{
  "scan_id": "scan_1779486227",
  "target": "https://example.com",
  "timestamp": "2026-05-22T21:43:47.664236",
  "risk_level": "Critical",
  "risk_score": 38,
  "vulnerabilities_found": 8,
  "findings": "# WebSec Scanner Pro v2 Security Report\n\n## Scan Overview\n- **Scan ID**: scan_1779486227\n- **Target**: https://example.com\n- **Time**: 2026-05-22T21:43:47.664236\n- **Risk Level**: Critical (38/100)\n- **Vulnerabilities Found**: 8\n- **Open Ports**: [80, 443, 8080, 8443]\n\n## Security Headers\n- **Strict-Transport-Security**: \u274c Missing\n- **Content-Security-Policy**: \u274c Missing\n- **X-Frame-Options**: \u274c Missing\n- **X-Content-Type-Options**: \u274c Missing\n- **X-XSS-Protection**: \u274c Missing\n- **Referrer-Policy**: \u274c Missing\n- **Permissions-Policy**: \u274c Missing\n\n## Vulnerabilities Found\n\n### HIGH: Missing HSTS Header\n- Strict-Transport-Security header is not set\n- **Fix**: Add 'Strict-Transport-Security: ...' to your server configuration\n\n### HIGH: Missing CSP Header\n- Content-Security-Policy header is not set\n- **Fix**: Add 'Content-Security-Policy: ...' to your server configuration\n\n### MEDIUM: Missing Clickjacking Protection Header\n- X-Frame-Options header is not set\n- **Fix**: Add 'X-Frame-Options: ...' to your server configuration\n\n### MEDIUM: Missing MIME Sniffing Prevention Header\n- X-Content-Type-Options header is not set\n- **Fix**: Add 'X-Content-Type-Options: ...' to your server configuration\n\n### MEDIUM: Missing XSS Protection Header\n- X-XSS-Protection header is not set\n- **Fix**: Add 'X-XSS-Protection: ...' to your server configuration\n\n### LOW: Missing Referrer Leakage Header\n- Referrer-Policy header is not set\n- **Fix**: Add 'Referrer-Policy: ...' to your server configuration\n\n### LOW: Missing Feature Restriction Header\n- Permissions-Policy header is not set\n- **Fix**: Add 'Permissions-Policy: ...' to your server configuration\n\n### MEDIUM: Excessive Open Ports\n- Found 4 open ports: [8443, 80, 443, 8080]\n- **Fix**: Close unnecessary ports to reduce attack surface\n\n## Recommendations\n- Implement missing security headers (recommend using securityheaders.com)\n- Conduct a comprehensive security audit\n- Review open ports: [80, 443, 8080, 8443]\n\n## Professional Services\nNeed expert-level security testing? Contact us for:\n1. **Basic Scan** ($49): Automated deep scan + detailed report\n2. **Professional Audit** ($149): Manual code review + pentest\n3. **Enterprise Suite** ($599): Continuous monitoring + emergency response\n\nContact: jhonwind2023@gmail.com\n"
}