DarkBrew

v6.1 — Verify, Obsidian Export, Enhanced Diagnostics

The macOS-native toolkit for security professionals

Install, manage, and orchestrate 100+ pentesting tools on macOS.
Native performance. Professional workflows. One CLI to rule them all.

Terminal — zsh
$
Install DarkBrew Explore Features →
100+ Security Tools
25+ Cheatsheets
12 Practice Labs
8 Profiles
// FEATURES

Everything a security professional needs.
Nothing they don't.

DarkBrew brings the power of a full pentesting distribution to macOS natively — with a beautiful CLI that feels like home.

One-Command Install

Install any tool instantly. Nmap, Metasploit, Burp Suite, Nuclei — all managed with a single command. Parallel installs by default.

darkbrew install --all --parallel

Pipelines

Chain tools together into automated workflows. Define recon→scan→exploit chains in YAML. Five built-in pipelines included.

darkbrew pipeline recon target.com

Profiles & Loadouts

Curated tool presets for bug bounty, red team, CTF, OSINT, web, wireless, forensics, and network pentesting.

darkbrew profile bugbounty

Practice Labs

Spin up DVWA, Juice Shop, WebGoat, and 9 more vulnerable targets via Docker. One command, instant hacking playground.

darkbrew lab start juiceshop

Auto Reports

Generate pentest reports automatically. Parses nmap, nuclei, sqlmap outputs into structured Markdown or HTML reports.

darkbrew report --html

Arsenal

Download and manage wordlists & payloads. SecLists, PayloadsAllTheThings, rockyou — searchable and organized.

darkbrew arsenal add seclists

Continuous Monitor

Background recon daemon. Watches for new subdomains, ports, cert changes, DNS changes. Sends alerts via webhook.

darkbrew monitor target.com

Cloud Sync

Encrypted git-based sync across machines. Share scopes, configs, and arsenal with your team. AES-256-CBC encryption.

darkbrew cloud push

Engagement Mode

Full engagement scaffolding. Creates project dirs, scope templates, scan scripts, and launches a tmux workspace.

darkbrew engage client-pentest

Cheatsheets

25+ built-in quick-reference cheatsheets rendered in terminal with syntax highlighting. Nmap, sqlmap, Metasploit, and more.

darkbrew cheatsheet nmap

Proxy Manager

One-command proxy chains. Burp Suite, Tor, mitmproxy — auto-configures system proxy and proxychains.

darkbrew proxy start chain

Scope Manager

Define rules of engagement. Validate IPs, CIDRs, and domains against scope before running any tool.

darkbrew scope check 10.10.10.10
// INSTALL

Up and running in
30 seconds.

1

Install

Clone the repo, run the installer. Verifies SHA-256 integrity automatically.

Recommended: Git Clone 
$ git clone https://github.com/darkbrew/darkbrew.git
$ cd darkbrew && bash install.sh
Alternative: One-liner 
$ curl -fsSL https://darkbrew.sh/install.sh | bash
2

Pick a Profile

Choose your loadout — or install everything.

Terminal 
$ darkbrew profile bugbounty
# or: redteam, ctf, osint, web, wireless, forensics, network
3

Hack

Start an engagement, run a pipeline, or just fire up your tools.

Terminal 
$ darkbrew engage target-name
>  Engagement: target-name
  Project:  ~/pentests/2026-03-30_target-name
  Scope:    ~/pentests/2026-03-30_target-name/SCOPE.md
// TOOLS

100+ tools.
Every category covered.

From recon to post-exploitation. Every tool installs natively — Homebrew, pip, Go, git, custom builds.

Recon

nmap masscan subfinder amass httpx dnsx katana rustscan theHarvester sherlock

Web

burpsuite ffuf gobuster sqlmap nikto wpscan dalfox nuclei mitmproxy caido

Exploit

metasploit hydra john hashcat impacket crackmapexec responder bloodhound empire

Network

wireshark bettercap tcpdump aircrack-ng ettercap scapy proxychains netcat socat

Forensics

binwalk radare2 ghidra foremost exiftool yara pwntools volatility

Crypto & OSINT

openssl testssl trufflehog gitleaks spiderfoot shodan-cli censys-cli
// COMMANDS

Intuitive CLI.
Feels like Homebrew.

Package Management

darkbrew install nmapInstall a tool
darkbrew install --allInstall everything
darkbrew uninstall hydraRemove a tool
darkbrew updateUpdate all tools
darkbrew search sqliSearch by name/desc
darkbrew info nmapTool details

Security Workflow

darkbrew profile redteamInstall loadout
darkbrew lab start dvwaLaunch Docker lab
darkbrew engage targetStart engagement
darkbrew cheatsheet nmapQuick reference
darkbrew proxy start torProxy chain
darkbrew scope check IPValidate scope

Automation

darkbrew pipeline reconRun tool chain
darkbrew report --htmlGenerate report
darkbrew arsenal add seclistsGet wordlists
darkbrew monitor targetRecon daemon
darkbrew cloud pushSync to cloud
darkbrew doctorSystem check
// WORKFLOWS

Built for real
engagements.

DarkBrew isn't just a package manager. It's a complete pentest framework.

Bug Bounty Hunter

Profile: bugbounty 
$ darkbrew profile bugbounty
 Installing 18 tools...
 Workspace: ~/pentests/bugbounty/
 Aliases added to ~/.zshrc

$ darkbrew pipeline recon target.com
[1/4] subdomains — subfinder
 Done (12s) — 847 results
[2/4] probe — httpx
 Done (8s) — 312 results
[3/4] screenshots — gowitness
 Done (45s) — 312 results
[4/4] vulnscan — nuclei
 Done (120s) — 23 results

✓ 4 passed  ⚠ 0 skipped  ✗ 0 failed

Red Team Operator

Profile: redteam 
$ darkbrew engage corporate-pentest
>  Engagement: corporate-pentest
  Project:  ~/pentests/2026-03-30_corporate-pentest
  Scope:    SCOPE.md
  Launch tmux workspace? [Y/n] Y

$ darkbrew scope add corporate
  + in-scope ▸ 10.10.10.0/24
  + in-scope ▸ *.corp.example.com
  − exclude  ▸ 10.10.10.1
 Scope saved

$ darkbrew proxy start chain
 Tor SOCKS on :9050
 Proxychains configured: Burp → Tor

Ready to brew
something powerful?

One command. 100+ tools. Professional-grade security toolkit.

Terminal 
$ curl -fsSL https://darkbrew.sh/install.sh | bash
Star on GitHub Join Discord