Share
## https://sploitus.com/exploit?id=FB4864CF-A2E8-56B1-90B4-29F80529920B
# ๐Ÿ SNAKEBITE v2.0

### โšก The Ultimate Automated Web Security Scanner โšก

[![Python](https://img.shields.io/badge/Python-3.8+-3776AB?style=for-the-badge&logo=python&logoColor=white)](https://python.org)
[![License](https://img.shields.io/badge/License-MIT-green?style=for-the-badge)](LICENSE)
[![Modules](https://img.shields.io/badge/Modules-110+-FF0000?style=for-the-badge&logo=hackaday&logoColor=white)]()
[![Platform](https://img.shields.io/badge/Platform-Windows%20|%20Linux%20|%20macOS-0078D4?style=for-the-badge&logo=windows-terminal&logoColor=white)]()

[![Version](https://img.shields.io/badge/Version-2.0.0-FF6B35?style=for-the-badge&logo=semver&logoColor=white)]()
[![Stars](https://img.shields.io/github/stars/xKILLERDEADx/Snakebite?style=for-the-badge&logo=github&color=yellow)](https://github.com/xKILLERDEADx/Snakebite)



**A beast-level, modular web security scanner engineered for penetration testers, bug bounty hunters, and security researchers who demand maximum firepower.**



[๐Ÿš€ Quick Start](#-quick-start) โ€ข
[โšก Features](#-features) โ€ข
[๐ŸŽฏ Usage](#-usage) โ€ข
[๐Ÿ“ฆ Modules](#-all-modules-110) โ€ข
[๐Ÿ“Š Reports](#-reporting--output) โ€ข
[๐Ÿ—๏ธ Architecture](#-architecture) โ€ข
[๐Ÿค Contributing](#-contributing) โ€ข
[๐Ÿ“„ License](#-license)



---



## ๐Ÿ“ธ Screenshot









##  Why Snakebite?

> **Snakebite isn't just another scanner. It's a full-spectrum offensive security toolkit.**

Most scanners focus on one thing. Snakebite does **everything**. From deep reconnaissance to zero-day pattern detection, from dark web monitoring to auto-exploit generation, all packed in one tool with **110+ specialized attack modules**.



๐ŸŽฏ
110+ Attack Modules
The most comprehensive module library available in a single tool

    
    


โšก
Async & Multi-threaded
Blazing fast scanning with asyncio and concurrent threading


๐Ÿค–
AI-Powered Analysis
Intelligent vulnerability classification and zero-day pattern detection


๐Ÿ“Š
Professional Reports
Interactive HTML dashboards, PDF reports, and compliance scoring


๐Ÿ”Œ
Plugin System
Extensible architecture โ€” write your own modules easily


๐ŸŒ
Cross-Platform
Works on Windows, Linux, and macOS



---

## ๐Ÿš€ Quick Start

### Prerequisites

| Requirement | Minimum Version |
|-------------|-----------------|
| **Python**  | 3.8+            |
| **pip**     | Latest           |
| **OS**      | Windows / Linux / macOS |

### โš™๏ธ Installation

**Clone & Install:**
```bash
git clone https://github.com/xKILLERDEADx/Snakebite.git
cd Snakebite
pip install -r requirements.txt
```
**Or install as a package:**
```bash
pip install .
```

**Windows One-Click Setup:**
```bash
setup.bat
run.bat
```

### โœ… Verify Installation
```bash
python snakebite.py --help
```

---

## ๐Ÿ–ฅ๏ธ Supported Platforms & Tools

Snakebite is **100% Python** โ€” it runs anywhere Python 3.8+ is available.

| Platform | Terminal / Tool | Status | Notes |
|----------|----------------|--------|-------|
| **Windows** | CMD, PowerShell, Git Bash | โœ… Full Support | Use `setup.bat` for quick setup |
| **Linux** | Bash, Zsh, Fish | โœ… Full Support | Any distro with Python 3.8+ |
| **Kali Linux** | Terminal | โœ… Best for Pentesting | Pre-installed Python, ready to go |
| **Parrot OS** | Terminal | โœ… Full Support | Security-focused distro |
| **macOS** | Terminal, iTerm2 | โœ… Full Support | Install Python via Homebrew |
| **Android** | **Termux** | โœ… Works! | See Termux setup below |
| **Windows** | WSL (Ubuntu/Kali) | โœ… Full Support | Best of both worlds |
| **Cloud / VPS** | SSH Terminal | โœ… Full Support | AWS, DigitalOcean, Linode, etc. |

