Scanning & Enumeration Tools

A-Red-Teamer-diaries

Free Exploitation Post-Exploitation

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Active-Directory-Exploitation-Cheat-Sheet

Open Source Exploitation Post-Exploitation

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

ActiveDirectoryEnumeration

Open Source Post-Exploitation Scanning & Enumeration

Enumerate AD through LDAP with a collection of helpfull scripts being bundled

ActiveReign

Open Source Exploitation Scanning & Enumeration

A Network Enumeration and Attack Toolset for Windows Active Directory Environments.

AD-Attacks-by-Service

Open Source Exploitation Scanning & Enumeration

Active Directory Penetration Testing for Red Teams

adscan

Free Exploitation Post-Exploitation

Free Active Directory pentesting tool and Linux CLI for AD enumeration, BloodHound, Kerberoasting, ADCS, DCSync, and attack paths.

afrog

Open Source Scanning & Enumeration Web Application

A Security Tool for Bug Bounty, Pentest and Red Teaming.

agent-audit

Open Source Reverse Engineering Scanning & Enumeration

Static security scanner for LLM agents — prompt injection, MCP config auditing, taint analysis. 49 rules mapped to OWASP Agentic Top 10 (202…

agent-security-scanner-mcp

Open Source Scanning & Enumeration Web Application

Security scanner MCP server for AI coding agents. Prompt injection firewall, package hallucination detection (4.3M+ packages), 1000+ vulnera…

agentseal

Free Exploitation Scanning & Enumeration

Security toolkit for AI agents. Scan your machine for dangerous skills and MCP configs, monitor for supply chain attacks, test prompt inject…

All-CEHv13-Module-wise-PDF-Reports

Free Forensics Reconnaissance

Practical labs, notes, and reports for CEH v13 modules — covering web hacking, network pentesting, malware analysis, social engineering, and…

archerysec

Open Source Scanning & Enumeration

ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

Artemis

Open Source Scanning & Enumeration

A modular vulnerability scanner with automatic report generation capabilities.

artifact-keeper

Open Source Scanning & Enumeration

Open-source universal artifact registry. Drop-in Artifactory/Nexus alternative with 40+ package formats, security scanning, WASM plugins, an…

ASST

Open Source Scanning & Enumeration Web Application

OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.

AutoAR

Free Scanning & Enumeration

AutoAR is an automated security reconnaissance tool, ASM and Discord bot for bug bounty hunters and penetration testers. It automates gather…

AutoPWN-Suite

Free Exploitation Scanning & Enumeration

AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.

Awesome-Hacking

Free Reverse Engineering Scanning & Enumeration

A collection of various awesome lists for hackers, pentesters and security researchers

awesome-rtc-hacking

Free Scanning & Enumeration Web Application

a list of awesome resources related to security and hacking of VoIP, WebRTC and VoLTE

axiom

Open Source Scanning & Enumeration Web Application

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf…

BCHackTool

Free Exploitation Reconnaissance

🔥 Professional Penetration Testing Framework v4.0 - Automated subdomain enumeration, vulnerability scanning with Nuclei, port scanning, and …

Berserker

Free Exploitation Scanning & Enumeration

A list of useful payloads for Web Application Security and Pentest/CTF

BinAbsInspector

Open Source Reverse Engineering Scanning & Enumeration

BinAbsInspector: Vulnerability Scanner for Binaries

bitdefender-total-security-ultimate-protection

Free Scanning & Enumeration

Get Bitdefender Total Security Ultimate on GitHub: a complete, high-performance toolkit for seamless malware defense and professional protec…