{"id":47896926,"url":"https://github.com/teambcs/auth-nexus","last_synced_at":"2026-04-25T16:01:48.952Z","repository":{"id":348198796,"uuid":"1196909673","full_name":"TEAMBCS/AUTH-NEXUS","owner":"TEAMBCS","description":"Next-gen TUI-based security tool supporting HTTP, SSH, FTP, and SMTP. Features include auto-CSRF handling, asynchronous engine (aiohttp), and real-time analytics. Optimized for Termux \u0026 Linux.","archived":false,"fork":false,"pushed_at":"2026-04-18T14:34:30.000Z","size":4520,"stargazers_count":11,"open_issues_count":1,"forks_count":1,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-04-18T16:28:06.502Z","etag":null,"topics":["attack","auth-nexus","authentication","authentication-testing","brute-force-attack","brute-force-attacks","bruteforce","bruteforce-attacks","penetration-testing","pentesting","testing","tui-app"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/TEAMBCS.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-03-31T06:43:40.000Z","updated_at":"2026-04-18T14:34:33.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/TEAMBCS/AUTH-NEXUS","commit_stats":null,"previous_names":["teambcs/auth-nexus"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/TEAMBCS/AUTH-NEXUS","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TEAMBCS%2FAUTH-NEXUS","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TEAMBCS%2FAUTH-NEXUS/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TEAMBCS%2FAUTH-NEXUS/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TEAMBCS%2FAUTH-NEXUS/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/TEAMBCS","download_url":"https://codeload.github.com/TEAMBCS/AUTH-NEXUS/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TEAMBCS%2FAUTH-NEXUS/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32267710,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-25T09:15:33.318Z","status":"ssl_error","status_checked_at":"2026-04-25T09:15:31.997Z","response_time":59,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["attack","auth-nexus","authentication","authentication-testing","brute-force-attack","brute-force-attacks","bruteforce","bruteforce-attacks","penetration-testing","pentesting","testing","tui-app"],"created_at":"2026-04-04T03:49:52.089Z","updated_at":"2026-04-25T16:01:48.947Z","avatar_url":"https://github.com/TEAMBCS.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\n\u003cp align=\"center\"\u003e\n  \u003cimg src=\"https://raw.githubusercontent.com/TEAMBCS/AUTH-NEXUS/main/Image/auth-nexus-logo.png\" width=\"500\"\u003e\n\u003c/p\u003e\n\n\u003ch1 align=\"center\"\u003eAUTH NEXUS\u003c/h1\u003e\n\n\u003cp align=\"center\"\u003e\n\u003cb\u003eAdvanced Brute Force Attack Testing Framework\u003c/b\u003e\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\u003cb\u003e\nA professional multi-protocol brute force attack testing tool built for security researchers and penetration testers.\u003c/b\u003e\n\u003c/p\u003e\n\n---\n## Dependencies\n\n![aiohttp](https://img.shields.io/badge/aiohttp-async%20http-green)\n![aiohttp-socks](https://img.shields.io/badge/aiohttp--socks-proxy%20support-orange)\n![rich](https://img.shields.io/badge/rich-terminal%20ui-purple)\n![beautifulsoup4](https://img.shields.io/badge/beautifulsoup4-html%20parser-yellow)\n![lxml](https://img.shields.io/badge/lxml-fast%20xml%20parser-blue)\n![asyncssh](https://img.shields.io/badge/asyncssh-ssh%20client-red)\n![uvloop](https://img.shields.io/badge/uvloop-fast%20async%20loop-green)\n![urllib3](https://img.shields.io/badge/urllib3-http%20client-lightgrey)\n![pyOpenSSL](https://img.shields.io/badge/pyOpenSSL-ssl%20support-blue)\n![License](https://img.shields.io/badge/license-GPLv3-blue.svg)\n![Version](https://img.shields.io/badge/Version-2.0%20-yellow)\n\n---\n\n# 🔐 Auth Nexus\n\n**Auth Nexus** is a powerful brute force attack testing framework designed for security professionals and penetration testers.