One environment
200+ tools across 6 categories with no local dependency hell—pull, run, and test.
Version 2.0 · Nightingale GUI for Penetration Testing
Security testing at engineering speed
Nightingale is a Docker-based penetration testing framework with a modern web GUI, multi-terminal support, and 200+ pre-installed tools—covering web, network, mobile, OSINT, and forensics in one consistent environment. Spin it up when a test is scheduled, then tear it down—no need to keep a lab running around the clock.
0
Security Tools
0
Tool Categories
0
Languages Supported
0
Platform Independent
Community and industry recognition
Trusted in the community
OWASP Incubator Project
BlackHat Arsenal
Docker Community
OWASP Global AppSec
Why Nightingale
Ship tests faster. Keep the lab consistent.
Toolchains sprawl across hosts, environments drift, and onboarding new testers takes days. Nightingale keeps your workflow in one container and one browser session.
Faster iteration
Web GUI, multi-terminal sync, and AI-assisted commands reduce friction in the critical path.
Same results everywhere
Docker isolation means Windows, macOS, Linux, or cloud—same stack, reproducible outcomes.
Core workflow
Everything you need in one place
Nightingale v2.0 delivers a cutting-edge penetration testing framework with an intuitive web-based GUI, from parallel terminals to scan orchestration.
Multi-terminal support
Manage multiple terminal sessions simultaneously with real-time synchronization.
- Switch between sessions seamlessly and execute commands across different contexts.
- Keep context aligned with the web UI and file explorer.
Outcome: Parallel workflows without juggling brittle SSH multiplexing.
Web-based GUI
Access your entire penetration testing environment through a modern, intuitive web interface.
- No local installations required—everything runs in your browser.
- Designed for teams that need shared visibility into sessions.
Outcome: Onboard testers in minutes, not days.
AI command suggestions
Get intelligent command recommendations based on your current context and output.
- Discover adjacent tools and techniques without leaving the terminal.
- Reduce repetitive command lookup during long engagements.
Outcome: Faster iteration on hypotheses during active testing.
Real-time file explorer
Navigate your file system with an interactive, expandable directory tree.
- Real-time updates synced with your terminal’s working directory.
- Less context switching between shell and file managers.
Outcome: Clearer situational awareness during investigations.
VPN management
Built-in VPN support for connecting to testing networks.
- Manage VPN connections directly from the interface.
- Split-tunneling capabilities for controlled routing.
Outcome: Safer, repeatable access to segmented environments.
Scan management
Organize and manage vulnerability scans with a comprehensive dashboard.
- Track scan progress, view results, and manage scan history efficiently.
- Keep engagement artifacts organized in one place.
Outcome: Reporting-ready traceability without spreadsheet chaos.
How it works
Better focus. Faster outcomes.
Nightingale is built for real engagements: isolation, speed, and a UI that stays out of your way.
Isolated execution
Runs in Docker with a clear boundary from the host—consistent tooling without polluting workstations.
Browser-first operations
Terminal, explorer, and scan views in one place so teams can collaborate without screen-sharing friction.
Persistent session context
Multi-terminal sync and file explorer keep state aligned so you spend less time re-establishing context.
Research-backed toolkit
Curated categories across web, network, mobile, OSINT, forensics, and wordlists—ready for professional use.
Advanced capabilities
Where the platform is headed
The open core already ships a full console—terminal, explorer, scans, and tooling in one container. The GUI stack continues to grow toward deeper collaboration, governance, and assisted analysis for long-running programs and shared operations.
Multi-engagement workspaces
Organize work across programs and engagements so scans, findings, and reports stay scoped and traceable to the right context.
Identity & team administration
User lifecycle, roles, and administrative workflows so shared consoles stay accountable in team and lab environments.
Network boundaries
Integrated VPN-style workflows for segmented targets and controlled routing—aligned with how real engagements access isolated networks.
AI-assisted operations
Optional AI hooks for scan explainers, reporting helpers, and context-aware command suggestions—always under your configuration and policies.
Structured findings & reporting
Normalized ingestion from scanner output into dashboards and exportable reports, so results roll up cleanly across jobs and tools.
