Why Snakebite?
I was tired of using multiple tools for one security assessment. Every time I had to install 5-6 different tools, configure each one separately, merge results manually, and deal with compatibility issues.
So I built Snakebite - an advanced vulnerability scanner with 122+ security modules that runs as a single executable with zero dependencies.
Key Features
Reconnaissance and OSINT - Subdomain enumeration, DNS, GeoIP, Google Dorking, Shodan integration
Injection Testing - SQLi (error/blind/time), XSS (reflected/stored/DOM), RCE, SSTI, LFI, XXE, Log4Shell, Spring4Shell
Auth Testing - JWT analysis and forge, OAuth2, session fixation, IDOR, brute force
Cloud Security - AWS S3, Firebase, Kubernetes, Docker, SSRF
CMS and Enterprise - WordPress, Drupal, Jenkins, Tomcat, WebLogic, Exchange, VMware, Jira
AI-Powered - WAF bypass with ML, zero-day pattern detection, AI vulnerability prediction
The Numbers
- 122+ security modules
- OWASP Top 10 full coverage
- Auto CVE exploitation (2023-2025)
- 4 scan profiles (Stealth, Light, Standard, Aggressive)
- Professional reports (JSON + HTML + PDF)
- Windows + Linux + Termux support
- Shodan, VirusTotal and GitHub API integration
How to Use
Just download the executable and run:
./Snakebite.exe -u https://target.com
Stealth mode through Tor:
./Snakebite.exe -u https://target.com --profile stealth --proxy socks5://127.0.0.1:9050
Full aggressive scan:
./Snakebite.exe -u https://target.com --profile aggressive --timeout 30
Links
- GitHub: github.com/xKILLERDEADx/Snakebite
- Full Docs: Snakebite Wiki
- Download: Latest Release
Hope it saves you some time. Give it a try and let me know what you think.
Star the repo if you find it useful.
Top comments (0)