\n\nIt supports multiple protocols such as:\n\n- HTTP / HTTPS\n- SSH\n- FTP\n- SMTP\n\nThe tool is designed with **high performance asynchronous architecture**, **smart login detection**, **automatic CSRF handling**, and **memory-safe credential streaming**.\n\nAuth Nexus provides a modern **TUI (Terminal User Interface)** for easy configuration and monitoring.\n\n---\n\n# 🚀 Key Features\n\n### Multi Protocol Support\nSupports authentication testing for multiple protocols:\n\n- HTTP / HTTPS login forms\n- SSH authentication\n- FTP authentication\n- SMTP authentication\n\n---\n\n### Smart Web Login Detection\n\n- Automatic username/password field detection\n- Automatic CSRF token detection\n- Cookie session handling\n- Smart redirect analysis\n\n---\n\n### High Performance Engine\n\n- Asynchronous architecture\n- Multi-threaded request handling\n- High RPS processing\n- Optimized network operations\n\n---\n\n### Memory Safe Credential Streaming\n\nLarge credential lists can be used safely.\n\nExample:\n\n```\n\nrockyou.txt (140MB+)\n\n````\n\nThe tool reads credentials **line-by-line** instead of loading everything into memory.\n\n---\n\n### Proxy \u0026 Stealth Support\n\nAuth Nexus supports:\n\n- HTTP proxies\n- SOCKS4 / SOCKS5 proxies\n- Randomized requests\n- Delay control\n- Stealth headers\n\n---\n\n### Professional TUI Interface\n\nModern terminal interface with:\n\n- live logs\n- progress tracking\n- RPS monitoring\n- ETA calculation\n- valid credential display\n\n---\n\n# ⚙️ Installation \u0026\u0026 Requirement Setup\n\n### Requirements\n\n- Python 3.10+\n- Linux / Termux / macOS\n\n\n```bash\npkg update \u0026\u0026 pkg upgrade\npkg install clang libxml2 libxslt libiconv -y\npkg install binutils rust build-essential -y\npkg install python-lxml -y\npkg install python-cryptography -y\npkg install python3 -y\npkg install git -y\ngit clone https://github.com/TEAMBCS/AUTH-NEXUS.git\ncd AUTH-NEXUS\nchmod +x *\nchmod 777 *\npip install -r auth-nexus.txt\npython3 auth-nexus.py\n```\n\n---\n\n\n\n# ⚒️ WordForge – Advanced Wordlist Generator\n\n**WordForge** is a powerful built-in wordlist generator designed for creating custom password lists with high flexibility and performance. It allows you to generate targeted wordlists based on specific character sets and length ranges.\n\n---\n\n### 🔥 Features\n\n- 🔤 Custom Character Set (A-Z, a-z, 0-9, symbols or custom input)\n- 📏 Adjustable Length Range (min → max)\n- 📊 Real-time Combination \u0026 Size Estimation\n- 🚀 High-Speed Async Generation Engine\n- 💾 Auto-save to `list/\u003cfilename\u003e.txt`\n- ⏹ Stop Generation Anytime\n- 🔄 Auto Integration with Main Tool (User/Pass List)\n\n---\n\n### ⚙️ How It Works\n\n1. Open **WordForge** from the main menu.\n2. Enter your desired **character set**.\n3. Set **minimum and maximum length**.\n4. Click **Calculate** to estimate:\n   - Total combinations\n   - File size\n5. Click **Generate** to start creating the wordlist.\n\n---\n\n### 🧠 Example\n\n```text\nCharset: abc123\nLength: 1 → 3\n````\n\nGenerated output:\n\n```\na\nb\nc\n1\n2\n3\naa\nab\nac\n...