### ๐Ÿ“ฑ Termux Installation (Android)

```bash
pkg update && pkg upgrade
pkg install python git
git clone https://github.com/xKILLERDEADx/Snakebite.git
cd Snakebite
pip install -r requirements.txt
python snakebite.py -u https://target.com
```

### ๐Ÿง Linux / Kali / Parrot Installation

```bash
sudo apt update
sudo apt install python3 python3-pip git
git clone https://github.com/xKILLERDEADx/Snakebite.git
cd Snakebite
pip3 install -r requirements.txt
python3 snakebite.py -u https://target.com
```

---

## โšก Features





### ๐Ÿ” Reconnaissance & Discovery
- Subdomain enumeration & brute force
- DNS zone transfer & record analysis
- Google dorking intelligence
- Certificate transparency log mining
- Virtual host discovery
- Technology fingerprinting (Wappalyzer-style)
- WHOIS history tracking
- Network topology mapping
- Wayback Machine URL mining
- Attack surface mapping
- Content & directory discovery
- Async port scanning (top 1000)




### ๐Ÿ’‰ Injection Testing
- SQL Injection (Error, Boolean, Time, UNION, Blind)
- Cross-Site Scripting (Reflected, DOM, Stored, Blind)
- Server-Side Template Injection (SSTI)
- Remote Code Execution (RCE + Blind RCE)
- Local File Inclusion (LFI)
- XXE, LDAP, XPath, XSLT Injection
- NoSQL Injection
- Log4Shell (CVE-2021-44228)
- Spring4Shell & Shellshock
- Insecure Deserialization (Java, PHP, Python)
- CRLF Injection & HTTP Header Injection
- Server-Side Includes (SSI) Injection






### ๐ŸŒ Protocol & API Security
- GraphQL introspection & deep scanning & batching
- WebSocket security analysis & hijacking
- HTTP/2 & HTTP request smuggling
- H2C smuggling detection
- OAuth2 / SAML full-chain analysis
- REST API endpoint discovery
- API schema reconstruction
- Swagger/OpenAPI exposure detection
- JWT forgery & security analysis
- Session token analysis & fixation testing
- CORS misconfiguration chain exploitation
- Protocol fuzzing engine




### ๐Ÿ›ก๏ธ Advanced Detection
- WAF fingerprinting & bypass techniques
- Race condition detection
- CORS misconfiguration chains
- Cache poisoning & deception attacks
- Prototype pollution (client & server)
- SSRF chain building & blind SSRF
- Business logic fuzzing
- Zero-day pattern detection
- DNS rebinding & exfiltration
- Memory leak detection
- Rate limit bypass
- 403 Forbidden bypass techniques






### ๐Ÿ•ต๏ธ OSINT & Threat Intelligence
- Dark web & breach monitoring
- Shodan & VirusTotal integration
- GitHub secret leak scanning
- Email harvesting & deep analysis
- Social media reconnaissance (OSINT)
- Supply chain auditing
- Threat intelligence feeds
- CVE mapping & exploit search
- API key validation
- JavaScript secrets extraction
- Phishing detection
- C2 server detection




### ๐Ÿ“Š Reporting & Output
- Interactive HTML dashboard
- Professional PDF reports (ReportLab)
- OWASP Top 10 compliance scoring
- PCI DSS / GDPR / SOC2 compliance checks
- Security scorecard generation
- AI vulnerability classification
- Auto exploit script generation
- Telegram & Discord real-time notifications
- Scan diff & comparison
- Scan resume capability
- Live web dashboard
- Exploit reporter






