A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

Overview

naabu

License Go Report Card contributions welcome GitHub Release Follow on Twitter Docker Images Chat on Discord

Naabu is a port scanning tool written in Go that allows you to enumerate valid ports for hosts in a fast and reliable manner. It is a really simple tool that does fast SYN/CONNECT scans on the host/list of hosts and lists all ports that return a reply.

Resources

Features

naabu

  • Simple and modular code base making it easy to contribute.
  • Fast And Simple SYN/CONNECT probe based scanning.
  • Multiple Output formats supported (JSON, File, Stdout)
  • Optimized for ease of use and lightweight on resources
  • Stdin and stdout support for integrating in workflows
  • Automatic handling of duplicate hosts between multiple subdomains
  • Multiple input type support including HOST/IP/CIDR notation.

Usage

▶ naabu -h

This will display help for the tool. Here are all the switches it supports.

Flag Description Example
c Worker threads for fqdn to ip resolution naabu -c 25
config Configuration file for naabu naabu -config naabu.conf
p Ports to scan (80,443, 100-200) naabu -p -
top-ports Top Ports to scan (default top 100 naabu -top-ports 1000
host host/domain/CIDR to scan ports for naabu -host 192.168.0.1/24
iL File containing list of hosts to enumerate ports naabu -iL hosts.txt
ports-file File containing ports to enumerate for on hosts naabu -ports-file ports.txt
exclude-cdn Skip full port scans for CDNs (only checks for 80,443) naabu -exclude-cdn
exclude-hosts Skip port scans for given hosts naabu -exclude-hosts 192.168.0.1/24
exclude-file Skip port scans for given hosts in file naabu -exclude-file exclude.txt
exclude-ports Skip port scans on hosts for given ports naabu -exclude-ports 22,80,443
nmap nmap scans to run on results (works with config file) naabu -nmap
nmap-cli nmap scans to run on results naabu -nmap-cli 'nmap -sV'
o File to write output to (optional) naabu -o output.txt
json Write output in JSON lines Format naabu -json
rate Rate of port scan probes per requests naabu -rate 1000
interface Network Interface to use for port scan naabu -interface eth0
interface-list List available interfaces and public ip naabu -interface-list
no-color Don't Use colors in output naabu -no-color
retries Number of retries for the port scan probe (default 3) naabu -retries 10
silent Print found ports only in output naabu -silent
source-ip Source IP naabu -source-ip 10.10.10.10
s Scan Type (s - SYN, c - CONNECT) naabu -s c
timeout Millisecond to wait before timing out (default 700) naabu -timeout 700
verify Validate the ports again with TCP verification naabu -verify
debug Enable debugging information naabu -debug
version Show version of naabu naabu -version
warm-up-time Time in seconds between scan phases (default 2) naabu -warm-up-time

Installation Instructions

From Binary

The installation is easy. You can download the pre-built binaries for your platform from the releases page. Extract them using tar, move it to your $PATHand you're ready to go.

Download latest binary from https://github.com/projectdiscovery/naabu/releases

▶ tar -xvf naabu-linux-amd64.tar
▶ cp naabu-linux-amd64 /usr/local/bin/naabu
▶ naabu -version

From Source

naabu requires go1.14+ to install successfully and have libpcap-dev installed on the system.

To install libpcap-dev:-

apt install -y libpcap-dev
▶ GO111MODULE=on go get -v github.com/projectdiscovery/naabu/v2/cmd/naabu
▶ naabu -version

From Github

▶ git clone https://github.com/projectdiscovery/naabu.git; cd naabu/v2/cmd/naabu; go build; cp naabu /usr/local/bin/; naabu -version

From Docker

You can use the official dockerhub image at naabu. Simply run -

▶ docker pull projectdiscovery/naabu

The above command will pull the latest tagged release from the dockerhub repository.

  • After pulling / building the container using either way, run the following -
docker run -it projectdiscovery/naabu -version

For example, this runs the tool against hackerone.com and output the results to your host file system -

docker run -it projectdiscovery/naabu -host hackerone.com > hackerone.com.txt

Windows

Windows version is currently not usable without docker.

The docker install instructions are identical to the ones for other platforms. See the From Docker section for install instructions on Windows.

Running Naabu

To run the tool on a target, just use the following command.

▶ naabu -host hackerone.com

This will run the tool against hackerone.com. There are a number of configuration options that you can pass along with this command. The verbose switch -v can be used to display verbose information.

▶ naabu -host hackerone.com

                  __
  ___  ___  ___ _/ /  __ __
 / _ \/ _ \/ _ \/ _ \/ // /
/_//_/\_,_/\_,_/_.__/\_,_/ v2.0.3

    projectdiscovery.io

[WRN] Use with caution. You are responsible for your actions
[WRN] Developers assume no liability and are not responsible for any misuse or damage.
[INF] Running SYN scan with root privileges
[INF] Found 4 ports on host hackerone.com (104.16.100.52)
hackerone.com:80
hackerone.com:443
hackerone.com:8443
hackerone.com:8080

The ports to scan for on the host can be specified via -p parameter. It takes nmap format ports and runs enumeration on them.

▶ naabu -p 80,443,21-23 -host hackerone.com

By default, the Naabu checks for nmap's Top 100 ports. It supports following in-built port lists -

  • -top-ports 100 => Checks for nmap top 100 ports.
  • -top-ports 1000 => Checks for nmap top 1000 ports.
  • -p - => Checks for all ports from 1-65535.

You can also specify specific ports which you would like to exclude from the scan.

▶ naabu -p - -exclude-ports 80,443

The o flag can be used to specify an output file.

▶ naabu -host hackerone.com -o output.txt

To run the naabu on a list of hosts, -iL option can be used.