Playbooks & scheduling
Multi-step playbooks, queued jobs, and scheduled execution patterns for repeatable workflows—not one-off copy-paste runs.
Built for real labs
Isolation and governance you can audit
Nightingale keeps testing work inside the container: fewer host-side changes, clearer boundaries for shared machines, and an OWASP-aligned open model you can inspect on GitHub.
- Container boundary reduces host drift and side effects.
- Transparent, community-driven development under OWASP.
- Pull from GHCR or build from source—your choice.
Use dedicated credentials and networks for engagements. Nightingale helps you keep work scoped, reproducible, and reviewable.
Open source velocity
Free to use, fork, and improve—backed by the OWASP community and GitHub workflows.
View on GitHub
200+
Tools
6
Categories
OWASP
Incubator
Stack
Fits into your stack on day one
Run wherever Docker runs—local, CI, or cloud. Pull from GitHub Container Registry when you need a session: start the container on demand instead of keeping a lab running 24/7, then stop it when the engagement ends.
Docker
GitHub
Debian base
GHCR
Container-first
Interface
See Nightingale in action
Each engagement (for example org1 vs org2) gets its own isolated home directory, scan history, VPN configs, and admin settings—the same product surface, scoped per tenant. Follow the tabs for a typical workflow: land in the console, open VS Code, run scans and automation, then handle VPN, users, and AI. Click a screenshot (or focus it and press Enter) to open a full-screen preview sized to your display; use Actual size to pan, scroll, or pinch-zoom the full-resolution image on touch devices.
org1
org2
Same console layout: web shell plus per-engagement file tree (tooling paths follow the active org).
org1
org2
Browser-based code-server: open repos, terminals, and the agent chat without leaving the engagement.
-
1. Submit — org1: queue a tool (here the scanner menu with Nuclei) alongside live findings and report history.
-
VPN for labs & CTFs
org1
org2
Upload
.ovpnprofiles per engagement; connect inside an isolated container without breaking console connectivity.
This project is supported by
Tool Categories
Comprehensive Security Toolkit
Nightingale includes specialized tools for every aspect of penetration testing, organized into focused categories for maximum efficiency.
Web VAPT
Comprehensive web application security testing tools including XSS scanners, SQL injection tools, and API testing frameworks.
- Xray
- XSStrike
- LinkFinder
- JWT Tool
- HawkScan
Network VAPT
Network reconnaissance and exploitation tools for identifying vulnerabilities and testing network security.
- Nmap
- Metasploit
- Naabu
- RustScan
- Masscan
Mobile VAPT
Mobile application security testing tools for Android and iOS, including reverse engineering and dynamic analysis frameworks.
- MobSF
- RMS
- JADX
- APKTool
- Frida
OSINT
Open-source intelligence gathering tools for reconnaissance and information collection from public sources.
- ReconSpider
- Recon-ng
- SpiderFoot
- MetaGoofil
- TheHarvester
Forensics & Red Team
Digital forensics and red team tools for evidence analysis, steganography, and advanced exploitation techniques.
- Impacket
- ExifTool
- Steghide
- Binwalk
- Foremost
Wordlists
Comprehensive wordlist collections and fuzzing tools for password attacks, directory brute-forcing, and content discovery.
- SecLists
- RockYou.txt
- FuzzDB
- WFuzz
- DirB
Architecture
Built on Modern Technology
Nightingale leverages Docker's modular architecture to provide a flexible, scalable penetration testing environment.
Docker Base
Debian Foundation
Programming Languages
Python, Java, Ruby, Node.js, Go
Web
Network
Mobile
OSINT
Forensics
Wordlist
Nightingale v2.0
Complete Pentesting Framework
Modular Design
Build custom Docker images by combining specialized tool categories with a common programming language base.
Real-Time Sync
WebSocket-based communication ensures instant updates between terminal sessions and the file explorer.
Cloud Ready
Deploy on Kubernetes with Helm charts, or run locally with Docker Compose. Works everywhere Docker runs.
Isolated Environment
Each container runs in complete isolation, ensuring security and preventing conflicts with host systems.
