220+ Vulnerability Detection Modules • Multi-Protocol Scanning • Enterprise Reporting
NULLSIGHT is a high-performance vulnerability assessment and penetration testing framework designed for authorized security testing.
The framework provides:
- 🔍 Automated Vulnerability Discovery
- 🌐 Web Application Security Assessment
- 📡 Network Service Enumeration
- ☁️ Cloud Exposure Detection
- 🐳 Container Security Analysis
- 📊 Enterprise Reporting
- ⚡ High-Speed Concurrent Scanning
- 🛡️ False Positive Reduction Engine
| Category | Coverage |
|---|---|
| Critical Vulnerabilities | 80+ |
| High Severity Findings | 70+ |
| Medium Severity Findings | 40+ |
| Low Severity Findings | 20+ |
| Detection Modules | 220+ |
| Supported Protocols | 15+ |
| Reporting Formats | JSON, HTML, CSV |
- Path Traversal Detection
- Local File Inclusion (LFI)
- Remote File Inclusion (RFI)
- Server-Side Request Forgery (SSRF)
- XML External Entity (XXE)
- Server-Side Template Injection (SSTI)
- Security Misconfiguration Detection
- Sensitive File Exposure
- Backup File Discovery
- Service Enumeration
- Banner Analysis
- Weak Configuration Detection
- Authentication Exposure Checks
- Mail Service Assessment
- Database Exposure Detection
- AWS Exposure Detection
- Azure Exposure Detection
- GCP Exposure Detection
- Container Security Assessment
- Kubernetes Exposure Checks
- Authentication Weakness Detection
- Authorization Validation
- Session Security Analysis
- JWT Security Verification
┌──────────────────┐
│ NULLSIGHT │
│ v3.2 │
└────────┬─────────┘
│
┌───────────────┼────────────────┐
│ │ │
▼ ▼ ▼
Web Scanner Network Scanner Cloud Scanner
│ │ │
└───────────────┼────────────────┘
│
Detection Engine
│
Validation Layer
│
Report Generation
| Detection Type | Accuracy |
|---|---|
| Path Traversal | 98% |
| LFI | 97% |
| SSRF | 99% |
| XXE | 92% |
| SSTI | 96% |
| Authentication Issues | 95% |
| Service Misconfigurations | 94% |
RAW PERFORMANCE BENCHMARK
NullSight v3.2 ████████████████████████████████████████████████████████████ 5,200 req/s
Nuclei v3 ██████████████████████████░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 1,800 req/s
Nmap NSE ██████░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 400 req/s
Burp Suite Pro █░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 100 req/s
ZAP ░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 80 req/s
Nikto ░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 50 req/s
WPScan ░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 30 req/s
⚡ NullSight is 2.8x FASTER than Nuclei and 50x FASTER than Burp Suite
python nullsight.py -t example.com
python nullsight.py -f targets.txt
python nullsight.py --threads 100
python nullsight.py --output report.jsonnullsight/
│
├── core/
├── scanners/
├── payloads/
├── signatures/
├── reporting/
├── utils/
├── configs/
│
├── nullsight.py
├── requirements.txt
└── README.md
Generated reports include:
- Executive Summary
- Technical Findings
- Severity Classification
- Risk Assessment
- Evidence Collection
- Remediation Recommendations
Supported formats:
- JSON
- HTML
- CSV
NULLSIGHT is intended exclusively for:
- Authorized Penetration Testing
- Security Assessments
- Internal Security Audits
- Research Environments
- Bug Bounty Programs (where permitted)
Do not use this framework against systems without explicit authorization.
╔════════════════════════════════════════════════════╗
║ ║
║ FOR AUTHORIZED SECURITY TESTING ONLY ║
║ ║
║ Unauthorized access may violate applicable laws. ║
║ Users are responsible for complying with all ║
║ legal and contractual requirements. ║
║ ║
╚════════════════════════════════════════════════════╝
TheDEEP
- GitHub: @thedeep
- Version: v3.2
- Year: 2026