Metadata-Version: 2.4
Name: zombie-vdp
Version: 1.0.8
Summary: 🧟‍♂️ Zombie VDP – Ultimate Offensive Security Framework for VDP/Bug Bounty
Home-page: https://github.com/pormes-90/ZOMBIE.git
Author: 418teapot
Author-email: 418teapotbot@gmail.com
Maintainer: Dikha Pormes
Maintainer-email: pormesdikha90@gmail.com
Project-URL: Bug Tracker, https://github.com/pormes-90/ZOMBIE/issues
Project-URL: Documentation, https://github.com/pormes-90/ZOMBIE/wiki
Project-URL: Source Code, https://github.com/pormes-90/ZOMBIE
Project-URL: Changelog, https://github.com/pormes-90/ZOMBIE/blob/main/CHANGELOG.md
Keywords: bug-bounty,vdp,vulnerability-disclosure,security,pentest,reconnaissance,osint,scanner,offensive-security,web-security,api-security,automation,hacking,ethical-hacking,zombie
Platform: any
Classifier: Development Status :: 4 - Beta
Classifier: Intended Audience :: Information Technology
Classifier: Intended Audience :: System Administrators
Classifier: Topic :: Security
Classifier: License :: OSI Approved :: MIT License
Classifier: Environment :: Console
Classifier: Natural Language :: English
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.9
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Programming Language :: Python :: 3 :: Only
Classifier: Operating System :: OS Independent
Classifier: Operating System :: POSIX :: Linux
Classifier: Operating System :: Microsoft :: Windows
Classifier: Operating System :: MacOS
Classifier: Typing :: Typed
Requires-Python: >=3.9,<4.0
Description-Content-Type: text/markdown
Requires-Dist: aiohttp>=3.9
Requires-Dist: requests>=2.31
Requires-Dist: httpx>=0.25
Requires-Dist: websockets>=12.0
Requires-Dist: pyyaml>=6.0
Requires-Dist: beautifulsoup4>=4.12
Requires-Dist: lxml>=5.0
Requires-Dist: python-dateutil>=2.8
Requires-Dist: dnspython>=2.4
Requires-Dist: python-whois>=0.8
Requires-Dist: cryptography>=41.0
Requires-Dist: pyjwt>=2.8
Requires-Dist: passlib>=1.7
Requires-Dist: colorama>=0.4
Requires-Dist: rich>=13.0
Requires-Dist: tabulate>=0.9
Requires-Dist: psutil>=5.9
Requires-Dist: pathlib>=1.0
Requires-Dist: aiosqlite>=0.19
Requires-Dist: sqlalchemy>=2.0
Requires-Dist: asyncio-throttle>=1.0
Requires-Dist: aiofiles>=23.0
Provides-Extra: ml
Requires-Dist: scikit-learn>=1.3; extra == "ml"
Requires-Dist: numpy>=1.24; extra == "ml"
Requires-Dist: scipy>=1.11; extra == "ml"
Provides-Extra: viz
Requires-Dist: matplotlib>=3.7; extra == "viz"
Requires-Dist: seaborn>=0.12; extra == "viz"
Requires-Dist: plotly>=5.17; extra == "viz"
Provides-Extra: ghost
Requires-Dist: torch>=2.0; extra == "ghost"
Requires-Dist: scapy>=2.5; extra == "ghost"
Requires-Dist: impacket>=0.11; extra == "ghost"
Requires-Dist: pysocks>=1.7; extra == "ghost"
Requires-Dist: stem>=1.8; extra == "ghost"
Provides-Extra: dev
Requires-Dist: pytest>=7.4; extra == "dev"
Requires-Dist: pytest-asyncio>=0.21; extra == "dev"