### ๐Ÿข Platform-Specific Scanners
- WordPress, Drupal, Joomla (CMS)
- Jenkins, Jira, Confluence, SonarQube
- Apache Tomcat, Struts, Solr
- Oracle WebLogic, GlassFish, JBoss
- Microsoft Exchange, IIS
- VMware, Citrix ADC/Gateway
- Spring Boot Actuator exposure
- Elasticsearch, Redis, Memcached
- Kubernetes API, Docker API, MinIO
- Firebase, Hadoop, Zabbix
- Nginx, SAP, ColdFusion, ThinkPHP
- Grafana, Pulse Secure, F5 BIG-IP




### ๐Ÿ”ฌ Specialized Modules
- WebAssembly (WASM) scanner
- IoT device scanner
- CI/CD pipeline detector
- Cloud metadata SSRF
- S3 bucket brute force
- Nuclei template engine
- Webshell & rootkit detection
- Malware & backdoor finder
- Defacement monitoring
- Dependency confusion detection
- Parameter mining & fuzzing
- Payload encoding engine
- Plugin system for custom modules





---

## ๐ŸŽฏ Usage

### Basic Scan
```bash
python snakebite.py -u https://target.com
```

### Scan Profiles

| Profile | Description | Speed |
|---------|-------------|-------|
| `quick` | Fast surface-level scan | โšกโšกโšก |
| `standard` | Balanced scan (default) | โšกโšก |
| `deep` | Thorough vulnerability scan | โšก |
| `full` | Everything + OSINT + Intelligence | ๐Ÿข (but deadly) |

```bash
python snakebite.py -u https://target.com --profile quick
python snakebite.py -u https://target.com --profile deep --proxy http://127.0.0.1:8080
python snakebite.py -u https://target.com --profile full \
    --shodan-key YOUR_SHODAN_KEY \
    --vt-key YOUR_VIRUSTOTAL_KEY \
    --github-token YOUR_GITHUB_TOKEN \
    --telegram-token YOUR_BOT_TOKEN \
    --discord-webhook YOUR_WEBHOOK_URL

python snakebite.py -u https://target.com -o my_report.json -v
```

### Full CLI Options

```
Usage: snakebite.py [options]

Target:
  -u, --url URL           Target URL to scan

Performance:
  -t, --threads N         Number of concurrent threads (default: 10)
  --timeout SECONDS       Request timeout in seconds (default: 10)
  --rate-limit N          Requests per second limit

Output:
  -o, --output FILE       Output report filename
  -v, --verbose           Enable verbose output

Network:
  --proxy PROXY           Proxy URL (e.g., http://127.0.0.1:8080)

Scan Control:
  --profile PROFILE       Scan profile (quick/standard/deep/full)
  --wordlist FILE         Custom wordlist for brute force

API Integrations:
  --shodan-key KEY        Shodan API key for intelligence
  --vt-key KEY            VirusTotal API key
  --github-token TOKEN    GitHub token for leak scanning

Notifications:
  --telegram-token TOKEN  Telegram bot token for notifications
  --discord-webhook URL   Discord webhook for notifications
```

---

## ๐Ÿ“ฆ All Modules (110+)

Snakebite packs **110+ specialized security modules** โ€” each purpose-built for real-world offensive testing.


๐Ÿ” Reconnaissance & Discovery (30+ modules)

