HaxUnit is a Python-based web domain reconnaissance and security assessment tool designed for security professionals and researchers. It automates subdomain enumeration, port scanning, and vulnerability detection, aiming to provide a comprehensive and user-friendly solution for web security assessments.

How It Works

HaxUnit orchestrates a suite of specialized security tools, including Subfinder, DNSx, Naabu, Nuclei, and WPScan, to perform its assessments. It leverages AI-powered subdomain prediction via Subwiz and offers optional integration with Acunetix for advanced web application scanning. The tool is designed for efficiency, managing tool installations and updates through pdtm.

Quick Start & Requirements

• Recommended Install: Docker Compose.
  • Clone repo: git clone https://github.com/Bandit-HaxUnit/haxunit && cd haxunit
  • Configure .env with API keys (optional).
  • Set permissions: chmod +x rebuild-compose.sh open-bash.sh
  • Build and run: ./rebuild-compose.sh
  • Start scanning: haxunit -d <domain>
• Manual Install: Python 3.10+, Go 1.22+, Docker.
  • Clone repo, create and activate a virtual environment (python3 -m venv haxunit-venv, source haxunit-venv/bin/activate).
  • Install dependencies: python3 -m pip install -r requirements.txt
  • Install tools: python3 main.py --install
• Docs: HaxUnit.com

Highlighted Details

• AI-powered subdomain prediction using Subwiz.
• Integrates with Acunetix for automated vulnerability scanning.
• Supports Apache Airflow for automated pentesting workflows.
• Includes options for cloud uploads and HackTheBox mode.

Maintenance & Community

• Active development with contributions from ProjectDiscovery and HadrianSecurity.
• Discord community available.

Licensing & Compatibility

• The README does not explicitly state a license. Compatibility for commercial use or closed-source linking is not specified.

Limitations & Caveats

The project's licensing is not clearly defined in the README, which may pose a risk for commercial adoption or integration into closed-source projects.