NEXUS
Documentation menu

Docs · Using Nexus

Desktop App (GUI)

The Nexus desktop app gives you a VS Code–style workspace over 20+ security tools, with a live terminal, run history and one-click reporting.

First launch — the Setup Wizard

On first run, the Setup Wizard walks you through everything you need before scanning. You can re-open it any time from the sidebar.

1
Ethical-use agreement
Confirm you only assess systems you own or are authorized to test. This is mandatory and recorded locally.
2
Dependency check
Nexus detects which external tools (Nmap, Nuclei, Trivy, …) are present and highlights what is missing.
3
One-click install
Missing tools install through your platform package manager — Scoop / Chocolatey on Windows, Homebrew on macOS, apt on Linux — plus no-admin portable binaries where possible.
No tools yet? No problem. Every module has a realistic demo fallback, so you can walk through the full workflow and see report output before installing a single binary.

The module workspace

The left sidebar groups modules by category. Selecting one opens its panel: fill in the target, choose options, and run. Output streams into the embedded terminal in real time.

Recon & Scan

Port Scanner (Nmap), Network Scanner (tshark), Network Mapper, DNS/Subdomain Recon, Asset Inventory

Web & API

Vulnerability Scanner (Nikto/Nuclei/Gobuster), SSL/TLS Auditor (sslyze), API Tester (ffuf), Directory Fuzzer

Offensive

Password Auditor (Hydra/Hashcat), Hash Tools, Exploit Lookup, Attack Simulation (Scope Guard), Reverse Shell/Listener, Wireless Auditor

Cloud & Container

Container Scanner (Trivy), Cloud Config Checker (Prowler)

Analysis

Log Analyzer, Scan Diff

Defense & Reporting

Defense Monitor, Defense Suite, Portable WAF, Report Generator (PDF/HTML)

Running a scan

  • Enter the target — every host, URL, port and file input is sanitized before it reaches a subprocess.
  • Subprocesses run without shell=True and with explicit argument lists (no command injection).
  • Attack-simulation modules only run against targets you have marked authorized in Scope Guard.
  • Each run is saved to history so you can revisit or diff results later.

Reports

The Report Generator turns any run — or a whole session — into a clean PDF or HTML document with findings, severities and remediation. Everything is rendered locally; no data leaves the machine.

Fleet from the desktop

The Fleet / SOC section embeds the manager and agent dashboards, so you can run the distributed platform without leaving the app. For the command-line workflow, see the CLI and Fleet pages.

PreviousWordlist ManagerNext Command Line (CLI)