Share 
## https://sploitus.com/exploit?id=E3FE6607-42E5-52EF-94AB-13394188A766
# VulnForge

**AI-Powered Vulnerability Scanner & Auto-Exploit Engine**

VulnForge is an offensive security tool that combines traditional vulnerability scanning with AI-powered analysis, exploit validation, and automatic exploit generation. It performs reconnaissance, attacks credentials, enumerates targets, then uses AI to write and execute custom exploit scripts โ€” all in one command.

---

## Features

- **Port Scanning** โ€” Multi-threaded port scanner with service banner grabbing
- **Web Vulnerability Scanning** โ€” SQLi, XSS, LFI, Open Redirect, Command Injection, Sensitive Files
- **Security Header Analysis** โ€” HSTS, CSP, X-Frame-Options, X-Content-Type-Options, and more
- **SSL/TLS Checking** โ€” Certificate validation, expiry, protocol support (handles self-signed certs)
- **AI Deep Analysis** โ€” GLM-powered analysis of HTTP responses with exploit method suggestions
- **AI Smart Fuzzing** โ€” AI generates context-aware fuzz payloads for any parameter
- **AI Exploit Validation** โ€” Sends real payloads, compares responses, AI confirms/denies with confidence scores
- **Auto-Exploit Engine** โ€” 6-phase automated attack pipeline:
  1. **Reconnaissance** โ€” Page grabbing, form/link extraction, tech detection
  2. **Credential Attacks** โ€” Brute force with 50+ default/common credential pairs
  3. **Open Redirect Testing** โ€” Multiple bypass techniques
  4. **Deep Enumeration** โ€” 40+ sensitive path probes
  5. **AI Exploit Development** โ€” AI generates custom Python exploit scripts from collected data
  6. **Exploit Execution** โ€” Runs the AI-generated scripts against the target live
- **Report Generation** โ€” Console, JSON, and HTML reports with exploit steps and commands

---

## Installation

```bash
git clone https://github.com/iliassMeX0/VulnForge.git
cd VulnForge
pip install -r requirements.txt
```

Create a `.env` file for AI features (optional but recommended):

```env
ZAI_API_KEY=your_api_key_here
ZAI_BASE_URL=https://api.z.ai/api/coding/paas/v4
MODEL=glm-5.1
```

---

## Usage

### Auto-Exploit (Full Attack)

```bash
python main.py attack http://target.com
```

This runs all 6 phases automatically: recon โ†’ credential brute force โ†’ redirect testing โ†’ deep enumeration โ†’ AI script generation โ†’ live exploit execution.

### Individual Scans

```bash
python main.py full http://target.com --ai         # Full scan with AI analysis
python main.py ports http://target.com              # Port scan (1-65535)
python main.py ports http://target.com -p 80,443,8080
python main.py web http://target.com                # Web vulnerability scan
python main.py headers http://target.com            # Security header check
python main.py ssl http://target.com                # SSL/TLS certificate check
```

### AI-Powered Commands

```bash
python main.py ai http://target.com                 # AI deep analysis
python main.py fuzz "http://target.com/search?q=test" q   # AI smart fuzzing
python main.py validate http://target.com           # Scan + AI exploit validation
python main.py exploit http://target.com -v sqli    # Quick exploit validation (sqli/xss/lfi/info)
```

### Report Options

```bash
python main.py full http://target.com -o console json html
python main.py full http://target.com --report-dir ./output
```

---

## Output

All reports are saved to the `reports/` directory:

```
reports/
โ”œโ”€โ”€ scan_target_2026-04-16.json          # JSON report
โ”œโ”€โ”€ scan_target_2026-04-16.html          # HTML report
โ”œโ”€โ”€ attack_http_target_com.json          # Attack results with all findings
โ””โ”€โ”€ scripts/                             # AI-generated standalone exploit scripts
    โ”œโ”€โ”€ open_redirect_exploit.py
    โ”œโ”€โ”€ credential_brute_force.py
    โ”œโ”€โ”€ information_extraction.py
    โ””โ”€โ”€ ...
```

Each saved script in `reports/scripts/` is self-contained and runnable:

```bash
python reports/scripts/open_redirect_exploit.py
```

---

## Architecture

```
vulnscanner/
โ”œโ”€โ”€ cli.py               # CLI entry point (Click commands)
โ”œโ”€โ”€ scanner.py           # Main Scanner orchestrator
โ”œโ”€โ”€ port_scan.py         # Multi-threaded port scanner
โ”œโ”€โ”€ web_vulns.py         # Web vulnerability scanner
โ”œโ”€โ”€ headers.py           # Security header analyzer
โ”œโ”€โ”€ ssl_check.py         # SSL/TLS certificate checker
โ”œโ”€โ”€ payloads.py          # Attack payload definitions
โ”œโ”€โ”€ exploits.py          # Exploit database (12+ vuln types)
โ”œโ”€โ”€ ai_analyzer.py       # AI integration (GLM API)
โ”œโ”€โ”€ reporter.py          # Console/JSON/HTML report generator
โ”œโ”€โ”€ exploit_validator.py # AI-powered exploit validation
โ””โ”€โ”€ auto_exploit.py      # Auto-exploit engine (6 phases)
```

---

## Requirements

- Python 3.8+
- requests
- click
- colorama
- rich
- python-dotenv

---

## Disclaimer

This tool is intended for authorized security testing and educational purposes only. Always obtain proper authorization before scanning or testing any target. The authors are not responsible for misuse of this tool.

---

## License

MIT