AutoPwn-Scanner has evolved. Moving away from a strict command-line interface, version 2.0 introduces a complete, self-hosted Web UI that emulates a futuristic hacker console. You can now orchestrate scans, execute shell commands, and analyze network/exploit data directly from your browser.
⚠️ Disclaimer: This tool is developed strictly for educational purposes and authorized penetration testing environments. Always obtain proper permission before scanning networks.
| Feature | Old Version (v1.0) | New Version (v2.0) |
|---|---|---|
| Interface | Strict CLI / Terminal Only | CLI + Interactive Web UI |
| Input / Output | Disk files and raw terminal output | Browser UI + Live File Upload & Parsing |
| Command Execution | Manual direct triggers | Scanner automation + Native Shell Proxy |
| Data Visualization | Raw XML / JSON text | Structured Exploit Tables, Host Lists & Port Summaries |
| UI Theme | None (Default Terminal) | Cyberpunk Dark Mode (Neon Red & Black) |
| Architecture | Single terminal pipeline | Decoupled Frontend + Node.js Backend |
The tool now runs on a split architecture, leveraging the speed of C++ for core scanning and the flexibility of Node.js for the web dashboard.
scanner_runner.cpp: The main orchestrator that managesNmap,SearchSploit, andMetasploitpipelines.logic_mapper.py: Handles XML/JSON data structures and reporting pipelines.
server.js(Express Backend): Features aPOST /api/executeendpoint acting as a local proxy to runscanner_runnerand handle standard terminal commands via a customshell:wrapper.index.html: The main user interface, featuring a browser-based terminal simulator, command inputs, a dedicated Shell Mode toggle, and dynamic file upload areas.src/main.js: The frontend engine. It streams terminal outputs, parses Nmap XMLs / SearchSploit JSONs on the fly, and renders detailed graphical summary tables.src/style.css: A customized, high-contrast cyberpunk red/black neon theme for an immersive terminal experience.
Make sure you have the following tools installed on your local testing environment:
node(v16+ recommended) andnpmnmapandsearchsploit(configured in your system PATH)- A C++ compiler (
g++) to build the core runner.
- Clone the repository:
git clone [https://github.com/PIXELQUADRO07/AutoPwn-Scanner.git](https://github.com/PIXELQUADRO07/AutoPwn-Scanner.git) cd AutoPwn-Scanner
Build the C++ Core:
Bash g++ -O3 scanner_runner.cpp -o scanner_runner Install Web UI Dependencies:
Bash cd web-ui npm install Launch the Local Web Server:
Bash npm start The application will verify backend/frontend syntax integrity (node --check) and spin up the server. Open your browser and navigate to http://localhost:3000 (or the port specified in your terminal).
🎮 How to Use the Web UI Running Scans: Type your traditional target parameters into the web console input box to trigger the automated scanner_runner pipeline.
Shell Proxy Mode: Toggle the Shell Mode switch or use the shell: syntax to run native system terminal operations directly through the web manager.
Log & Report Parsing: Drag and drop your generated scan_*.xml or searchsploit_results.json files right into the browser dashboard to immediately generate clear visual grids showing hosts, open ports, and potential matching exploits.
📈 Future Roadmaps [ ] Persistent web database to store past scan histories.
[ ] Live web-socket stream for real-time msfconsole interactive sessions.
[ ] Multi-user session management with secure JWT authentication.