Skip to content
/ SPADE Public

SPADE is a modular vulnerability scanning framework that leverages external tools like `nmap`, feroxbuster, and more. It uses Python class decorators and reflection to auto-register modules for execution, making it easy to extend and customize.

License

AGPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ReKon64/SPADE

BranchesTags

Repository files navigation

🚀 SPADE

Scalable Plug-and-play Auto Detection Engine

SPADE Banner Python pipx License

SPADE is a modular vulnerability scanning framework that leverages external tools like nmap, feroxbuster, and more. It uses Python class decorators and reflection to auto-register modules for execution, making it easy to extend and customize.

✨ Features

  • 🔌 Plug-and-play modules via class decorators
  • 🔍 Built-in support for external tools (e.g. nmap, feroxbuster)
  • 🧠 Reflection-based auto-discovery of plugins and their arguments
  • 📦 Modern dependency management: All dependencies are declared in pyproject.toml and handled by Poetry ensuring reliable and reproducible installs
  • 🚀 Easy installation via pipx (and soon Docker)
  • 🤖 AI-ready: Built-in AI integrated plugins (WIP)
  • 💬 Lax plugin development guidelines for rapid prototyping

🧐 Why?

I developed this project with a few key goals in mind:

  • There’s a gap between heavyweight vuln scanners like Nessus and simple automation tools — SPADE aims to fix that by streamlining recon without taking all control away from the user.
  • Most frameworks require you to learn a bunch of internal functions on top of the language itself, which slows down rapid development and scripting. SPADE is intentionally lax: you can break the rules and hack in your own logic easily.
  • Many tools are still packaged improperly and can break at any moment. SPADE is packaged for pipx for reliability, and will be available as a Docker image in the future.

🚀 Getting Started

# Install with pipx (recommended)
pipx install scalable-plug-and-play-auto-detection-engine

🧩 Extending SPADE

  • Add your own scanner by creating a new Python file in scanners/extensions/
  • Use the @Scanner.extend decorator to register your plugin
  • See the dev guide and existing plugins for examples

📦 Packaging & Development

  • SPADE uses a modern dependency system (pyproject.toml) for reproducible builds
  • Install with Poetry, pip, or pipx
  • Docker support is planned

🔮 What’s Next?

  • Support for multiple targets
  • Credentialed enumeration
  • Built-in AI plugins

🤝 Contributing

Pull requests, issues, and suggestions... will be welcome once I put together a contribution guide.

📄 License

Licensed under AGPL 3.0 © 2025 ReKon64

SPADE: You won't need to open twelve terminals anymore.

About

SPADE is a modular vulnerability scanning framework that leverages external tools like `nmap`, feroxbuster, and more. It uses Python class decorators and reflection to auto-register modules for execution, making it easy to extend and customize.

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages