Share
## https://sploitus.com/exploit?id=104C80AA-F4CA-52A3-848B-5A78A08A9C15
# πŸ”₯ VULNEXPO β€” Vulnerability Detection & Exploitation Framework
[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)


  


> **β€œDetect the weakness. Exploit the reality.”**

VULNEXPO is a **modular cybersecurity exploitation framework** designed to bridge the gap between **vulnerability detection** and **controlled exploitation**, built for **learning, labs, and authorized environments**.



## πŸš€ Why VULNEXPO?

Most tools stop at detection.  
VULNEXPO is built with a single mindset:

> **Detection without exploitation is incomplete security knowledge.**

This project focuses on:
- Understanding *why* a vulnerability exists
- Mapping services β†’ CVEs β†’ exploits
- Executing controlled exploitation using Metasploit integration



## 🧠 Core Features

### πŸ” Vulnerability Detection (VD Module)
- Service & version detection using Nmap
- Aggressive and normal scan modes
- CVE mapping via internal signature database
- Confidence-based exploit candidate scoring
- JSON-based scan result storage

### πŸ’₯ Exploitation Engine (EXPLOIT Module)
- Auto-load exploit candidates from VD results
- Manual or automatic exploit selection
- LIVE / DRY execution modes
- Metasploit framework integration (via `msf_adapter`)
- Real-time exploit output streaming

### πŸ”Œ Metasploit Integration
- Uses `msfconsole` under the hood
- Supports real exploit execution in LAB environments
- Designed for future payload & session handling expansion

---

## πŸ—‚ Project Structure

VULNEXPO/
β”œβ”€β”€ core/
β”‚ β”œβ”€β”€ config.py
β”‚ β”œβ”€β”€ io_manager.py
β”‚ β”œβ”€β”€ msf_adapter.py
β”‚ β”œβ”€β”€ vpn_manager.py
β”‚
β”œβ”€β”€ modules/
β”‚ β”œβ”€β”€ vuln_detect.py
β”‚ β”œβ”€β”€ exploit.py
β”‚ β”œβ”€β”€ vuln_signatures.py
β”‚
β”œβ”€β”€ utils/
β”‚ β”œβ”€β”€ banner.py
β”‚ β”œβ”€β”€ colors.py
β”‚ β”œβ”€β”€ logger.py
β”‚ β”œβ”€β”€ help_text.py
β”‚
β”œβ”€β”€ results/
β”œβ”€β”€ logs/
β”œβ”€β”€ reports/
β”œβ”€β”€ sessions/
β”œβ”€β”€ tests/
β”‚
β”œβ”€β”€ main.py
β”œβ”€β”€ requirements.txt
β”œβ”€β”€ LICENSE
└── README.md



---

## βš™οΈ Installation

### Requirements
- Python 3.9+
- Nmap
- Metasploit Framework
- Linux (Kali Linux recommended)

### Setup

git clone https://github.com/charanvoonna/VULNEXPO
cd VULNEXPO
python3 -m venv venv
source venv/bin/activate
pip install -r requirements.txt



▢️ Usage

  --> python main.py


Basic Workflow

1 . Select network mode (VPN / Tor / None)
2 . Run Vulnerability Detection
3 . Review exploit candidates
4 . Select exploit
5 . Execute LIVE exploitation (authorized labs only)


πŸ” Vulnerability Detection :

--> use VD

--> set TARGET 

--> set LIVE true

--> run

πŸ’£ Exploit Mapping:

--> use exploit

--> show candidates

--> select 

--> show selected


 πŸ” VPN Support :

--> OpenVPN support available

--> User-supplied .ovpn configuration required

--> proxy VPN support also avaiable (PROXY)



πŸ§ͺ Tested Environments

    --> Kali Linux
    --> Metasploitable2 && Authorized local lab networks only


⚠️ Legal & Ethical Warning

    This tool is for EDUCATIONAL and AUTHORIZED LAB USE ONLY.
     Running VULNEXPO against systems you do not own or have permission to test is illegal.
        *The author takes no responsibility for misuse.


 🧭 Roadmap:

   --> Payload auto-selection
   
   --> Session management
   
   --> Post-exploitation modules
   
   --> Report generation (HTML/PDF)
   
   --> CVE auto-update engine


πŸ‘¨β€πŸ’» Author:

  CHARAN VOONNA 
  Cybersecurity | Exploitation | VAPT |