Automated infrastructure reconnaissance with AI-assisted security intelligence.
A full-stack security scanning platform that orchestrates Nmap, Nikto, and OWASP ZAP through containerized infrastructure while generating AI-powered remediation analysis in real time.
Zero Day Bot is an AI-powered infrastructure security platform designed to automate reconnaissance, vulnerability assessment, and remediation analysis through a unified operational interface.
The system orchestrates industry-standard security tools including Nmap, Nikto, and OWASP ZAP using Docker-powered backend infrastructure, enabling users to launch passive, active, and deep infrastructure scans directly from the browser.
Instead of exposing raw scanner output alone, the platform enriches findings using AI-generated analysis, transforming technical scan data into structured security intelligence with remediation guidance, risk summaries, and operational recommendations.
Core platform capabilities include:
infrastructure reconnaissance
automated vulnerability scanning
live scan progress monitoring
containerized security tool orchestration
AI-generated remediation analysis
severity visualization dashboards
real-time log streaming
Redis-powered job orchestration
The platform was engineered to simulate a modern offensive security operations workflow while maintaining an accessible and highly visual interface for analysts and researchers.
The frontend was built using React 19, TypeScript, Vite, Tailwind CSS, and Recharts, featuring a tactical dark-themed interface optimized for security monitoring and live operational feedback.
The backend infrastructure was developed with Python FastAPI, Redis, Docker SDK, and asynchronous background workers capable of dynamically spawning isolated scanner containers on demand.
The architecture follows a Docker-outside-of-Docker orchestration model where the backend mounts the host Docker socket and launches sibling containers for:
Nmap network reconnaissance
Nikto web server analysis
OWASP ZAP vulnerability scanning
Redis is used for:
job state management
scan progress persistence
real-time log streaming
findings storage
asynchronous queue coordination
Google Gemini AI integration generates contextual remediation guidance, summarizes discovered vulnerabilities, explains probable impact, and assists analysts in understanding scan results more efficiently.
Additional engineering features include:
Nginx reverse proxy architecture
multi-container Docker Compose orchestration
polling-based live scan updates
structured vulnerability parsing
AI chat-based analysis interface
modular scan pipeline architecture
Zero Day Bot combines offensive security tooling, infrastructure orchestration, and AI-assisted analysis into a production-inspired cybersecurity operations platform focused on modern automated security assessment workflows.