Requires-Dist: pytest-cov>=4.1; extra == "dev"
Requires-Dist: black>=23.0; extra == "dev"
Requires-Dist: ruff>=0.1; extra == "dev"
Requires-Dist: mypy>=1.5; extra == "dev"
Requires-Dist: pre-commit>=3.5; extra == "dev"
Provides-Extra: docs
Requires-Dist: sphinx>=7.2; extra == "docs"
Requires-Dist: sphinx-rtd-theme>=1.3; extra == "docs"
Requires-Dist: myst-parser>=2.0; extra == "docs"
Provides-Extra: full
Requires-Dist: scikit-learn>=1.3; extra == "full"
Requires-Dist: matplotlib>=3.7; extra == "full"
Requires-Dist: torch>=2.0; extra == "full"
Requires-Dist: scapy>=2.5; extra == "full"
Provides-Extra: all
Requires-Dist: aiofiles>=23.0; extra == "all"
Requires-Dist: aiohttp>=3.9; extra == "all"
Requires-Dist: aiosqlite>=0.19; extra == "all"
Requires-Dist: asyncio-throttle>=1.0; extra == "all"
Requires-Dist: beautifulsoup4>=4.12; extra == "all"
Requires-Dist: black>=23.0; extra == "all"
Requires-Dist: colorama>=0.4; extra == "all"
Requires-Dist: cryptography>=41.0; extra == "all"
Requires-Dist: dnspython>=2.4; extra == "all"
Requires-Dist: httpx>=0.25; extra == "all"
Requires-Dist: impacket>=0.11; extra == "all"
Requires-Dist: lxml>=5.0; extra == "all"
Requires-Dist: matplotlib>=3.7; extra == "all"
Requires-Dist: mypy>=1.5; extra == "all"
Requires-Dist: myst-parser>=2.0; extra == "all"
Requires-Dist: numpy>=1.24; extra == "all"
Requires-Dist: passlib>=1.7; extra == "all"
Requires-Dist: pathlib>=1.0; extra == "all"
Requires-Dist: plotly>=5.17; extra == "all"
Requires-Dist: pre-commit>=3.5; extra == "all"
Requires-Dist: psutil>=5.9; extra == "all"
Requires-Dist: pyjwt>=2.8; extra == "all"
Requires-Dist: pysocks>=1.7; extra == "all"
Requires-Dist: pytest-asyncio>=0.21; extra == "all"
Requires-Dist: pytest-cov>=4.1; extra == "all"
Requires-Dist: pytest>=7.4; extra == "all"
Requires-Dist: python-dateutil>=2.8; extra == "all"
Requires-Dist: python-whois>=0.8; extra == "all"
Requires-Dist: pyyaml>=6.0; extra == "all"
Requires-Dist: requests>=2.31; extra == "all"
Requires-Dist: rich>=13.0; extra == "all"
Requires-Dist: ruff>=0.1; extra == "all"
Requires-Dist: scapy>=2.5; extra == "all"
Requires-Dist: scikit-learn>=1.3; extra == "all"
Requires-Dist: scipy>=1.11; extra == "all"
Requires-Dist: seaborn>=0.12; extra == "all"
Requires-Dist: sphinx-rtd-theme>=1.3; extra == "all"
Requires-Dist: sphinx>=7.2; extra == "all"
Requires-Dist: sqlalchemy>=2.0; extra == "all"
Requires-Dist: stem>=1.8; extra == "all"
Requires-Dist: tabulate>=0.9; extra == "all"
Requires-Dist: torch>=2.0; extra == "all"
Requires-Dist: websockets>=12.0; extra == "all"
Dynamic: author
Dynamic: author-email
Dynamic: classifier
Dynamic: description
Dynamic: description-content-type
Dynamic: home-page
Dynamic: keywords
Dynamic: maintainer
Dynamic: maintainer-email
Dynamic: platform
Dynamic: project-url
Dynamic: provides-extra
Dynamic: requires-dist
Dynamic: requires-python
Dynamic: summary

