107 Open source projects that are alternatives of or similar to netscan

golang version for nmap service and application version detection (without nmap installation)

The OWASP ZAP core project

A high performance offensive security tool for reconnaissance and vulnerability scanning

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)

🔐💥 KeyNuker - nuke AWS keys accidentally leaked to Github

A Python library for the MythX smart contract security analysis platform

Discover Your Attack Surface!

Shodan API client

A curated list of vulnerable web applications.

Ruby API client for the Censys internet-wide network-scan search engine

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Distributed filesystem scanner

三方依赖库扫描系统

Offensive vulnerability scanner for ethereum, and symbolic execution tool for the Ethereum Virtual Machine

YAWAST ...where a pentest starts. Security Toolkit for Web-based Applications

Application and Service Fingerprinting

收集网络上公开的漏洞扫描器的白皮书。

Kubernetes object analysis with recommendations for improved reliability and security

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Scrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product

Source Code Security Audit (源代码安全审计)

Golang安全资源合集

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

A default credential scanner.

Official Black Hat Arsenal Security Tools Repository

Faster and more efficient stateless SYN scanner and banner grabber due to userland TCP/IP stack usage.

Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.

A PHP dependency vulnerabilities scanner based on the Security Advisories Database.

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

批量漏洞扫描框架

Sandfly Security Agentless Compromise and Intrusion Detection System For Linux

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Ninjaberry: Raspberry Pi UI for @bettercap

🐞 Primitive Erlang Security Tool

A handy systems and security-focused tool, Port Authority is a very fast Android port scanner. Port Authority also allows you to quickly discover hosts on your network and will display useful network information about your device and other hosts.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Tool for breaking into web applications.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Advanced vulnerability scanning with Nmap NSE

Security tool to trace URL's jumps across the rel links to obtain the last URL

Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

Application Layer DoS attack simulator

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

A Machine Learning approach for classifying a file as Malicious or Legitimate

This is the new version of dirb in python

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Semgrep rules registry

Simple Golang HTTPS/TLS Examples

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

nodejsscan is a static security code scanner for Node.js applications.

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.

Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).

🔎 Python framework to automatically discover and enumerate hosts from different back-end systems (Shodan, Censys)

THIS REPOSITORY HAS BEEN MOVED TO https://github.com/wpscanteam/wpscan USE THAT!!!