# infinition/bjorn

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/infinition-bjorn).**

5,656 stars · 327 forks · Python · mit

## Links

- GitHub: https://github.com/infinition/Bjorn
- Homepage: https://infinition.github.io/Bjorn/
- awesome-repositories: https://awesome-repositories.com/repository/infinition-bjorn.md

## Description

Bjorn is a penetration testing framework that automates network scanning, credential brute-forcing, vulnerability assessment, and data exfiltration, all coordinated through an event-driven task pipeline and controlled via a web-based dashboard. Its modular plugin architecture allows independent security modules to be loaded and chained together, with an asynchronous network scanner discovering live hosts and open ports without blocking the main execution flow.

The framework distinguishes itself by integrating a credential brute-force engine that systematically attempts login combinations against network services, alongside a vulnerability assessment module that matches service fingerprints against a local database of known exploits. Post-exploitation data exfiltration capabilities extract sensitive files and database contents from compromised services, while a web-based control interface provides real-time monitoring and task management through RESTful API calls.

For physical monitoring, Bjorn includes an e-Paper display driver that shows real-time operation status on a low-power e-ink screen, complementing the browser-accessible operation dashboard. The project is implemented in Python and provides a comprehensive set of tools for security assessment workflows.

## Tags

### Security & Cryptography

- [Penetration Testing Frameworks](https://awesome-repositories.com/f/security-cryptography/penetration-testing-frameworks.md) — An automated security assessment tool that scans networks, exploits vulnerabilities, and exfiltrates data.
- [Data Exfiltration Tools](https://awesome-repositories.com/f/security-cryptography/data-exfiltration-tools.md) — Extracts sensitive files and database contents from compromised services after gaining access. ([source](https://cdn.jsdelivr.net/gh/infinition/bjorn@main/README.md))
- [Post-Exploitation Frameworks](https://awesome-repositories.com/f/security-cryptography/post-exploitation-frameworks.md) — Extracts sensitive files and database contents from compromised services after gaining initial access.
- [Security Management Dashboards](https://awesome-repositories.com/f/security-cryptography/security-management-dashboards.md) — Monitors and interacts with ongoing security tasks through a browser-based web interface.
- [Vulnerability Assessment Frameworks](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing/security-testing-tools/reconnaissance-assessment-platforms/vulnerability-assessment-frameworks.md) — Scans targets for known security weaknesses to identify exploitable flaws.
- [Service Fingerprint Matchers](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing/security-testing-tools/reconnaissance-assessment-platforms/vulnerability-assessment-frameworks/service-fingerprint-matchers.md) — Matches service fingerprints against a local database of known exploits to identify security weaknesses.
- [Credential Brute-Forcing](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing/security-testing/credential-brute-forcing.md) — Integrates a credential brute-force engine that systematically attempts login combinations against network services.
- [Vulnerability Scanning](https://awesome-repositories.com/f/security-cryptography/vulnerability-scanning.md) — Includes a vulnerability assessment module that matches service fingerprints against known exploits. ([source](https://cdn.jsdelivr.net/gh/infinition/bjorn@main/README.md))

### Networking & Communication

- [Asynchronous Scanners](https://awesome-repositories.com/f/networking-communication/asynchronous-scanners.md) — Ships an asynchronous network scanner that discovers live hosts and open ports concurrently.
- [Live Host Probes](https://awesome-repositories.com/f/networking-communication/network-device-discovery/live-host-probes.md) — Ships an asynchronous network scanner that discovers live hosts and open ports without blocking execution. ([source](https://cdn.jsdelivr.net/gh/infinition/bjorn@main/README.md))
- [Network Scanning Tools](https://awesome-repositories.com/f/networking-communication/network-scanning-tools.md) — Discovers live hosts and open ports on a network to map active devices and services.
- [Network Host Discoverers](https://awesome-repositories.com/f/networking-communication/network-scanning-tools/blind-scanning-utilities/network-host-discoverers.md) — Scans a network to identify live devices, their IP addresses, and open ports.

### System Administration & Monitoring

- [Web-Based Dashboards](https://awesome-repositories.com/f/system-administration-monitoring/web-based-dashboards.md) — Provides a browser-based dashboard for real-time monitoring and control of security operations. ([source](https://cdn.jsdelivr.net/gh/infinition/bjorn@main/README.md))
- [Security Operation Dashboards](https://awesome-repositories.com/f/system-administration-monitoring/web-based-dashboards/security-operation-dashboards.md) — Provides a browser interface to monitor and control ongoing security operations and view results in real time.

### User Interface & Experience

- [Web-Based Control Panels](https://awesome-repositories.com/f/user-interface-experience/web-based-control-panels.md) — Provides a browser-accessible dashboard that communicates with the backend via RESTful API calls for task management.

### DevOps & Infrastructure

- [Event-Driven Pipelines](https://awesome-repositories.com/f/devops-infrastructure/event-driven-pipelines.md) — Coordinates security operations through an event-driven task pipeline that chains scanning, brute-forcing, and exfiltration.

### Software Engineering & Architecture

- [Modular Plugin Architectures](https://awesome-repositories.com/f/software-engineering-architecture/modular-plugin-architectures.md) — Employs a modular plugin architecture that loads independent security modules through a shared interface.