Web Vulnerability Detection Using ML Techniques

Q: How many days will it take for my paper to be published?

The review time for papers is not fixed. However, if the paper is accepted and the author completes the processing charges formalities, the paper will be published within a few working days.

Q: I would like to receive a hard copy of the journal materials. Are there any additional charges?

You can log in to the author portal and pay 500 INR to receive the hard copy materials.

Q: Do IJIRT provide DOI for published papers?

Yes, we provide a DOI (Digital Object Identifier) upon request. Authors can contact us at editor@ijirt.org after publication to obtain the DOI for their paper.

Q: Do we provide Published Journal Print copy?

No, we do not provide Published Journal Print copy.

Q: Why am I not able to register to IPN?

There might be three potential reasons: 1) You did not verify your mobile number before clicking on the register button. Please click on the Verify sign immediately after entering your mobile number and complete OTP verification. 2) You are an international author. The IPN is enabled only for Indian Authors. 3) You did not tick the Terms & Conditions checkbox. Please make sure to select it before clicking on the register button.

Q: Where can I get a sample publication certificate?

Please login to Author Home, where you will find the sample copy of the publication certificate and confirmation letter.

Q: I made the processing charges payment and the amount is deducted from my bank account, but it is not updated in my Author Home. What should I do?

Please wait for one working day. We will check at our end and update the status. If it is still not updated after one working day, please email your Razorpay Payment ID along with the payment proof snapshot to editor@ijirt.org.

Q: Where can I sign the Copyright and Undertaking Declaration?

To publish your paper in IJIRT, copyright and undertaking is mandatory. You can digitally sign both by logging into Author Home and checking the right-side section.

Q: How many pages are allowed?

There is no page limit. However, to enhance quality and reader experience, we recommend keeping the paper up to 30 pages (single or double column) without extra charges.

Q: How many authors per paper are allowed?

Up to 13 authors are allowed without extra charges.

Sk. Sameerunnisa; Vellaturi Lakshmi Subhashini; Perli Karthik; Panitapu Venkat Rishi; Mullapudi Koushik

Web Vulnerability Detection Using ML Techniques

Authors: Sk. Sameerunnisa, Vellaturi Lakshmi Subhashini, Perli Karthik, Panitapu Venkat Rishi, Mullapudi Koushik

Unique Paper ID: 196251
Volume: 12
Issue: 11
PageNo: 4973-4983

Keywords: Web Security Vulnerability Assessment Machine Learning LightGBM Isolation Forest Reconnaissance Port Scanning Subdomain Discovery Explainable AI AI Assistant CSRF Detection Zero-Day Flagging

Abstract:
Web application security testing platform which was created to focus on all key elements of modern web system environment and to help penetration testers identify smartly the threats arising from the web application. The stack is implemented in Python, and it includes FastAPI as the HTTP server and LightGBM/Isolation Forest for the machine learning bits, with Nmap feeding into port scanning, and DNS brute-forcing (lookout for subdomains) to get started. The front-end is built in React/TypeScript, and the entire platform runs on Render in Docker, making it easy to scale up and deploy updates. Most of the current vulnerability scanners are not able to detect important problems as they adopt primarily signature-based detection and do not involve real-world introspection. They also have a tendency to produce too many false positives, and they do not typically maintain a history of scans which means that it is difficult for organizations to track their progress. This work addresses these limitations by integrating machine learning techniques with reconnaissance modules maintaining a persistent scan history, and providing an AI assistant to answer questions about payloads, URLs and code snippets. This method not only enhances the coverage of detection, but also facilitates faster and more comprehensible remediation for users. This platform’s main strength is that it can find a wide range of vulnerabilities, from common to rare, sometimes which traditional tools often fail to identify. Plugging in port scanning, subdomain enumeration and code analysis delivers a more holistic assessment. The open-source and modular design means that other people are free to adapt and improve it, while the deployment on Render making it available for real-world use. It details how the system can be applicable at the local level through a case study in Hyderabad and what it means to organizations, given that a vulnerability assessment process is both extensive and easy-to-use.

Download article

email to a friend

Copyright & License

Copyright © 2026 Authors retain the copyright of this article. This article is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.

BibTeX

@article{196251,
        author = {Sk. Sameerunnisa and Vellaturi Lakshmi Subhashini and Perli Karthik and Panitapu Venkat Rishi and Mullapudi Koushik},
        title = {Web Vulnerability Detection Using ML Techniques},
        journal = {International Journal of Innovative Research in Technology},
        year = {2026},
        volume = {12},
        number = {11},
        pages = {4973-4983},
        issn = {2349-6002},
        url = {https://ijirt.org/article?manuscript=196251},
        abstract = {Web application security testing platform which was created to focus on all key elements of modern web system environment and to help penetration testers identify smartly the threats arising from the web application. The stack is implemented in Python, and it includes FastAPI as the HTTP server and LightGBM/Isolation Forest for the machine learning bits, with Nmap feeding into port scanning, and DNS brute-forcing (lookout for subdomains) to get started. The front-end is built in React/TypeScript, and the entire platform runs on Render in Docker, making it easy to scale up and deploy updates. Most of the current vulnerability scanners are not able to detect important problems as they adopt primarily signature-based detection and do not involve real-world introspection. They also have a tendency to produce too many false positives, and they do not typically maintain a history of scans which means that it is difficult for organizations to track their progress. This work addresses these limitations by integrating machine learning techniques with reconnaissance modules maintaining a persistent scan history, and providing an AI assistant to answer questions about payloads, URLs and code snippets. This method not only enhances the coverage of detection, but also facilitates faster and more comprehensible remediation for users. 
This platform’s main strength is that it can find a wide range of vulnerabilities, from common to rare, sometimes which traditional tools often fail to identify. Plugging in port scanning, subdomain enumeration and code analysis delivers a more holistic assessment. The open-source and modular design means that other people are free to adapt and improve it, while the deployment on Render making it available for real-world use. It details how the system can be applicable at the local level through a case study in
Hyderabad and what it means to organizations, given that a vulnerability assessment process is both extensive and easy-to-use.},
        keywords = {Web Security, Vulnerability Assessment, Machine Learning, LightGBM, Isolation Forest, Reconnaissance, Port Scanning, Subdomain Discovery, Explainable AI, AI Assistant, CSRF Detection, Zero-Day Flagging},
        month = {April},
        }

Download .bib

Cite This Article

Sameerunnisa, S., & Subhashini, V. L., & Karthik, P., & Rishi, P. V., & Koushik, M. (2026). Web Vulnerability Detection Using ML Techniques. International Journal of Innovative Research in Technology (IJIRT), 12(11), 4973–4983.

Impact Factor
8.412 (Year 2026)

An UGC-Compliant International Research Journal

Join Our IPN

IJIRT Partner Network

Submit your research paper and those of your network (friends, colleagues, or peers) through your IPN account, and receive 800 INR for each paper that gets published.

Join Now