Vulnmap is an advanced, AI-driven penetration testing tool designed to automate the process of vulnerability scanning and network mapping. It leverages the power of large language models (LLMs) to enhance payload generation, response analysis, and overall scanning efficiency.
- AI-Assisted Scanning: Utilizes LLMs for intelligent payload generation and analysis of complex vulnerabilities.
- Comprehensive Reconnaissance: Includes modules for domain information gathering, technology detection, and initial mapping.
- Modular Design: Easy to extend with new vulnerability checks and AI providers.
- Detailed Reporting: Generates clear and actionable reports (HTML, PDF).
- Configurable: Highly customizable via
config/config.yaml.
- Python 3.8+
- A valid API key for an AI provider (e.g., Gemini, OpenAI) configured in
config/config.yaml.
# Clone the repository
git clone https://github.com/AL-MARID/Vulnmap.git
cd Vulnmap
# Install dependencies
pip3 install -r requirements.txtcp config/config.example.yaml config/config.yaml
# Edit config.yaml with your API keysBefore running a scan, you can view all available command-line options:
python3 vulnmap.py -hRun a scan against your target:
python3 vulnmap.py -u https://your-target-website.comContributions are welcome! If you have suggestions for improvements, new features, or bug fixes, please feel free to:
- Fork the repository.
- Create a new branch (
git checkout -b feature/YourFeature). - Make your changes and commit them (
git commit -m 'Add some feature'). - Push to the branch (
git push origin feature/YourFeature). - Open a Pull Request.
This project is licensed under the MIT License - see the LICENSE file for details.