SPADE is a modular vulnerability scanning framework that leverages external tools like nmap, curl, and more. It uses Python class decorators and reflection to auto-register modules for execution, making it easy to extend and customize.
Project description
🚀 SPADE
Scalable Plug-and-play Auto Detection Engine
SPADE is a modular vulnerability scanning framework that leverages external tools like nmap, feroxbuster, and more. It uses Python class decorators and reflection to auto-register modules for execution, making it easy to extend and customize.
✨ Features
- 🔌 Plug-and-play modules via class decorators
- 🔍 Built-in support for external tools (e.g.
nmap,feroxbuster) - 🧠 Reflection-based auto-discovery of plugins and their arguments
- 📦 Modern dependency management: All dependencies are declared in
pyproject.tomland handled by Poetry ensuring reliable and reproducible installs - 🚀 Easy installation via
pipx(and soon Docker) - 🤖 AI-ready: Built-in AI integrated plugins (WIP)
- 💬 Lax plugin development guidelines for rapid prototyping
🧐 Why?
I developed this project with a few key goals in mind:
- There’s a gap between heavyweight vuln scanners like Nessus and simple automation tools — SPADE aims to fix that by streamlining recon without taking all control away from the user.
- Most frameworks require you to learn a bunch of internal functions on top of the language itself, which slows down rapid development and scripting. SPADE is intentionally lax: you can break the rules and hack in your own logic easily.
- Many tools are still packaged improperly and can break at any moment. SPADE is packaged for
pipxfor reliability, and will be available as a Docker image in the future.
🚀 Getting Started
# Install with pipx (recommended)
pipx install spade
🧩 Extending SPADE
- Add your own scanner by creating a new Python file in
scanners/extensions/ - Use the
@Scanner.extenddecorator to register your plugin - See the dev guide and existing plugins for examples
📦 Packaging & Development
- SPADE uses a modern dependency system (
pyproject.toml) for reproducible builds - Install with Poetry, pip, or pipx
- Docker support is planned
🔮 What’s Next?
- Credentialed enumeration
- Built-in AI plugins
🤝 Contributing
Pull requests, issues, and suggestions... will be welcome once I put together a contribution guide.
📄 License
Licensed under AGPL 3.0 © 2025 ReKon64
SPADE: You won't need to open twelve terminals anymore.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file scalable_plug_and_play_auto_detection_engine-1.0.0.tar.gz.
File metadata
- Download URL: scalable_plug_and_play_auto_detection_engine-1.0.0.tar.gz
- Upload date:
- Size: 56.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: poetry/1.8.4 CPython/3.12.9 Linux/6.11.2-amd64
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
cd182df3bf8d8a0d22011214ed8c334c56e07bd64153ee185f6c3283b91e7346
|
|
| MD5 |
30e1076c6f04aa2a16e1fd04b1fe093f
|
|
| BLAKE2b-256 |
e6d0f94d7592dcaf6c0eb82045bd44f48f0f4578bd304b0ff26eed52ae1b3d2d
|
File details
Details for the file scalable_plug_and_play_auto_detection_engine-1.0.0-py3-none-any.whl.
File metadata
- Download URL: scalable_plug_and_play_auto_detection_engine-1.0.0-py3-none-any.whl
- Upload date:
- Size: 81.4 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: poetry/1.8.4 CPython/3.12.9 Linux/6.11.2-amd64
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9101a83a76e9cdc04137db03b787ab0818e78e6cf377b3e489d02e232665742a
|
|
| MD5 |
90c47cf8f89208f4e9f7f98804780bf1
|
|
| BLAKE2b-256 |
1fbad1925babbe39913e836778c68de72e175840443739356aa39a96486d8f46
|
