483 Open source projects that are alternatives of or similar to Serverscan

Nmap and NSE command line wrapper in the style of Metasploit

Faster and more efficient stateless SYN scanner and banner grabber due to userland TCP/IP stack usage.

asset-scan是一款适用甲方企业的外网资产周期性扫描监控系统

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A high performance offensive security tool for reconnaissance and vulnerability scanning

A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)

Nmap - the Network Mapper. Github mirror of official SVN repository.

[ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻

🔎 Python framework to automatically discover and enumerate hosts from different back-end systems (Shodan, Censys)

Docker images for infosec tools

Pentesting suite for Maltego based on data in a Metasploit database

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

network visualization & vulnerability management/reporting

Advanced vulnerability scanning with Nmap NSE

Browse and search through nmap's NSE scripts.

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A wrapper for Nmap to quickly run network scans

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

network reconnaissance toolkit

OWASP ZAP Add-ons

Docker containers running Alpine Linux and s6 for process management. Solid, reliable containers.

ScaleCube Services is a high throughput, low latency reactive microservices library built to scale. it features: API-Gateways, service-discovery, service-load-balancing, the architecture supports plug-and-play service communication modules and features. built to provide performance and low-latency real-time stream-processing. its open and designed to accommodate changes. (no sidecar in a form of broker or any kind)

Solve your DNS hosts from your docker containers, then from your local configuration, then from internet

Hacking Toolkit

Demo for Spring Boot 2 and Spring Cloud microservices with distributed configuration (Spring Cloud Config), service discovery (Eureka), API gateway (Spring Cloud Gateway, Zuul), Swagger2 API documentation, logs correlation using Spring Cloud Sleuth and many more

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

红队综合渗透框架

Steeltoe samples and reference application collection

Service registry bridge for Docker with pluggable adapters

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Spring Cloud Zookeeper

kube-scan: Octarine k8s cluster risk assessment tool

DoraRPC is an RPC For the PHP MicroService by The Swoole

A Nmap XSL implementation with Bootstrap.

Fast directory scanning and scraping tool

Attack Surface Management Platform | Sn1perSecurity LLC

Old repo for Linkerd 1.x. See the linkerd2 repo for Linkerd 2.x.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

a javascript static security analysis tool

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Marathon-lb is a service discovery & load balancing tool for DC/OS

Automate Pentest Tool

Security scanner coordinator

mDNS / DNS-SD Service Discovery in pure Go (also known as Bonjour)

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.

UAVStack Open Source All in One Repository

MSDAT: Microsoft SQL Database Attacking Tool

Hack the World using Termux

NodeJS Simple Network Scanner

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

Consul is a distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

🐝 BeeHive is a solution for iOS Application module programs, it absorbed the Spring Framework API service concept to avoid coupling between modules.

Easy automated vulnerability scanning, reporting and analysis

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

C2/post-exploitation framework

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