| Module | Description |
|--------|-------------|
| `recon.py` | Full target reconnaissance & fingerprinting |
| `subdomains.py` | Multi-source subdomain enumeration |
| `subdomain_brute.py` | Subdomain brute force discovery |
| `subdomain_takeover.py` | Subdomain takeover detection |
| `dns_zone.py` | DNS zone transfer & record enumeration |
| `ct_logs.py` | Certificate transparency log mining |
| `vhost_finder.py` | Virtual host discovery |
| `ports.py` | Async port scanning (top 1000 ports) |
| `crawler.py` | Intelligent web crawler |
| `wayback.py` | Wayback Machine URL discovery |
| `google_dorker.py` | Google dork intelligence |
| `tech_detect.py` | Technology stack detection |
| `tech_fingerprint.py` | Deep technology fingerprinting |
| `content_discovery.py` | Hidden content & directory discovery |
| `resource_discovery.py` | Advanced resource discovery engine |
| `js_analyzer.py` | JavaScript file analysis |
| `js_deobfuscate.py` | JavaScript deobfuscation engine |
| `whois_history.py` | WHOIS history tracking |
| `network_mapper.py` | Network topology mapping |
| `attack_surface.py` | Attack surface mapper |
| `speed_test.py` | Target response speed analysis |
| `broken_links.py` | Broken link detection |
| `sensitive_files.py` | Sensitive file discovery |
| `git_scan.py` | Exposed `.git` directory scanner |
| `env_dump.py` | Environment file exposure |
| `ssl_check.py` | SSL/TLS configuration analysis |
| `admin_hunt.py` | Admin panel discovery |
| `hidden_admin.py` | Hidden admin endpoint finder |
| `ultra_admin.py` | Ultra admin panel detection |




๐Ÿ’‰ Injection Testing (40+ modules)

| Module | Description |
|--------|-------------|
| `sqli.py` | Advanced SQL injection scanner |
| `blind_sqli.py` | Blind SQL injection detection |
| `xss.py` | Cross-site scripting detector |
| `blind_xss.py` | Blind XSS with callback detection |
| `dom_xss.py` | DOM-based XSS analysis |
| `xssi.py` | Cross-site script inclusion |
| `ssti.py` | Server-side template injection |
| `rce.py` | Remote code execution testing |
| `blind_rce.py` | Blind RCE with timing analysis |
| `lfi.py` | Local file inclusion scanner |
| `xxe.py` | XML external entity injection |
| `nosql.py` | NoSQL injection testing |
| `ldap.py` | LDAP injection scanner |
| `xpath.py` | XPath injection testing |
| `xslt.py` | XSLT injection scanner |
| `ssi.py` | Server-side includes injection |
| `crlf.py` | CRLF injection detection |
| `csv_injection.py` | CSV injection testing |
| `latex.py` | LaTeX injection scanner |
| `esi.py` | Edge-Side Includes injection |
| `log4shell.py` | Log4Shell (CVE-2021-44228) scanner |
| `spring4shell.py` | Spring4Shell scanner |
| `shellshock.py` | Shellshock vulnerability testing |
| `deserialization.py` | Insecure deserialization detection |
| `java_deser.py` | Java deserialization exploits |
| `php_object.py` | PHP object injection |
| `pickle.py` | Python pickle deserialization |
| `mass_assignment.py` | Mass assignment vulnerability |
| `http_desync.py` | HTTP request desynchronization |
| `http_smuggle.py` | HTTP request smuggling |
| `smuggling.py` | Advanced HTTP smuggling |
| `h2c_smuggler.py` | H2C smuggling detection |
| `cache_poisoning.py` | Web cache poisoning |
| `cache_deception.py` | Cache deception attacks |
| `header_injection.py` | HTTP header injection |
| `host_header.py` | Host header attacks |
| `hpp.py` | HTTP parameter pollution |
| `hpp_scanner.py` | Advanced HPP scanning |
| `redos.py` | ReDoS pattern detection |
| `timing_attack.py` | Timing-based attacks |
| `race_condition.py` | Race condition detection |
| `race.py` | Race condition exploits |
| `bola.py` | BOLA/BFLA testing |
| `broken_access.py` | Broken access control |
| `idor.py` | IDOR vulnerability detection |
| `business_logic.py` | Business logic fuzzing |
| `redirect.py` | Open redirect scanner |
| `clickjacking.py` | Clickjacking detection |
| `tabnabbing.py` | Reverse tabnabbing testing |
| `rpo.py` | Relative path overwrite |




