badNmap is a revolutionary network reconnaissance and security assessment framework designed for professional penetration testers and security researchers. This advanced nmap wrapper features an intuitive red/black themed interface with comprehensive attack modules and intelligent scanning capabilities.
- Lightning Network Scan - Fast target identification and port scanning
- Reconnaissance Engine - Deep intelligence gathering and enumeration
- Vulnerability Hunter - Comprehensive security assessment and vuln detection
- Phantom Stealth Operations - Silent & evasive scanning techniques
- Credential Breaker Suite - Authentication testing and brute force attacks
- Firewall Penetration Engine - Advanced evasion and bypass techniques
- Precision Port Scanner - Custom port range scanning with timing control
- Elite Intelligence Reports - Professional report generation in multiple formats
- Host Discovery (Network Sweep)
- Port Scanning & Service Detection
- Operating System Detection
- Service Version Enumeration
- Aggressive Discovery Scan
- UDP Service Discovery
- Network Topology Mapping
- SSL/TLS Security Assessment
- Web Application Vulnerabilities
- Database Security Scan
- Network Service Vulnerabilities
- SMB/NetBIOS Vulnerabilities
- Comprehensive Vulnerability Scan
- Custom Script Execution
- SYN Stealth Scan
- FIN Stealth Scan
- NULL Stealth Scan
- XMAS Stealth Scan
- Idle Scan (Zombie)
- Fragmented Packets
- Decoy Scan
- SSH Brute Force Attack
- FTP Authentication Testing
- HTTP Basic Auth Brute Force
- MySQL Database Brute Force
- SMB Share Authentication
- SNMP Community String Testing
- Default Credential Check
- XML Format Reports
- HTML Format Reports
- Text Format Reports
- All Formats Generation
- Automated Report Opening
- OS: Linux distributions (Kali Linux, Ubuntu, Debian, CentOS, Fedora, Arch, openSUSE)
- Architecture: x86_64
- RAM: Minimum 2GB
- Storage: 100MB free space
- Network: Active internet connection for dependency validation and auto-installation
nmap- Network exploration tool and scanning engine (auto-installed if missing)- Terminal Emulator (auto-detected and installed):
gnome-terminal(preferred)konsole(KDE)xfce4-terminal(XFCE)mate-terminal(MATE)lxterminal(LXDE)terminatorxterm(fallback)x-terminal-emulator(system default)
firefox- Web browser for report viewing (optional)xsltproc- XSLT processor for HTML report conversion- Root privileges (required for raw socket operations)
- X11 graphical environment (DISPLAY variable must be set)
- Active internet connection for dependency validation
badNmap features intelligent auto-installation that detects your system and installs missing dependencies automatically.
# Download badNmap
git clone https://github.com/ahmadfathir/badnmap.git
cd badnmap
# Make executable
chmod +x badnmap.sh
# Run badNmap (dependencies will be auto-installed)
sudo ./badnmap.sh# Run badNmap
sudo ./badnmap.sh- Select option
[01] LIGHTNING NETWORK SCAN - Enter target IP or hostname
- badNmap will perform a fast comprehensive port scan
- Select option
[03] VULNERABILITY HUNTER - Choose from SSL/TLS, Web Apps, Database, SMB, or Custom scripts
- Enter target and wait for vulnerability assessment results
- Select option
[04] PHANTOM STEALTH OPERATIONS - Choose from SYN, FIN, NULL, XMAS, Idle, Fragmented, or Decoy scans
- Perfect for evading detection systems
- Select option
[08] ELITE INTELLIGENCE REPORTS - Choose report format (XML, HTML, Text, or All Formats)
- Reports will be automatically saved in Reports/ folder
badNmap automatically generates timestamped output files for all scans:
# Examples of auto-generated filenames:
lightning_scan_20241210_143052.txt
ssl_tls_security_20241210_143125.txt
ssh_bruteforce_20241210_143200.txt
stealth_syn_scan_20241210_143245.txtbadNmap supports custom nmap script execution:
# In Vulnerability Hunter menu
# Choose option [07] Custom Script Execution
# Enter script name, example: http-sql-injectionScans are saved in the current working directory with descriptive names:
./
βββ lightning_scan_YYYYMMDD_HHMMSS.txt
βββ ssl_tls_security_YYYYMMDD_HHMMSS.txt
βββ web_app_vuln_YYYYMMDD_HHMMSS.txt
βββ syn_stealth_scan_YYYYMMDD_HHMMSS.txt
βββ Reports/
βββ custom_report.xml
βββ custom_report.html
βββ custom_report.txtIMPORTANT: badNmap is developed for educational ONLY.
- Penetration testing on your own systems
- Authorized security assessments
- Educational and research purposes
- Bug bounty programs with proper authorization
- Security audits with written permission
- Scanning systems without authorization
- Unauthorized access attempts
- Malicious activities
- Violation of laws and regulations
Users are fully responsible for the use of this tool. Developers are not responsible for misuse.
- Nmap Development Team - Gordon Lyon (Fyodor) for creating Nmap (https://nmap.org)
- Security Research Community - For continuous improvements and feedback
- Offensive Security Team - For Kali Linux and penetration testing methodologies
- Kali Linux Development Team - For the advanced security platform
badNmap incorporates advanced features including:
- Multi-Distribution Support - Auto-detection and installation across Linux distros
- Terminal Compatibility - Support for 8+ different terminal emulators
- Intelligent Dependency Management - Automatic detection and installation
- Advanced Stealth Capabilities - Multiple evasion techniques
- Professional Reporting - Multiple output formats with timestamping
- User-Friendly Interface - Intuitive menu system with comprehensive modules
- Documentation: Read this README thoroughly
- Issues: Report bugs through GitHub issues
- β Star the repository for updates
- ποΈ Watch for notifications
- π΄ Fork for personal development
badNmap v1.0 "fckingWing" - Advanced Network Security Suite! π₯
Revolutionary Penetration Testing Framework
Developed with β€οΈ by lalatx1 (github.com/ahmadfathir)
"Fly your damn wings!"