Quick Start
Get Started in Minutes
Launch Nightingale and begin your penetration testing journey with these simple steps.
1
Install Docker
Download and install Docker Desktop for your operating system (Windows, macOS, or Linux).
2
Pull Nightingale
Open your terminal and pull the Nightingale image from GitHub Container Registry (GHCR).
docker pull ghcr.io/rajanagori/nightingale:stable
3
Launch Container
Run the container with port mapping to access the web interface on localhost.
docker run -d -p 8080:8080 --name nightingale ghcr.io/rajanagori/nightingale:stable
4
Access Web GUI
Open your browser and navigate to localhost:8080 to access the Nightingale interface.
Terminal 1
$ nmap -sV -p- target.com
Nmap
Metasploit
Burp Suite
Recognition
Trusted by Security Professionals Worldwide
Nightingale has been featured at major security conferences and recognized by the cybersecurity community.
BlackHat Arsenal
Asia 2022, 2023, 2024
BlackHat Arsenal
EU London 2025
BlackHat Arsenal
MEA 2022, 2023
(Shortlisted)
OWASP Global AppSec
EU 2022
Docker Community
Hands-on Event
IWCON
2023
c0c0n
2024
OWASP Incubator Project
Part of the Open Web Application Security Project
FAQ
Frequently Asked Questions
Common questions about Nightingale v2.0, the live hosted GUI, Docker, and pentesting workflows.
What is Nightingale and how does it differ from other penetration testing frameworks?
+Nightingale v2.0 is a comprehensive penetration testing framework built on Docker that provides a modern web-based GUI with multi-terminal support and 200+ pre-installed security tools. It runs entirely in containers to ensure platform independence and eliminate installation conflicts. It combines the power of specialized security tools with an intuitive interface designed specifically for modern penetration testing workflows.
Is the Nightingale web GUI live? How do I try nightingale-security.com?
+Yes. A hosted Nightingale web GUI runs at nightingale-security.com by request. Open a GitHub issue using the Hosted Nightingale GUI access template in RAJANAGORI/Nightingale. A maintainer will start the environment on demand and reply on your issue. You can also self-host anytime with Docker and the image from GitHub Container Registry.
Do I need Docker experience to use Nightingale?
+Not at all! Nightingale is designed to be user-friendly and doesn't require Docker expertise. Simply pull the container, run it, and access the web interface through your browser. All Docker complexities are handled automatically, allowing security professionals to focus on their testing rather than container management.
What types of penetration testing can I perform with Nightingale?
+Nightingale supports comprehensive penetration testing across multiple domains: web application vulnerability assessment (XSS, SQL injection, API testing), network penetration testing (port scanning, exploitation), mobile security testing (Android/iOS analysis), OSINT (reconnaissance and information gathering), digital forensics, and red team operations. With 200+ tools organized into 6 specialized categories, it covers the entire security testing lifecycle.
Is Nightingale free and open source?
+Yes, Nightingale is completely free and open source. As an OWASP Incubator Project, it follows open-source principles and is available on GitHub. The framework is built on Docker, making it easily accessible to security professionals worldwide without licensing costs or vendor lock-in.
Which operating systems does Nightingale support?
+Nightingale runs on any operating system that supports Docker, including Windows, macOS, and Linux. This platform independence means you can use the same tools and interface regardless of your host operating system, making it perfect for diverse environments and team collaboration.
Can I use Nightingale for professional penetration testing engagements?
+Absolutely! Nightingale is used by security professionals worldwide for professional engagements. Its comprehensive toolset, organized workflows, and professional features like scan management and real-time file exploration make it suitable for enterprise-grade penetration testing. The framework has been featured at major security conferences including BlackHat Arsenal.
What are the system requirements for running Nightingale?
+Nightingale requires only Docker to be installed on your system. Minimum requirements include: 4GB RAM, 10GB free disk space, and a modern web browser. The containerized approach ensures consistent performance across different hardware configurations and eliminates dependency conflicts.
Ready to Start Your Next Pentest?
Join thousands of security professionals using Nightingale for their penetration testing needs.