๐ŸŒ Protocol & API Security (20+ modules)

| Module | Description |
|--------|-------------|
| `graphql.py` | GraphQL endpoint detection |
| `graphql_deep.py` | GraphQL deep introspection |
| `graphql_batch.py` | GraphQL batching attacks |
| `websocket_scan.py` | WebSocket security scanner |
| `websocket_scanner.py` | Advanced WebSocket analysis |
| `websocket_hijack.py` | WebSocket hijacking |
| `http2_scanner.py` | HTTP/2 protocol analysis |
| `jwt_scan.py` | JWT security analysis |
| `jwt_forge.py` | JWT forgery engine |
| `oauth_scanner.py` | OAuth/SAML flow analysis |
| `oauth2_chain.py` | OAuth2 full-chain testing |
| `cors.py` | CORS misconfiguration |
| `cors_chain.py` | CORS chain exploitation |
| `api_discovery.py` | API endpoint discovery |
| `api_reconstruct.py` | API schema reconstruction |
| `swagger.py` | Swagger/OpenAPI exposure |
| `ssrf_chain.py` | SSRF chain building |
| `blind_ssrf.py` | Blind SSRF oracle |
| `ssrf_port.py` | SSRF port scanning |
| `metadata_ssrf.py` | Cloud metadata via SSRF |
| `session_analysis.py` | Session token analysis |
| `session_fixation.py` | Session fixation testing |
| `proto_client.py` | Protocol buffer client testing |
| `proto_server.py` | Protocol buffer server testing |
| `protocol_fuzzer.py` | Protocol fuzzing engine |
| `dns_rebinding.py` | DNS rebinding attacks |
| `dns_exfil.py` | DNS exfiltration detection |




๐Ÿข Platform-Specific Scanners (35+ modules)

| Module | Description |
|--------|-------------|
| `wordpress.py` | WordPress vulnerability scanner |
| `drupal.py` | Drupal security testing |
| `cms.py` | General CMS detection |
| `general_cms.py` | Extended CMS fingerprinting |
| `jenkins.py` | Jenkins exposure detection |
| `jira.py` | Jira vulnerability scanner |
| `confluence.py` | Confluence security testing |
| `sonarqube.py` | SonarQube exposure detection |
| `gitea.py` | Gitea instance detection |
| `tomcat.py` | Apache Tomcat scanner |
| `struts.py` | Apache Struts vulnerability |
| `solr.py` | Apache Solr exposure |
| `weblogic.py` | Oracle WebLogic detection |
| `glassfish.py` | GlassFish server scanner |
| `jboss.py` | JBoss application server |
| `exchange.py` | Microsoft Exchange scanner |
| `iis_shortname.py` | IIS short filename scanner |
| `vmware.py` | VMware vulnerability detection |
| `citrix.py` | Citrix ADC/Gateway scanner |
| `spring_boot.py` | Spring Boot actuator exposure |
| `rails.py` | Ruby on Rails scanner |
| `coldfusion.py` | ColdFusion security testing |
| `thinkphp.py` | ThinkPHP vulnerability scanner |
| `elastic.py` | Elasticsearch exposure |
| `redis_scan.py` | Redis exposure scanner |
| `memcached.py` | Memcached exposure |
| `minio.py` | MinIO storage scanner |
| `k8s.py` | Kubernetes API detection |
| `docker_api.py` | Docker API exposure |
| `firebase.py` | Firebase misconfiguration |
| `hadoop.py` | Hadoop cluster exposure |
| `zabbix.py` | Zabbix instance detection |
| `nginx.py` | Nginx configuration issues |
| `sap.py` | SAP system detection |
| `grafana.py` | Grafana vulnerability detection |
| `pulse.py` | Pulse Secure VPN scanner |
| `f5.py` | F5 BIG-IP detection |




๐Ÿ•ต๏ธ OSINT & Intelligence (15+ modules)

| Module | Description |
|--------|-------------|
| `shodan_check.py` | Shodan intelligence integration |
| `dark_web_monitor.py` | Dark web & breach monitoring |
| `github_leaks.py` | GitHub secret leak scanning |
| `email_harvester.py` | Email address harvesting |
| `email_deep.py` | Deep email reconnaissance |
| `email_security.py` | Email security analysis (SPF/DKIM/DMARC) |
| `social_recon.py` | Social media OSINT |
| `supply_chain.py` | Supply chain auditing |
| `threat_intel.py` | Threat intelligence feeds |
| `cve_mapper.py` | CVE mapping engine |
| `cve_exploiter.py` | CVE exploit intelligence |
| `secrets_engine.py` | Secrets/credentials detection |
| `js_secrets.py` | JavaScript secrets extractor |
| `key_validator.py` | API key validation |
| `api_key_validator.py` | Extended API key validation |
| `phishing_detect.py` | Phishing detection analysis |
| `c2_detect.py` | Command & Control detection |




