTML and JavaScript.
- Analyzes Content Security Policy (CSP) headers for potential security issues.
- Provides detailed reports on identified vulnerabilities and recommendations for remediation.
Before running Inspectra, ensure you have the following installed on your machine:
- Docker
- Docker Compose
To get started with Inspectra, follow these steps:
-
Clone the Repository:
git clone https://github.com/RStephanH/inspectra.git cd inspectra -
Directory Structure: Ensure that your project directory contains the following structure:
inspectra/ ├── inspectra-engine/ ├── inspectra-dashboard/ └── docker-compose.yml -
Build and Run the Application: Use Docker Compose to build and run the application. In the root directory of the project, execute the following command:
docker compose up --build
-
Access the Application:
- The backend service (Inspectra Engine) will be available at
http://localhost:3000. - The frontend service (Inspectra Dashboard) will be available at
http://localhost:8888.
- The backend service (Inspectra Engine) will be available at
-
Using the Application:
- Open your web browser and navigate to
http://localhost:8888to access the Inspectra Dashboard. - From the dashboard, you can initiate scans and view reports on vulnerabilities detected in your web applications.
- Open your web browser and navigate to
To stop the running services, press CTRL + C in the terminal where Docker Compose is running. You can also run the following command to stop and remove the containers:
docker compose downContributions are welcome! If you have suggestions for improvements or new features, please open an issue or submit a pull request.