# 🧟‍♂️ ZOMBIE VDP – Ultimate Offensive Security Framework

---

## ⚠️ DISCLAIMER

> **FOR AUTHORIZED SECURITY TESTING ONLY**
>
> This tool is designed exclusively for:
> - Vulnerability Disclosure Programs (VDP)
> - Authorized Bug Bounty programs
> - Security researchers with explicit written permission
> - Educational purposes in controlled lab environments
>
> **Unauthorized scanning of systems you do not own or have permission to test is ILLEGAL.**
> The authors assume no liability for misuse of this software. You are solely responsible
> for complying with all applicable laws and regulations.

---

## 🎯 What is ZOMBIE VDP?

ZOMBIE VDP is an **all-in-one offensive security automation framework** that transforms
your bug bounty workflow into a relentless, intelligent machine. Like the undead, it
never stops hunting.

### 🧬 The Philosophy

Traditional scanners are **noisy, linear, and predictable**. ZOMBIE breaks that mold:

| Traditional Scanners | 🧟 ZOMBIE VDP |
|---------------------|---------------|
| Sequential scanning | 🔀 **Concurrent multi-vector attacks** |
| Static payloads | 🧬 **DNA Cloning — mutating payloads** |
| Easy to fingerprint | 👻 **Ghost Mode — invisible to WAF** |
| Single perspective | 🪞 **Mirror Mode — multi-identity rotation** |
| Manual recon chain | ⛓️ **Automated end-to-end kill chain** |
| Basic crawling | 🕸️ **Deep JavaScript endpoint extraction** |

---

## 🩸 Core Architecture

---

## 🚀 Features

### 🔍 Reconnaissance (OSINT + Passive)
- ✅ **Google/Bing/DDG Dorking** — Automated dork generation from templates
- ✅ **Wayback Machine** — Historical endpoint discovery via CDX API
- ✅ **CommonCrawl** — Massive-scale URL indexing (billions of pages)
- ✅ **crt.sh Integration** — SSL certificate transparency log mining
- ✅ **AlienVault OTX** — Threat intelligence passive DNS/subdomain
- ✅ **URLScan.io** — Domain scan history & screenshot analysis
- ✅ **WHOIS Lookup** — Domain registration intelligence

### 🕷️ Advanced Crawler
- ✅ **JavaScript-aware crawling** — Executes JS, extracts dynamic content
- ✅ **SPA Support** — Single Page Application endpoint discovery
- ✅ **Sourcemap Parser** — Extract hidden paths from `.js.map` files
- ✅ **JS Endpoint Extractor** — Find API endpoints in minified JavaScript
- ✅ **Robots.txt respect** — Ethical crawling with configurable bypass
- ✅ **Configurable depth & delay** — Stealthy or aggressive modes

### 💉 Vulnerability Detection
| Module | Description | CVEs Detected |
|--------|-------------|---------------|
| **IDOR** | Insecure Direct Object Reference | Parameter manipulation, UUID prediction |
| **XXE** | XML External Entity Injection | Blind & error-based, SSRF chaining |
| **JWT Attack** | JSON Web Token exploitation | None algo, weak secrets, KID injection |
| **GraphQL** | Introspection & injection | Batching attacks, field suggestion abuse |
| **WebSocket** | WS message tampering | CSWSH, connection hijacking |
| **Prototype Pollution** | JS object prototype injection | Server-side & client-side vectors |
| **SQL Injection** | Time-based, boolean, error-based | MySQL, PostgreSQL, MSSQL, Oracle |
| **XSS** | Reflected, Stored, DOM-based | WAF bypass payloads included |
| **SSRF** | Server-Side Request Forgery | AWS metadata, GCP, internal services |
| **LFI/RFI** | Local/Remote File Inclusion | Log poisoning, PHP wrappers |
| **CSRF** | Cross-Site Request Forgery | Token validation, same-site bypass |
| **Open Redirect** | URL redirection | Header-based, meta-refresh, JS redirect |

### 👻 Ghost/Mirror — Advanced Evasion

### 🛡️ Stealth & Anonymity
- ✅ **Anonymous Mode** — Tor/SOCKS5 proxy chaining
- ✅ **Proxy Validation** — Auto-test proxy health before use
- ✅ **SSL Verification Toggle** — Accept self-signed certs when needed
- ✅ **Rate Limiting** — Adaptive request throttling
- ✅ **Random Delays** — Human-like timing patterns
- ✅ **Filter System** — `ninja`, `samurai`, `ghost` presets

---

## 📦 Installation

### Prerequisites
- Python 3.9 or higher
- pip (latest version recommended)
- git

### Quick Install

```bash
# Clone the repository
git clone https://github.com/pormes-90/ZOMBIE.git
cd ZOMBIE

# Basic installation
pip install .

# Full installation with all features
pip install ".[all]"

# Development installation
pip install -e ".[dev,ghost]"

