Skip to content

MrEx-Right/DORM

BranchesTags

Repository files navigation

👁️ DORM - Next-Gen Vulnerability Scanner

Go Version License Type

DORM is a high-performance, concurrent, and modular vulnerability scanner written in Go. Designed for Red Teams and Bug Bounty hunters, it combines passive reconnaissance with active, aggressive exploitation techniques.

Unlike traditional scanners, DORM features a hybrid engine that utilizes Headless Chrome (DOM XSS), Smart Fuzzing, and In-Memory Exploit-DB integration.

✨ Dashboard Preview

🖥️ Scanner Interface

Main Interface

📊 Live Results

Results Interface

Real-time monitoring and advanced vulnerability detection capabilities.

🚀 Key Features

🔥 Core Engine

  • High Concurrency: Scans multiple targets and ports simultaneously using Go routines.
  • Smart Port Discovery: Automatically detects web, database, and cloud services.
  • Real-Time Dashboard: Web-based UI (SSE) to monitor scan progress live.

🧠 Advanced Capabilities

  • 🕷️ Web Spider: Recursively crawls the target to map the attack surface.
  • 🕸️ DOM XSS Scanner: Uses Headless Chrome to detect JavaScript-based vulnerabilities in SPA (React/Vue).
  • 📚 Exploit-DB Integration: Loads the entire Exploit Database into RAM for instant service version matching.
  • 🔓 Brute Force (Mini-Hydra): Supports dictionary attacks on SSH and FTP.

🛡️ 80+ Attack Modules

DORM comes with over 80 specialized plugins including:

  • Injection: SQLi (Blind/Time), XSS (Reflected/DOM), SSTI, CRLF, Host Header.
  • Cloud & DevOps: Docker API, Kubernetes Kubelet, AWS/Google Key Leaks, S3 Buckets.
  • Critical CVEs: Log4Shell, Spring4Shell, Drupalgeddon2, F5 BIG-IP TMUI.
  • Misconfig: CORS, Git/Env Exposure, Open Redirects, Subdomain Takeover.

📦 Installation

DORM requires Go 1.21+ and Google Chrome (for DOM Scanner).

🐧 Linux / macOS

# 1. Clone the repository
git clone https://github.com/MrEx-Right/DORM.git
cd DORM

# 2. Download dependencies (single command — no manual go get needed)
go mod download

# 3. Run DORM
go run .

🪟 Windows

Step 1 — Build (one-time only):

git clone https://github.com/MrEx-Right/DORM.git
cd DORM

# Double-click build_windows.bat  — or run it from a terminal:
build_windows.bat

The script will:

  • ✅ Verify your Go installation (1.21+ required)
  • ✅ Download all dependencies via go mod download
  • ✅ Compile DORM.exe in the project folder

Step 2 — Run:

Double-click DORM.exe. A console window opens showing DORM's output. Close that window to stop DORM.

To rebuild (e.g. after pulling updates), delete DORM.exe and run build_windows.bat again.

About

Modern, High-Performance Vulnerability Scanner. Features: Spider Crawler, Chaos Fuzzer, and RAM-based Exploit-DB integration.

Topics

vulnerability vulnerability-detection cyber-security vulnerability-scanners cybersecurity-tools

Resources

Readme

License

GPL-3.0 license

Security policy

Security policy
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases 22

v1.10.1 - Windows Build Tooling & Installation Overhaul Latest
May 12, 2026
+ 21 releases

Packages

 
 
 

Contributors

Languages