Top 23 Scanner Open-Source Projects

• routersploit

  11 11,870 5.4 Python

  Exploitation Framework for Embedded Devices

  

• dirsearch

  12 11,213 7.9 Python

  Web path scanner

Project mention: Looking for some help with this Python package | /r/learnpython | 2023-08-19

I am new to Python. With the help of several users (thanks u/Diapolo10 and u/shiftybyte)I've been able to install Python and the dirsearch package. Dirsearch (https://github.com/maurosoria/dirsearch) allows for checking website paths with a wordlist. For example, I have a wordlist file with words like "dog", "cat", "bird", etc and I want to check the validity of those words as extensions on a website. Something like "example.com/bird", "example.com/cat", etc. I have a test wordlist in the same directory as dirsearch, but I am confused on how to proceed with the commands. I want to have it check my wordlist as extensions on the example.com website and then save output on if the webpath is valid or not. Just need a little bit of help.

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• wpscan

  25 8,224 6.4 Ruby

  WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via [email protected]

  

• rengine

  4 6,685 9.6 Python

  reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Project mention: Any self-host FOSS suites for running phishing testing campaigns? | /r/selfhosted | 2023-05-21

I couldn't find anything named reEngine, but I found reNgine ( https://yogeshojha.github.io/rengine/ ) which I think is what you meant.

• Detect-It-Easy

  18 6,567 9.4 JavaScript

  Program for determining types of files for Windows, Linux and MacOS.

Project mention: E-book piracy - a weird ZIP file | /r/Piracy | 2023-05-17

If it was me, I'd first run something like DIE on it (I have a few such programs installed)- https://github.com/horsicq/Detect-It-Easy

• tfsec

  28 6,544 5.5 Go

  Security scanner for your Terraform code

  

Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16

tfsec Owner/Maintainer: Aqua Security (acquired in 2021) Age: First released on GitHub on March 5th, 2019 License: MIT License tfsec project is no longer actively maintained in favor of the Trivy tool. But because many people still use it and it's quite famous, I added tfsec to this comparison. However, I recommend against using it for new projects.

• react-native-vision-camera

  26 6,482 9.8 TypeScript

  📸 A powerful, high-performance React Native Camera library.

Project mention: Encrypted Note Editor App In React Native | dev.to | 2024-03-04

Camera and Image Captioning: For taking pictures we will use react-native-vision-camera and for generating captions from the images, react-native-quick-tflite.

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• osv-scanner

  10 5,825 9.6 Go

  Vulnerability scanner written in Go which uses the data provided by https://osv.dev

  

• awesome-web-hacking

  2 5,432 5.4

  A list of web application security

• reconftw

  3 5,231 9.3 Shell

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Project mention: Automated recognition frameworks? | /r/bugbounty | 2023-06-23

• WhatWeb

  1 5,096 0.0 Ruby

  Next generation web scanner

• ESP32Marauder

  79 4,559 9.3 C++

  A suite of WiFi/Bluetooth offensive and defensive tools for the ESP32

Project mention: GPS on Marauder at a ESP32 Wroom 38 Pin Board | /r/flipperzero | 2023-12-09

Have you looked thru here may be useful. Does this screenshot help?

• dnstwist

  23 4,535 7.8 Python

  Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Project mention: Have I Been Squatted? | news.ycombinator.com | 2023-11-27

• w3af

  1 4,409 0.0 Python

  w3af: web application attack and audit framework, the open source web vulnerability scanner.

Project mention: HoneyPot – I Made a Text Field Only Bots Use – Heres What Happened | news.ycombinator.com | 2023-11-18

Yes, a lot of tools, including some like w3af do:

https://github.com/andresriancho/w3af/blob/fb345a5/w3af/core...

This one sends the payload reversed as a test to see if the delay is due to the SQLi attempt

• arachni

  2 3,639 1.5 Ruby

  Web Application Security Scanner Framework

  

Project mention: Self-Host Vulnerability Scanner | /r/selfhosted | 2023-07-09

• WebHackersWeapons

  1 3,645 8.4 Ruby

  ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

• Retire.js

  3 3,508 8.9 JavaScript

  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

  

Project mention: Understanding security in React Native applications | dev.to | 2024-04-03

Retire.js

• bbot

  5 3,506 9.9 Python

  A recursive internet scanner for hackers.

  

Project mention: [GitHub Action]: Wrappers for sqlmap, bbot and nikto | /r/cybersecurity | 2023-05-29

Its not that much of a tool than wrappers of few awesome tools that most of you probably know and use today - sqlmap, bbot and nikto.

• Loki

  12 3,219 5.7 Python

  Loki - Simple IOC and YARA Scanner (by Neo23x0)

Project mention: My Boss Downloaded and Opened a .lnk File and Installed a Malware in His Device | /r/computerforensics | 2023-06-06

You should run a tool like loki for ioc scanning. This will identify persistence https://github.com/Neo23x0/Loki

• black-hat-rust

  48 3,044 4.3 Rust

  Applied offensive security with Rust - https://kerkour.com/black-hat-rust

  

Project mention: Cloudflare for Speed and Security | /r/CloudFlare | 2023-10-20

Bonuses: If you purchase Cloudflare for Speed and Security before November 4, 2023, you'll get my bestseller, Black Hat Rust, for free! Yes, you read it right, two books for less than the price of one!

• Raccoon

  4 2,993 0.0 Python

  A high performance offensive security tool for reconnaissance and vulnerability scanning

• openvas-scanner

  9 2,870 9.3 C

  This repository contains the scanner component for Greenbone Community Edition.

  

Project mention: Monthly Security Checklist | /r/msp | 2023-06-25

OpenVAS - https://github.com/greenbone/openvas-scanner

• WeScan

  3 2,771 6.2 Swift

  Document Scanning Made Easy for iOS

  

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Scanner related posts

• Xzbot: Notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)
  6 projects | news.ycombinator.com | 1 Apr 2024
• Open-Source Detector of CISA's Known Exploitable Vulnerabilities
  8 projects | news.ycombinator.com | 15 Jan 2024
• Arp-Scanner a lightweight IP scanner using ARP requests
  1 project | news.ycombinator.com | 2 Jan 2024
• I am looking to get an RTL-SDR for my father for christmas. Is there an SDR program that I can kind of "set it and forget it" for him? He just wants a basic scanner that scans weather and nearby emergency services.
  2 projects | /r/RTLSDR | 10 Dec 2023
• HP misreads room, awkwardly brags about its “less hated” printers | Opinion: HP's printer business practices have infuriated users for years.
  1 project | /r/technology | 8 Dec 2023
• Paperless-Ngx v2.0.0
  17 projects | news.ycombinator.com | 29 Nov 2023
• GitHub: Can no longer search code without being logged in
  1 project | news.ycombinator.com | 27 Nov 2023
• A note from our sponsor - InfluxDB
  www.influxdata.com | 26 Apr 2024

  Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com