My doubt arises from the fact that I have to develop an academic project, which consists of a Python system, to integrate with a system previously developed, with the aim of adding the functionality to automate the detection of vulnerabilities in web applications. My system should not require any configuration from the end user, other than providing a username and password in case the application being analyzed has a login option and the user desires a more comprehensive analysis. It will be something that runs in the background, and for example, once a day, it will analyze the application or list of applications provided by the user.
With that said, I would like to understand if anyone has any suggestions on how to proceed.
Thank you.