Vulnerability Scanner & Auto Exploiter You can use this tool to check the security by finding the vulnerability in your website or you can use this tool to Get Shells

Last update: Dec 04, 2021

Overview

About

create a target list or select one target, scans then exploits, done!
Vulnnr is a Vulnerability Scanner & Auto Exploiter You can use this tool to check the security by finding the vulnerability in your website or you can use this tool to Get Shells

Offers

LFI Scanners > Coming soon
XSS Scanners > Working
SQLI injection scanners > Working
Domain Scanner > Using hackerone API/finds subdoamins
CMS detector > Working
Server detector > Working
Common vulnerable files Scanner > Working
Directory Spider/Scanner > Working
Dorker > Working/Uses Googles search engine/ auto exploits
Autodorker > Working takes a list full of dorks (Dont recommend using)
Vulnscan > Scans one target
Vulnauto > Scans a list of target's
WordPress version detectors
WordPress theme detectors
WordPress user detectors
Over 50 upload wordpress plugin exploits
Over 40 LFI wordpress plugins exploits
Over 20 upload joomla exploits
Over 30 LFI joomla exploits
Complexx cms detection
Alot more o just have no time to write it all down

git clone https://github.com/X-x-X-0/Vulnnr.git
pip3 install -r requirements.txt
python3 Vulnnr.py

Credits

Credits to Nano => Creator
Credits to VulnX Github Project, used CMS detector
Credits to hellsec => idk hes just cool boyo

Help

also version of python is 3.8 if u get any error for bs4, or googlesearch run these commands

pip install bs4
pip install html5lib
pip install lxml
pip install google

Reason

Well really there was one reason into making this
I wanted it to be a a vulnerability scanner with the latest a greatest
exploits, mass endpoint scanners & exploiters, why? U may ask is because scanners/exploiters like this are costly because skids like to make a extra buck
I wanted this to be a free tool like xattacker 3.0 anyone could use to pentest there site, this project i will never give up on and i will continue working on it,
everyday il try to push a update or update the src and then il push it to github at the end of the week, requiring u to update. thanks for using vullnr have a nice day!

Vulnerability Scanner & Auto Exploiter You can use this tool to check the security by finding the vulnerability in your website or you can use this tool to Get Shells

Related tags

Overview

About

Offers

Credits

Help

Reason

Owner

Nano

Argument Injection in Dragonfly Ruby Gem

Pgen is the best brute force password generator and it is improved from the cupp.py

Trustme: #1 quality TLS certs while you wait

telegram bug that discloses user's hidden phone number (still unpatched) (exploit included)

Operational information regarding the vulnerability in the Log4j logging library.

QHack-2022 - Solutions to the Coding Challenges of QHack 2022

An Advanced Local Network IP Scanner, made in python of course!

All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting.🎭

Simples brute forcer de diretorios para web pentest.

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

A Python replicated exploit for Webmin 1.580 /file/show.cgi Remote Code Execution

I hacked my own webcam from a Kali Linux VM in my local network, using Ettercap to do the MiTM ARP poisoning attack, sniffing with Wireshark, and using metasploit

🍯 16 honeypots in a single pypi package (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres & MySQL)

Malware for Discord, designed to steal passwords, tokens, and inject discord folders for long-term use.

WebScan is a web vulnerability Scanning tool, which scans sites for SQL injection and XSS vulnerabilities

Log4j minecraft with python

Um script simples de Port Scan + DNS by Hostname

CVE-2022-22963 PoC

Python HDFS client

(D)arth (S)ide of the (L)og4j (F)orce, the ultimate log4j vulnerabilities assessor