Permi just hit a huge milestone, and I couldn't be more grateful. Now, I need your help to make it even better.
I'm building this in public, and your feedback is the most valuable tool I have.
How is your experience so far?
If you've run permi scan, please leave a comment with one of these words:
- π΄ "broke" β if something crashed
- π‘ "confusing" β if it wasn't clear
- π’ "useful" β if it helped
Alternatively, feel free to DM me with specific details. No pitchβjust trying to build something helpful.
Peternasarah
/
permi
AI-powered vulnerability scanner for Nigerian developers and global SMBs
Permi
AI-powered vulnerability scanner for Nigerian developers and global SMBs.
Permi scans live websites and source code for security vulnerabilities, then uses AI to filter out false positives β so you only see findings that actually matter.
Built in Nigeria. For Nigeria. Then for the world.
Two scan modes
--url β Live web scanning
Point Permi at any website. It crawls the pages, tests for SQL injection, XSS, and checks security headers on the running application.
permi scan --url https://yoursite.com
--path β Static source code scanning
Point Permi at a local folder or GitHub repository. It reads your code files, matches vulnerability patterns, and flags issues before they ship.
permi scan --path ./myapp
permi scan --path https://github.com/user/repo
What Permi detects
Web scanning (--url)
- SQL Injection β error-based, boolean-based blind, time-based blind
- Cross-Site Scripting (XSS) β reflected XSS with context-aware testing
- Missing Security Headers β HSTS, CSP, X-Frame-Options, X-Content-Type-Options
- β¦
Top comments (0)