๐Ÿ›ก๏ธ Defense Evasion & Advanced (20+ modules)

| Module | Description |
|--------|-------------|
| `waf_bypass.py` | WAF detection & bypass |
| `bypass_403.py` | 403 Forbidden bypass techniques |
| `rate_bypass.py` | Rate limiter bypass |
| `csp_bypass.py` | CSP bypass techniques |
| `rate_limiter.py` | Rate limiter detection |
| `proxy_chain.py` | Proxy chain rotation |
| `payload_encoder.py` | Payload encoding engine |
| `prototype.py` | Prototype pollution |
| `proto_pollution_deep.py` | Deep prototype pollution |
| `fuzzer.py` | General purpose fuzzer |
| `param_fuzzer.py` | Parameter fuzzer |
| `param_miner.py` | Hidden parameter mining |
| `brute_force.py` | Brute force engine |
| `webdav.py` | WebDAV testing |
| `dangling.py` | Dangling markup detection |
| `takeover.py` | Subdomain takeover exploitation |
| `cloud_hunter.py` | Cloud asset discovery |
| `cloud_metadata.py` | Cloud metadata extraction |
| `s3_brute.py` | S3 bucket brute force |
| `dep_confusion.py` | Dependency confusion |
| `dependency_confusion.py` | Advanced dependency confusion |
| `dependencies.py` | Dependency analysis & auditing |
| `server_misconfig.py` | Server misconfiguration scanner |
| `scanner.py` | Core scanning utilities |




๐Ÿ“Š Reporting & Analysis (15+ modules)

| Module | Description |
|--------|-------------|
| `report.py` | Master report engine |
| `html_report.py` | Interactive HTML report generation |
| `pdf_report.py` | Professional PDF reports |
| `report_pro.py` | Enhanced professional reporting |
| `exploit_reporter.py` | Exploit report generator |
| `live_dashboard.py` | Real-time web dashboard |
| `owasp_check.py` | OWASP Top 10 compliance |
| `compliance.py` | PCI/GDPR/SOC2 compliance scanning |
| `security_scorecard.py` | Security scorecard generator |
| `vuln_classifier.py` | AI vulnerability classification |
| `ai_vuln_predictor.py` | AI vulnerability prediction |
| `exploit_generator.py` | Auto exploit script generator |
| `exploit_suggest.py` | Exploit suggestion engine |
| `scan_profiles.py` | Scan profile management |
| `scan_diff.py` | Scan comparison & diff |
| `scan_resume.py` | Scan resume capability |
| `notifications.py` | Telegram & Discord alerts |
| `multi_target.py` | Multi-target scanning |
| `plugin_system.py` | Plugin architecture |
| `nuclei_engine.py` | Nuclei template integration |




๐Ÿ”ฌ Specialized & Research (10+ modules)

| Module | Description |
|--------|-------------|
| `wasm_scanner.py` | WebAssembly security analysis |
| `iot_scanner.py` | IoT device vulnerability scanner |
| `cicd_detector.py` | CI/CD pipeline detection |
| `forensic_analyzer.py` | Digital forensics analysis |
| `malware_scanner.py` | Malware detection engine |
| `backdoor_finder.py` | Backdoor detection scanner |
| `webshell_detect.py` | Webshell detection engine |
| `rootkit_web.py` | Web rootkit detection |
| `defacement_monitor.py` | Website defacement monitoring |
| `memory_leak.py` | Memory leak detection |
| `zero_day_detect.py` | Zero-day pattern detection |
| `zeroday_detect.py` | Advanced zero-day analysis |
| `client_attack.py` | Client-side attack vectors |



