DC404 Audit Tool is an ethical web vulnerability and information leak scanner with a GUI. It is intended for authorized penetration testing only and should never be used without explicit permission from the target owner.
- Full website crawling & sitemap parsing
- YARA rules support
- Same-origin asset scanning
- Credential leak detection
- Username/Password pair detection
- PII scanning
- Export to HTML, JSON, or PDF
- GUI toggles for scanning options
- Python 3.9+
- PySide6
- requests
- beautifulsoup4
- html5lib
- pdfkit (requires wkhtmltopdf installed)
- yara-python
Install dependencies:
pip install -r requirements.txt
Usage
python3 audit.py
Set your target in the GUI.
Use Scanning settings to enable/disable:
Include full credentials in report
Scan for username/password pairs
⚠️ Disclaimer
This tool is for ethical security testing only.
Unauthorized scanning is illegal and may result in criminal charges.