Abstract: Modern web applications face increasingly sophisticated cyber threats, necessitating advanced security assessment solutions. Current penetration testing methodologies suffer from tool fragmentation, high technical barriers to entry, and inefficient workflows. This paper presents BlackWidow, an innovative GUI-based penetration testing platform that integrates the entire security assessment lifecycle into a unified environment. The system combines automated vulnerability detection with intuitive visualization capabilities, addressing critical gaps in existing solutions. Through its hybrid detection approach and user-centric design, BlackWidow achieves a 92% detection rate for critical vulnerabilities while maintaining an 8-12% false positive rate - significantly outperforming industry averages. The platform's novel integration of security modules, coupled with its visual analytics and guided workflows, reduces assessment time by 65% compared to traditional methods while making professional-grade testing accessible to non-experts. Performance evaluations demonstrate BlackWidow's ability to process 50 URLs per second, representing a tenfold improvement over conventional tools. The paper details the system's architecture, key innovations, and validation against OWASP and NIST benchmarks, positioning BlackWidow as a transformative solution in web application security.

Key Words: Web application security, penetration testing, automated vulnerability assessment, security visualization, human-computer interaction in cybersecurity.

| DOI: 10.17148/IARJSET.2025.125346