VulnDump is an extensible vulnerability & exploitation knowledgebase web application, built with Flask, designed for pentesters, CTF players, red teamers, and security researchers.
Quickly search, filter, and explore hundreds of real attack vectors, enumeration commands, payloads, and post-exploitation techniques by target, tech stack, or attack phase.
-
🔎 Fast, Filtered Search:
Find techniques by target (e.g. WordPress, Joomla), phase (Recon, Exploitation, Persistence, etc), tool, or keyword. -
📝 Rich Knowledgebase:
300+ real-world commands & attack vectors for web, network, post-exploitation, enumeration, and more. -
🌐 Simple Web UI:
Clean, intuitive interface with search term highlighting and instant filter reset. -
🗂️ Extensible CSV Backend:
Easily expand or update the technique database by editing a single CSV file. -
🖱️ Command Details:
Click any entry for full usage info and copy-paste ready commands. -
🛠️ Self-Hosted:
Run locally or on the cloud (PythonAnywhere, etc). Lightweight and easy to deploy.
See it in action:
(sometimes it may be locked for security or development measures)
https://vulndump.pythonanywhere.com/
- Python 3.8+
- Flask
git clone https://github.com/yourusername/VulnDump.git
cd VulnDump
pip install -r requirements.txt
pyhthon3 app.py