v3n0m – Popular Pentesting Scanner

v3n0m is a free and open source scanner. Evolved from baltazar’s scanner, it has adapted several new features that improve functionality and usability. This program is for finding and executing various vulnerabilities. It scavenges the web using dorks and organizes the URLs it finds.

Very useful for executing:

Cloudflare Resolver[Cloudbuster]
Metasploit Modules Scans[To be released]
LFI->RCE and XSS Scanning[LFI->RCE & XSS]
SQL Injection Vuln Scanner[SQLi]
Extremely Large D0rk Target Lists
AdminPage Finding
Toxin Vulnerable FTPs Scanner
DNS BruteForcer
Python 3.6 Asyncio based scanning

What You Hold:

The official adoption of darkd0rker heavily recoded, updated, expanded and improved upon

Brand new, just outta the box!
Most efficient cloudflare resolver around with easy to use interface.
Extremely quick “Toxin” Vulnerable IP scanner to scan potentially millions of ips for known vulnerable services.
Largest and most powerful d0rker online, 14k+d0rks searched over ~ Engines at once.
Free and Open /src/
CrossPlatform Python based toolkit
Release 421 Released on 5th November 2017
Licensed under GPLv3
Tested on: ArchLinux 4.9.42, Ubuntu, Debian, Kali, Windows, MacOS, BlackArch, Manjaro/ArchLinux ARM Ed. Android-Termux

Note for Ubuntu users: Please make sure you have installed –> sudo apt-get install python3-bs4 Otherwise you may get Syntax Error stopping the program from running.

Note for Kali users: Please make sure you have installed –> apt-get install python3-dev apt-get install python-dev

Install note

Clone the repository:

$ git clone https://github.com/v3n0m-Scanner/V3n0M-Scanner.git

Then go inside:

$ cd V3n0M-Scanner/

Then install it:

$ python3 setup.py install --user

Usage:

root@bt:~# python3 v3n0m.py

Now you may follow the simple prompts.

[0x100] Choose your target (domain) :
        Example : .com
        AND
        it is necessary to add you can also use a specific website (www.example.com)

[0x200] Choose the number of random dorks (0 for all.. may take awhile!) :
        Example : 0 = This will choose all of the XSS, File Inclusion, RCE and SQLi dorks

[0x300] Choose the number of threads :
        Example : 50

[0x400] Enter the number of pages to search through :
        Example : 50

    The program will print out your desired settings and start searching.
    It then creates files for the collected and valid URLs for later.
    It takes a while to scan because it utilizes either TOR, which you can specify
    if you wish to do so, or regular HTTP requests over a long period of time.

    After a while, it will feed you the percentage of the scan until completion.
    At this point, it will have saved the valid URLs in the files it created earlier.
    The program utilizes over 10k dorks now, be careful how you use them!
    Enjoy. :]
                                                            ~/ Dev Team