\n```\n\n---\n\n### ⚠️ Important Notes\n\n* Large charset + high length = **huge file size**\n* Avoid generating more than **100M+ combinations** unless आवश्यक\n* Storage and time consumption may increase significantly\n\n---\n\n### 📂 Output Location\n\n```\nlist/\u003cyour_filename\u003e.txt\n```\n\n---\n\n### 🔗 Quick Actions\n\nAfter generation, you can:\n\n* 🔑 Use as Password List\n* 👤 Use as Username List\n* 🔑👤 Use for Both\n\n---\n\n### 💡 Pro Tip\n\nUse smaller, targeted wordlists for better performance instead of massive random lists.\n\n---\n\n\u003e ⚡ WordForge is optimized for speed, stability, and seamless integration with the attack engine.\n\n---\n\n\n# 🧠 Supported Attack Modes\n\nAuth Nexus supports three major credential attack strategies.\n\n---\n\n## Cluster Bomb\n\nTests **every username with every password**\n\nExample\n\n```\nUser1 : Pass1\nUser1 : Pass2\nUser1 : Pass3\nUser2 : Pass1\nUser2 : Pass2\nUser2 : Pass3\n```\n\nBest for:\n\n```\nMultiple usernames × password list\n```\n\n---\n\n## Pitchfork\n\nRuns username and password lists **in parallel**\n\nExample\n\n```\nUser1 : Pass1\nUser2 : Pass2\nUser3 : Pass3\n```\n\nBest for:\n\n```\nPaired credential lists\n```\n\n---\n\n## Battering Ram\n\nUses the **same value for both username and password**\n\nExample\n\n```\nadmin : admin\ntest : test\nuser : user\n```\n\nBest for:\n\n```\nDefault credential testing\n```\n\n---\n\n# 📖 User Manual\n\n### Target Configuration\n\nTarget can be provided as:\n\nSingle URL\n\n```\nhttp://target.com/login\n```\n\nOr URL list\n\n```\ntargets.txt\n```\n\nExample formats:\n\n```\nhttp://site.com/login\nssh://192.168.1.10:22\nftp://127.0.0.1:21\nsmtp://mail.server.com:587\n```\n\n---\n\n### Credentials Input\n\nAuth Nexus supports both single credentials and wordlists.\n\nSingle credential:\n\n```\nUser : admin\nPass : password123\n```\n\nCredential lists:\n\n```\nusers.txt\npasswords.txt\n```\n\n---\n\n### HTTP Form Example\n\nExample login form configuration:\n\n```\n/login:user=^USER^\u0026pass=^PASS^:F=Invalid or /login:user=^USER^\u0026pass=^PASS^:S=Success\n```\nExplanation\n\n| Part      | Meaning              |\n| --------- | -------------------- |\n| /login    | form path            |\n| ^USER^    | username placeholder |\n| ^PASS^    | password placeholder |\n| F=Invalid | failure message      |\n| S=Success | success meassage     |\n\nExamples :➤ \nCpanel : ```/login/:user=^USER^\u0026pass=^PASS^:F=invalid```\n\nWp : ```/wp-login.php:log=^USER^\u0026pwd=^PASS^\u0026wp-submit=Log+In:F=Invalid username```\n\n---\n\n### 🧠 Auto Param Feature\n\nThe Auto Param system analyzes the target request and automatically \nextracts possible authentication parameters such as:\n\n• username fields  \n• password fields  \n• token parameters  \n• login form inputs  \n\n This helps speed up authentication testing without requiring \nmanual parameter configuration.\n\n\n---\n\n\n## 🎯 Success \u0026 Failure Detection (Regex Support)\n\nAuth Nexus allows advanced success and failure detection using:\n\n• HTTP status code  \n• Response text matching  \n• Regular expressions (Regex)\n\nThis helps the engine accurately detect whether an authentication attempt succeeded or failed.\n\n---\n\n### ✔️ Success Matching Examples\n\nYou can define success indicators using plain text or regex.\n\nExamples: ```\"status\"\\s*:\\s*\"success\",\nLogin successful\\. Redirecting,\n(?i)(logout|dashboard|welcome)```\n\n---\n\n### ❌ Failure Matching Examples\n\nDefine failure patterns to improve accuracy.\n\nExamples: ```(?i)(error|wrong|incorrect),\n(?i)invalid```\n\n---\n\n### 🧠 How It Works\n\n• Success patterns are checked first  \n• Failure patterns override success when matched  \n• Case-insensitive matching supported with `(?i)`  \n• Supports both plain text and regex patterns  \n\nThis system improves detection accuracy for complex authentication responses.