How does Sanshi detect vulnerability in web application?

Sanshi has three modules to detect vulnerability in target of web application.

1. Sanshi search the specific words in which web application has vulnerabilities.
2. Sanshi listen a port connected from web application server if web application has vulnerability.
3. Sanshi detect difference between responses when web application has syntax error and when it does not has any syntax error.

I'll write detail these modules.