---

## ๐Ÿ“Š Reporting & Output

Snakebite generates **multiple report formats** automatically after each scan:

| Format | Description | Use Case |
|--------|-------------|----------|
| **๐Ÿ“„ JSON** | Machine-readable full scan data | CI/CD integration, data processing |
| **๐ŸŒ HTML** | Interactive dashboard with filters & search | Browser-based analysis |
| **๐Ÿ“‘ PDF** | Professional report with charts | Stakeholder presentations |
| **๐Ÿ“บ Dashboard** | Real-time live web dashboard | Continuous monitoring |

### What's in a Report?

- ๐Ÿ“ **Executive Summary** with risk scoring at a glance
- ๐Ÿ† **OWASP Top 10 Compliance Matrix** for instant compliance check
- ๐Ÿ” **Detailed Findings** with severity, evidence, & CVE references
- ๐Ÿ’ก **Remediation Recommendations** with actionable fix suggestions
- ๐Ÿ›ก๏ธ **Compliance Check** for PCI DSS, GDPR, SOC2 readiness
- ๐Ÿ“ˆ **Security Scorecard** showing overall security posture grade
- โš”๏ธ **Auto-Generated Exploit Scripts** with ready-to-use PoC scripts

---

## ๐Ÿ”ง Dependencies

Snakebite is built on top of battle-tested Python libraries:

| Library | Purpose |
|---------|---------|
| `aiohttp` | Async HTTP client for blazing-fast requests |
| `aiodns` | Async DNS resolution |
| `rich` | Beautiful terminal output & progress bars |
| `requests` | Standard HTTP library |
| `dnspython` | DNS toolkit for zone transfers & records |
| `beautifulsoup4` | HTML/XML parsing engine |
| `colorama` | Cross-platform colored terminal output |
| `fake-useragent` | Random user-agent rotation |
| `python-whois` | WHOIS lookup engine |
| `mmh3` | MurmurHash3 for favicon hashing |
| `reportlab` | Professional PDF report generation |

---

## ๐Ÿค Contributing

Contributions are welcome! Please read our [CONTRIBUTING.md](CONTRIBUTING.md) for:

- ๐Ÿ› Bug Reporting Guidelines
- โœจ Feature Request Process
- ๐Ÿ”€ Pull Request Standards
- ๐Ÿ“ Code Style Requirements

See the [CHANGELOG.md](CHANGELOG.md) for version history and the [SECURITY.md](SECURITY.md) for our security policy.

---

## โš ๏ธ Legal Disclaimer

> **๐Ÿšจ Snakebite is intended for AUTHORIZED security testing ONLY.**

Usage of this tool for attacking targets without **prior mutual consent** is **illegal**. It is the end user's responsibility to obey all applicable local, state, and federal laws. The developers assume **no liability** and are not responsible for any misuse or damage caused by this tool.

**โš–๏ธ Always obtain proper authorization before scanning any target.**

---

## ๐Ÿ‘ค Author





**Muhammad Abid** | Security Researcher & Developer

[![GitHub](https://img.shields.io/badge/GitHub-xKILLERDEADx-181717?style=flat-square&logo=github)](https://github.com/xKILLERDEADx)
[![Website](https://img.shields.io/badge/Website-muhammadabid.com-0078D4?style=flat-square&logo=google-chrome&logoColor=white)](https://muhammadabid.com)
[![Email](https://img.shields.io/badge/Email-spaceworkofficial%40gmail.com-EA4335?style=flat-square&logo=gmail&logoColor=white)](mailto:spaceworkofficial@gmail.com)





---

## ๐Ÿ“„ License

This project is licensed under the **MIT License**. See the [LICENSE](LICENSE) file for details.

---





**๐Ÿ Built with venom. Use responsibly. ๐Ÿ**

**If you find Snakebite useful, consider giving it a โญ on GitHub!**



[![GitHub Stars](https://img.shields.io/github/stars/xKILLERDEADx/Snakebite?style=social)](https://github.com/xKILLERDEADx/Snakebite)
[![GitHub Forks](https://img.shields.io/github/forks/xKILLERDEADx/Snakebite?style=social)](https://github.com/xKILLERDEADx/Snakebite/fork)