Integrated tools and scanners (55)

SQLmap - automatic SQL injection and database takeover

SQLmap - automatic SQL injection and database takeover

DMitry

DMitry

OpenVAS - Open Vulnerability Assessment System

OpenVAS - Open Vulnerability Assessment System

Nmap

Nmap

OWASP Zed Attack Proxy (ZAP)

OWASP Zed Attack Proxy (ZAP)

Nikto Web Scanner

Nikto Web Scanner

WhatWeb

WhatWeb

SQLIer - Automated SQL injection exploiter

SQLIer - Automated SQL injection exploiter

BlindElephant

BlindElephant

DNSRecon

DNSRecon

dnsenum

dnsenum

Uniscan - RFI, LFI and RCE vulnerability scanner

Uniscan - RFI, LFI and RCE vulnerability scanner

OWASP Joomla! Vulnerability Scanner

OWASP Joomla! Vulnerability Scanner

OWASP VBulletin Vulnerability Scanner

OWASP VBulletin Vulnerability Scanner

sshdefaultscan

sshdefaultscan

SSLyze - Fast and powerful SSL/TLS server scanning library

SSLyze - Fast and powerful SSL/TLS server scanning library

twa - A tiny web auditor with strong opinions

twa - A tiny web auditor with strong opinions

Webshag - Multi-threaded web server audit tool

Webshag - Multi-threaded web server audit tool

Cisco Global Exploiter - Advanced, simple and fast security testing tool

Cisco Global Exploiter - Advanced, simple and fast security testing tool

dnsmap - DNS domain name brute forcing tool

dnsmap - DNS domain name brute forcing tool

URLCrazy - Domain Report

URLCrazy - Domain Report

TheHarvester - E-mails, subdomains and names Harvester - OSINT

TheHarvester - E-mails, subdomains and names Harvester - OSINT

WAScan - Web Application Scanner

WAScan - Web Application Scanner

shcheck - Security Header Check

shcheck - Security Header Check

Th3inspector - All in one tool for Information Gathering

Th3inspector - All in one tool for Information Gathering

Tulpar - Web Vulnerability Scanner

Tulpar - Web Vulnerability Scanner

Default file check

Default file check

GooglePDF

GooglePDF

DNSrecords

DNSrecords

Domain History

Domain History

Subdomains

Subdomains

Domain Whois

Domain Whois

Wikileaks

Wikileaks

CMSmap

CMSmap

ZDNS - high-speed DNS lookups

ZDNS - high-speed DNS lookups

fimap - Automatic LFI/RFI scanner and exploiter

fimap -  Automatic LFI/RFI scanner and exploiter

Fierce - Find mis-configured networks

Fierce - Find mis-configured networks

JexBoss - Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

JexBoss - Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

Darkjumper - Find every website that host at the same server at your target

Darkjumper - Find every website that host at the same server at your target

hsecscan - Scanner for HTTP response headers.

hsecscan - Scanner for HTTP response headers.

Shodan

Shodan

Censys

Censys

Email Hunter

Email Hunter

Nessus

Nessus

Acunetix

Acunetix

ZMap: The Internet Scanner

ZMap: The Internet Scanner

SIPVicious - svmap

SIPVicious - svmap

SIPVicious - svwar

SIPVicious - svwar

sipsak

sipsak

QARK Apk scanner - Quick Android Review Kit

QARK Apk scanner - Quick Android Review Kit

AndroBugs Framework - Android vulnerability analysis system

AndroBugs Framework - Android vulnerability analysis system

PHP Parallel Lint - Check syntax of PHP files

PHP Parallel Lint - Check syntax of PHP files

Parse: A Static Security Scanner

Parse: A Static Security Scanner

WAP - Web Application Protection

WAP - Web Application Protection

Bandit - a Python source code security analyzer

Bandit - a Python source code security analyzer