Scanning & Enumeration Tools

ps-fuzz

Open Source Scanning & Enumeration

Make your GenAI Apps Safe & Secure :rocket: Test & harden your system prompt

pspy

Open Source Scanning & Enumeration

Monitor linux processes without root permissions

public-skills-builder

Free Scanning & Enumeration Web Application

Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — 18 vuln classes, no private reports needed

pwn

Open Source Reconnaissance Reverse Engineering

PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.

pwncat

Open Source Post-Exploitation Scanning & Enumeration

Fancy reverse and bind shell handler

PyADRecon

Open Source Post-Exploitation Reconnaissance

Python3 implementation of ADRecon with support for NTLM and Kerberos authentication querying LDAP. Generates individual CSV files and a sing…

PyADRecon-ADWS

Open Source Post-Exploitation Reconnaissance

An implementation of PyADRecon using ADWS instead of LDAP. Generates individual CSV files and a single XSLX + HTML report about your AD doma…

python3-nmap

Open Source Reconnaissance Scanning & Enumeration

A python 3 library which helps in using nmap port scanner. This is done by converting each nmap command into a callable python3 method or f…

quiet-riot

Open Source Scanning & Enumeration

Unauthenticated enumeration of AWS, Azure, and GCP Principals

Raccoon

Open Source Reconnaissance Scanning & Enumeration

A high performance offensive security tool for reconnaissance and vulnerability scanning

rag-security-scanner

Open Source Exploitation Scanning & Enumeration

RAG/LLM Security Scanner identifies critical vulnerabilities in AI-powered applications, including chatbots, virtual assistants, and knowled…

RamiGPT

Open Source Post-Exploitation Scanning & Enumeration

Autonomous Privilege Escalation using AI

react2shell-ultimate

Open Source Scanning & Enumeration Web Application

React2Shell Ultimate - The most comprehensive CVE-2025-66478 Scanner for Next.js RSC RCE vulnerability. Multi-mode detection, WAF bypass, lo…

recollapse

Open Source Scanning & Enumeration

REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications

Reconator

Open Source Reconnaissance Scanning & Enumeration

Automated Recon for Pentesting & Bug Bounty

RedTeam_toolkit

Open Source Scanning & Enumeration

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

RedTeam-Tools

Free Exploitation Scanning & Enumeration

Tools and Techniques for Red Team / Penetration Testing

rengine

Open Source Reconnaissance Scanning & Enumeration

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engi…

repomind

Open Source Scanning & Enumeration

An open-source, AI-powered application using Agentic CAG to chat with any public GitHub repository or developer profile, offering deep code …

RESim

Free Reverse Engineering Scanning & Enumeration

Reverse engineering software using a full system simulator

Retire.js

Open Source Scanning & Enumeration Web Application

Detects the use of JavaScript libraries with known vulnerabilities. Available as a CLI tool, browser extension, Grunt plugin, and Burp Suite…

RustScan

Open Source Scanning & Enumeration

➡️ [Discord][discord] | [Installation Guide][toc-install] | [Usage Guide][usage-guide] ⬅️

s3dns

Open Source Reconnaissance Scanning & Enumeration

Find S3 AWS/GCP/Azure buckets while surfing. S3DNS acts as DNS server, follows CNAMEs and matches any bucket pattern

sandmap

Open Source Kali Reconnaissance Scanning & Enumeration

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.