\n\n---\n\n# 📊 Tool Architecture\n\n```\nAuth Nexus\n│\n├── Engine\n│   ├── HTTP Module\n│   ├── SSH Module\n│   ├── FTP Module\n│   └── SMTP Module\n│\n├── Smart Detection\n│   ├── Parameter Detection\n│   ├── CSRF Detection\n│   └── Cookie Handling\n│\n├── Credential System\n│   ├── Wordlist Streaming\n│   ├── Cluster Bomb\n│   ├── Pitchfork\n│   └── Battering Ram\n│\n├── WordForge ⚒️\n│   ├── Custom Charset Builder\n│   ├── Length Range Control\n│   ├── Combination Estimation\n│   ├── High-Speed Generator\n│   ├── File Output (list/)\n│   └── Auto Integration (User/Pass List)\n│\n├── Networking\n│   ├── Async Requests\n│   ├── Proxy Support\n│   └── Retry System\n│\n└── Interface\n    ├── TUI Dashboard\n    ├── Live Logs\n    ├── Progress Tracking\n    └── Results Display\n\n```\n\n---\n\n# 📈 Statistics Display\n\nAuth Nexus provides real-time attack statistics:\n\n| Metric   | Description              |\n| -------- | ------------------------ |\n| Attempts | Total attempts           |\n| RPS      | Requests per second      |\n| ETA      | Estimated time remaining |\n| Hits     | Valid credentials found  |\n\n---\n\n# 📁 Project Structure\n\n```\nAUTH-NEXUS\n│\n├── auth-nexus.py #main tool\n├── auth-nexus.txt #requirements\n├── auth-nexus-ua.json #User agent list\n├── passlist.txt #A common password list\n├── README.md\n│\n├── Image\n|   ├──  auth-nexus-v2.0-2.jpg #Tool Image \n|   ├── auth-nexus-v2.0-1.jpg #Tool image \n|   ├── auth-nexus-v2.0-3.jpg #wordforge image\n│   └── auth-nexus-logo.png #logo image\n│\n├── AUTH-NEXUS-CSS\n|   ├── WordForgeScreen.css #wordforge css\n|   ├── UI.css #main UI css\n|   ├── about.css #about info css\n│   ├── attack-ui.css #attack panel ui css\n│   └── app.css #app css\n│\n└── output\n    └── success.txt\n```\n\n---\n## 📸 Screenshots\n\n\u003cp align=\"center\"\u003e\n  \u003cimg src=\"https://raw.githubusercontent.com/TEAMBCS/AUTH-NEXUS/main/Image/auth-nexus-v2.0-1.jpg\" width=\"45%\" alt=\"Screenshot 1\"\u003e\n  \u0026nbsp;\u0026nbsp;\n   \u003cimg src=\"https://raw.githubusercontent.com/TEAMBCS/AUTH-NEXUS/main/Image/auth-nexus-v2.0-2.jpg\" width=\"45%\" alt=\"Screenshot 2\"\u003e\n  \u0026nbsp;\u0026nbsp;\n  \u003cimg src=\"https://raw.githubusercontent.com/TEAMBCS/AUTH-NEXUS/main/Image/auth-nexus-v2.0-3.jpg\" width=\"45%\" alt=\"Screenshot 1\"\u003e\n\n\n\u003c/p\u003e\n\n---\n\n## 📃 Note\n\n**Edit CSS Code as your wish.**\n\n**If you found textual library install problem in kali linux machines or debian machines**\n- use\n```\npip install textual --break-system-packages --ignore-installed pygments\n```\n\n---\n\n\n# 🛡 Security Notice\n\nThis tool is developed for:\n\n* **Cybersecurity research**\n* **penetration testing**\n* **authorized security assessments**\n\nUnauthorized usage against systems without permission is illegal.\n\n---\n\n# 👨‍💻 Developer\n\n```\nOwner : TEAM BCS\nDeveloper : BLACK ZER0\n```\n\n---\n\n# 📜 License\n\nThis project is licensed under the **GNU General Public License v3.0 (GPLv3)**.\n\n\n```\nLicensed under the GNU General Public License v3.0 (GPLv3).\n\nThis license allows users to use, modify and distribute the software, \nbut any modified version must also be released under the same GPLv3 license.\n```\n\n---\n\n# ⭐ Support\n\nIf you like the project consider giving a **star on GitHub**.\n\n```\nStay secure.\nStay ethical.\n```\n\n---\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fteambcs%2Fauth-nexus","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fteambcs%2Fauth-nexus","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fteambcs%2Fauth-nexus/lists"}