## https://sploitus.com/exploit?id=BF4CE0CF-3880-5B3A-8C40-627846547C72
# LYNX â Layered Network eXploit Suite
LYNX is a CLI-driven platform for **authorized** penetration testing and security
assessments. It organizes work into engagements and targets, runs 60+ scanning
modules through an async task queue, aggregates findings into a normalized model,
and turns the results into AI-assisted analysis and client-ready reports â all
from a single `lynx` command.
> â ïļ **Authorized use only.** LYNX is built for security testing of systems you
> own or have explicit written permission to assess. You are responsible for
> complying with all applicable laws and engagement rules.
## Features
- **63 scan modules** spanning recon, web, network, and exploitation:
- **Custom pure-Python checks** â security headers, CORS, cookies, open redirect,
clickjacking, info disclosure, DNS/email security, SSL/TLS, JWT, GraphQL, SSRF,
LFI, XSS, SQLi, XXE, CSRF, path traversal, default creds, S3 buckets, API
security, tech/CVE detection, command injection, host-header attacks, cache
poisoning, and more.
- **External-tool wrappers** â nmap, nikto, sqlmap, nuclei, gobuster, ffuf,
whatweb, wafw00f, wpscan, hydra, testssl, masscan, amass, theHarvester,
sublist3r, fierce, wfuzz, commix, xsstrike, dalfox, enum4linux, sslscan, dirb,
arjun, gau, trufflehog, shodan, whois, and Metasploit.
- **Engagement workflow** â group targets (IP, domain, URL, CIDR) under engagements
and run single modules, module sets, whole categories, or everything at once.
- **Async execution** â scans run as Celery tasks backed by Redis, with live output
streamed over WebSocket.
- **AI analysis** â agentic vulnerability triage and free-form Q&A over findings via
a local Ollama model.
- **Metasploit integration** â drive `msfrpcd` for automated module runs.
- **Reporting** â generate HTML or PDF reports of an engagement's findings.
- **Rich CLI** â a polished `lynx` terminal interface with severity breakdowns,
analytics, and abbreviated IDs.
## Architecture
```
backend/
app/
main.py FastAPI app (REST + WebSocket)
api/v1/ Routes: auth, engagements, targets, scans, findings,
reports, analytics, websocket
models/ SQLAlchemy models (user, engagement, target, scan,
finding, report, audit_log)
schemas/ Pydantic schemas
modules/ 63 scan modules + registry (BaseScanModule pattern)
tasks/ Celery scan tasks
utils/ Ollama client, process runner, wordlists, search
core/ Security (JWT) & exceptions
config.py Settings (pydantic-settings)
celery_app.py Celery setup
cli/ `lynx` CLI (click + rich)
docker-compose.yml Redis + backend + worker + frontend services
start.sh Local dev launcher
wordlists/ Bundled wordlists for fuzzing/brute-forcing
```
**Stack:** Python · FastAPI · SQLAlchemy (async SQLite) · Celery · Redis ·
Click + Rich (CLI) · Ollama (AI) · Metasploit RPC · WeasyPrint (reports).
## Quick start
Requires Python 3.11+ and Redis. Optional: the external security tools above
(installed on your `PATH`), Ollama, and Metasploit.
```bash
# Start Redis + Celery + FastAPI (+ frontend if present)
./start.sh
# Or use the CLI to run the server
lynx serve
# Backend: http://localhost:8000
# API docs: http://localhost:8000/docs
```
Then drive it from the CLI:
```bash
lynx login # authenticate
lynx engagement create "Acme Q3 Pentest" # create an engagement
lynx target add --url example.com # add a target
lynx scan all -t -c recon # run all recon modules
lynx findings list -s critical # review critical findings
lynx ai analyze # AI-assisted triage
lynx report generate -o report.pdf # export a report
```
Run `lynx help` for the full command reference. IDs can be abbreviated to their
first 8 characters.
## Docker
```bash
docker compose up
```
Brings up Redis, the FastAPI backend, a Celery worker, and a frontend dev server.
## License
No license specified. All rights reserved by the author unless stated otherwise.