Threat Detection URL Checker is a Python-based tool that analyzes URLs using the Google Web Risk API, logs categorized results into CSV files, and visualizes threat data. It is designed with modular components, supports automation through CI/CD, and includes full documentation.
- Features
- Architecture Overview
- Core Components
- Project Structure
- Testing & CI
- Installation
- Output
- Technologies Used
- Documentation
- Video Explanation
- Author
- Asynchronous URL scanning using the Google Web Risk API
- Categorizes results into threat types or safe
- Logs and saves results to CSV
- Generates a threat distribution chart using matplotlib
- Structured logging for debugging and traceability
- Unit tested using
unittest - GitHub Actions CI for automatic test runs
- Public documentation hosted on Confluence
- Video walkthrough available on YouTube
Below is the architecture design of the project, which outlines the core components and their interactions.
| Component | Responsibility |
|---|---|
APIHandler |
Interacts with Google Web Risk API to analyze URLs for threats. Manages concurrency and async processing. |
CSVHandler |
Loads input URLs from CSV and saves threat analysis results. Also calculates threat-type percentages. |
Logger |
Handles centralized logging of info, warnings, and errors to a log file. |
ThreatAnalyzer |
Reads results and generates visual charts (pie chart of threat types) using matplotlib. |
main.py |
Entry point. Orchestrates the entire analysis flow loading data, calling the API, saving results, and generating charts. |
| Test File | Description |
|---|---|
test_api_handler.py |
Tests the initialization and threat-type config of APIHandler. |
test_csv_writer.py |
Tests CSV read/write and percentage logic in CSVHandler. |
test_threat_analyzer.py |
Tests chart generation and empty-data handling in ThreatAnalyzer. |
-
main.pyinitializes:LoggerCSVHandlerAPIHandlerThreatAnalyzer
-
APIHandler:- Uses
CSVHandlerto load URLs - Uses
Loggerto log the scanning process - Sends requests to Google Web Risk API
- Uses
-
After scanning:
- Results are saved via
CSVHandler ThreatAnalyzerreads results and generates a pie chart
- Results are saved via
-
Logs, results, and chart are stored in the
resources/folder.
💡 All environment variables and paths are defined in
.envfor centralized configuration.
APIHandler→ Fetches the list of public API URLs from a CSV fileThreatAnalyzer→ Sends URLs to the Google Web Risk API and determines their statusCSVHandler→ Saves results intoresults.csvand calculates threat percentagesLogger→ Logs errors, API failures, and other issues for debugging
Multithreaded-URL-Checker/
├── threat_analyzer/
│ ├── api_handler.py
│ ├── csv_handler.py
│ ├── logger.py
│ ├── threat_analyzer.py
│ └── test/
│ ├── test_api_handler.py
│ ├── test_csv_writer.py
│ └── test_threat_analyzer.py
├── resources/
│ ├── key.json
│ ├── results.csv
│ └── threat_analysis_chart.png
├── data/
│ └── PublicAPIslist.csv
├── .github/workflows/
│ └── python-tests.yml
├── .env
├── Dockerfile
├── requirements.txt
└── README.md
- Note: GitHub Actions is configured but currently inactive due to free tier CI usage limits.
- Tests are written using Python's built in unittest module
- GitHub Actions automatically runs tests on every push and pull request to main
Run tests locally:
python -m unittest discover -s threat_analyzer/test
- Python 3.10+
- Google Web Risk API
- pandas
- asyncio
- matplotlib
- unittest
- GitHub Actions
- Docker (optional)
Watch the full walkthrough of this project on YouTube: (in progress)
Clone the repository:
git clone https://github.com/yourusername/Threat-Detection-URL-Checker.git
cd Threat-Detection-URL-CheckerCreate a .env file:
CSV_FILE=data/PublicAPIslist.csv
RESULTS_FILE=resources/results.csv
CHART_FILE=resources/threat_analysis_chart.png
GOOGLE_API_KEY=your_api_key
GOOGLE_APPLICATION_CREDENTIALS=resources/key.jsonInstall dependencies:
pip install -r requirements.txtRun the program:
python threat_analyzer/main.py- resources/results.csv → Results of all URL scans
- resources/threat_analysis_chart.png → Threat type distribution chart