Venom
Offensive Security Framework for Vulnerability Scanning & Pentesting
Warning: Version 4.3.3 now requires PROXIES/VPN.
Features
- Cloudflare Resolver [Cloudbuster]
- LFI->RCE and XSS Scanning [LFI to RCE & XSS]
- SQL Injection Vuln Scanner [SQLi]
- Extremely Large D0rk Target Lists
- Detects known WAFs
- AdminPage Finding
- CCTV/Networked Interfaces discovery [WIP] <<<<
- Vulnerable FTPs Scanner [Toxin]
- DNS Bruteforcer
- Python 3.6 asyncio based scanning
- Cloudflare resolver
- Extremely quick "Toxin" Vulnerable IP scanner to scan potentially millions of ips for known vulnerable services.
- Free and Open /src/
- Cross-platform Python-based toolkit
- Licensed under GPLv3
- Built by hackers with full transparency
- No more issues with dependencies from pre-alpha release
This is outdated.
NOTE: You MUST install these on Ubuntu and Kali.
Ubuntu users:
Please make sure you sudo apt-get install python3-bs4
| apt-get install python3-setuptools
Kali users:
Please apt-get install python3-dev
| apt-get install python-dev
NOTE: Install Poetry for deps:
curl -sSL https://install.python-poetry.org | python3 - poetry install # install deps poetry update # when you want to check for deps updates
Docker users: Please see Dockerfile
Contact Information:
Submit a bug report/pull request with prefix "Query" at the start.
Credits to:
- Architect for the initial encouragement and support in V3n0ms early days
- SageHack for allowing Cloudbuster to be adapted for use within V3n0M
- D35m0nd142 for allowing Collaboration and the use of LFI Suite within V3n0M
- b4ltazar & all members of darkc0de.com for inspiring the project with darkd0rk3r