Scanning & Enumeration Tools

281 tools
scan4all
scan4all
Open Source Password Attacks Reconnaissance

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Po…
ScanCannon
ScanCannon
Free Exploitation Reconnaissance

A script for credentials-based attack surface enumeration and general reconnaissance of massive networks
scanme
scanme
Open Source Forensics Reconnaissance

A Golang package for scanning private and public IPs for open TCP ports 👁️
Scanner-and-Patcher
Scanner-and-Patcher
Open Source Exploitation Scanning & Enumeration

A Web Vulnerability Scanner and Patcher
ScanPro
ScanPro
Free Exploitation Reconnaissance

ScanPro - NMap Scanning Scripts ~ Network Mapper
scilla
scilla
Open Source Reconnaissance Scanning & Enumeration

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
scout
scout
Free Scanning & Enumeration

🔭 Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs
sdlc_golang
sdlc_golang
Free Scanning & Enumeration

sdlc 是一个基于 Go 语言构建的安全漏洞示范平台,旨在促进 DevSecOps 和安全开发生命周期 (SDLC) 实践。它通过模拟常见漏洞来增强开发人员的安全意识,除了可以用于devsecops以外,还可以用于安全行业从事者学习漏洞知识或者渗透知识,代码审计,提供了一个实践…
Secrover
Secrover
Open Source Scanning & Enumeration

Open-source security reports — no paywalls, just actionable insights.
security-scripts
security-scripts
Open Source Scanning & Enumeration

A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular to…
Shai-Hulud-2.0-Detector
Shai-Hulud-2.0-Detector
Open Source Scanning & Enumeration

Detect npm packages compromised in the Shai-Hulud 2.0 supply chain attack (Nov 2025). Scans for 790+ malicious packages, suspicious scripts,…
ShonyDanza
ShonyDanza
Open Source Exploitation Reconnaissance

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
SILENTCHAIN
SILENTCHAIN
Free Scanning & Enumeration Web Application

AI-powered vulnerability scanner extension for Burp Suite with multi-provider support (Ollama, OpenAI, Claude, Gemini)
SMBMap
SMBMap
Open Source Kali Scanning & Enumeration

Allows users to enumerate SMB shares across a domain, list share permissions, check drive access, and execute remote commands via authentica…
smtp-user-enum
smtp-user-enum
Open Source Scanning & Enumeration

SMTP user enumeration via VRFY, EXPN and RCPT with clever timeout, retry and reconnect functionality.
sopa
sopa
Open Source Exploitation Post-Exploitation

A practical client for ADWS in Golang.
spk
spk
Open Source Reconnaissance Scanning & Enumeration

spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.
sqli-hunter
sqli-hunter
Free Exploitation Scanning & Enumeration

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.
sqlmap
sqlmap
Free Kali Exploitation Scanning & Enumeration

Automatic SQL injection and database takeover tool
subscraper
subscraper
Open Source Reconnaissance Scanning & Enumeration

Subdomain and target enumeration tool built for offensive security testing
Sudomy
Sudomy
Open Source Kali Reconnaissance Scanning & Enumeration

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunti…
syzkaller
syzkaller
Open Source Scanning & Enumeration

syzkaller is an unsupervised coverage-guided kernel fuzzer
TangGo
TangGo
Free Exploitation Scanning & Enumeration

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台,为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境,主要用于Web站点的功能测试、安全测试和安全评估。
Th3inspector
Th3inspector
Open Source Reconnaissance Scanning & Enumeration

Th3Inspector 🕵️ Best Tool For Information Gathering 🔎