Sentrashieldx: Advanced Web and Network Vulnerability Scanner

Trisha Kalisetti¹, M. Pavan Kumar², K. Teja³
Under the Supervision of: G. Amala Devi M-Tech, Assistant Professor, Dept. of CSE (Cyber Security), VIET
¹Department of CSE (CS), Visakha Institute of Engineering and Technology, Andhra Pradesh, India
²Department of CSE (CS), Visakha Institute of Engineering and Technology, Andhra Pradesh, India
³Department of CSE (CS), Visakha Institute of Engineering and Technology, Andhra Pradesh, India

Abstract - The global cost of cybercrime is projected to exceed USD 10.5 trillion annually by 2025, intensifying the need for accessible vulnerability assessment tools. SentraShieldX is a free, open-source, web-based vulnerability scanner that bridges the gap between professional-grade security assessment and the prohibitive cost of commercial solutions (e.g., Nessus at $3,990/year, Acunetix at $5,995/year). The platform integrates fourteen security modules into a single JWTauthenticated dashboard. It performs real Nmap port scanning, matches discovered services against 100 curated CVEs using a three-rule version-based algorithm, and executes eight parallel OSINT reconnaissance tasks. Its security analysis engine provides OWASP Top 10 compliance verification, MITRE ATT&CK technique mapping, SOC priority alerts (P1–P4), and compliance checks against PCI-DSS, HIPAA, and ISO 27001. A Nessus-inspired weighted risk score (1–10) is computed for each target. Built on Python Flask and SQLite, experimental evaluation confirms 100% accuracy for IP resolution, SSL analysis, and HTTP header inspection; 95% port scanning accuracy; and meaningful CVE correlation. SentraShieldXdemocratizes enterprise-level security assessment at zero cost, making it ideal for educational institutions, SMEs, security researchers, and ethical hackers. Key Words: Vulnerability Scanner, CVE, OWASP Top 10, MITRE ATT&CK, Nmap, Flask, JWT, SOC Analysis, Penetration
Testing, Cybersecurity.