▶ naabu -iL hosts.txt

You can also get output in json format using -json switch. This switch saves the output in the JSON lines format.

▶ naabu -host hackerone.com -json

{"host":"hackerone.com","ip":"104.16.99.52","port":8443}
{"host":"hackerone.com","ip":"104.16.99.52","port":80}
{"host":"hackerone.com","ip":"104.16.99.52","port":443}
{"host":"hackerone.com","ip":"104.16.99.52","port":8080}

Hosts can also be piped to naabu and port enumeration can be ran on them. For example -

echo hackerone.com | naabu
▶ cat targets.txt | naabu

The ports discovered can be piped to other tools too. For example, you can pipe the ports discovered by naabu to httpx which will then find running http servers on the host.

echo hackerone.com | naabu -silent | httpx -silent

http://hackerone.com:8443
http://hackerone.com:443
http://hackerone.com:8080
http://hackerone.com:80

If you want a second layer validation of the ports found, you can instruct the tool to make a TCP connection for every port and verify if the connection succeeded. This method is very slow, but is really reliable. This is similar to using nmap as a second layer validation

▶ naabu -host hackerone.com -verify

The speed can be controlled by changing the value of rate flag that represent the number of packets per second. Increasing it while processing hosts may lead to increased false-positive rates. So it is recommended to keep it to a reasonable amount.

Configuration file

We have added support for config file, it allows each and every flag to define in config file, so you don't have to write them everytime, it's optional and not used on default run, default location of config file is $HOME/.config/naabu/naabu.conf, custom config file can be provided using config flag.

Example config file
# Number of retries
# retries: 1
# Packets rate
# rate: 100
# Timeout is the seconds to wait for ports to respond
# timeout: 5
# Hosts are the host to find ports for
# host:
# 	- 10.10.10.10
# Ports is the ports to use for enumeration
# ports:
# 	- 80
# 	- 100
# ExcludePorts is the list of ports to exclude from enumeration
# exclude-ports:
# 	- 20
# 	- 30
# Verify is used to check if the ports found were valid using CONNECT method
# verify: false
# Ips or cidr to be excluded from the scan
# exclude-ips:
# 	- 1.1.1.1
# 	- 2.2.2.2
# Top ports list
# top-ports: 100
# Attempts to run as root
# privileged: true
# Drop root privileges
# unprivileged: true
# Excludes ip of knows CDN ranges
# exclude-cdn: true
# SourceIP to use in TCP packets
# source-ip: 10.10.10.10
# Interface to use for TCP packets
# interface: eth0
# WarmUpTime between scan phases
# warm-up-time: 2
# nmap command to invoke after scanninginvoke after scanning
# nmap: nmap -sV

Nmap integration

We have integrated nmap support with nmap and nmap-cli flag, in config file you can define any nmap command you wish to run on the result of naabu, make sure you have nmap installed to use this feature.

To make use of nmap flag, make sure to remove the comments from the config file at $HOME/.config/naabu/naabu.conf

We also added nmap-cli flag that let you run nmap commands directly on the results of naabu without making use of config file.

echo hackerone.com | naabu -nmap-cli 'nmap -sV -oX naabu-output'
                  __       
  ___  ___  ___ _/ /  __ __
 / _ \/ _ \/ _ \/ _ \/ // /
/_//_/\_,_/\_,_/_.__/\_,_/ v2.0.0				 

		projectdiscovery.io

[WRN] Use with caution. You are responsible for your actions
[WRN] Developers assume no liability and are not responsible for any misuse or damage.
[INF] Running TCP/ICMP/SYN scan with root privileges
[INF] Found 4 ports on host hackerone.com (104.16.99.52)

hackerone.com:443
hackerone.com:80
hackerone.com:8443
hackerone.com:8080

[INF] Running nmap command: nmap -sV -p 80,8443,8080,443 104.16.99.52

Starting Nmap 7.01 ( https://nmap.org ) at 2020-09-23 05:02 UTC
Nmap scan report for 104.16.99.52
Host is up (0.0021s latency).
PORT     STATE SERVICE       VERSION
80/tcp   open  http          cloudflare
443/tcp  open  ssl/https     cloudflare
8080/tcp open  http-proxy    cloudflare
8443/tcp open  ssl/https-alt cloudflare

CDN Exclusion

Naabu also supports excluding CDN IPs being port scanned. If used, only 80 and 443 ports get scanned for those IPs. This feature can be enabled by using exclude-cdn flag.

Currently cloudflare, akamai, incapsula and sucuri IPs are supported for exclusions.

📋 Notes

  • Naabu is designed to scan ports on multiple hosts / mass port scanning.
  • As default naabu is configured with a assumption that you are running it from VPS.
  • We suggest to tune the flags / rate if running naabu from local system.
  • For best results, run naabu as root user.

naabu is made with 🖤 by the projectdiscovery team. Community contributions have made the project what it is. See the Thanks.md file for more details.

Issues
  • exiting , you must be a privilaged user to run this scan

    exiting , you must be a privilaged user to run this scan

    exiting , you must be a privilaged user to run this scan

    after this i used like sudo naabu but giving naabu didnt found

    question 
    opened by balook 16
  • Scan fails on Virtual Interfaces as MAC is not defined

    Scan fails on Virtual Interfaces as MAC is not defined

    Screenshot_36 failed when install my os ubuntu 18.04

    anyone can help?

    bug 
    opened by Penjo 11
  • mismatched hardware address sizes

    mismatched hardware address sizes

    I downloaded and installed from source on kali. Tried to use naabu to scan a HTB machine (Mango) using the command: naabu -host 10.10.10.160 -v

    the result was:

    [INF] Using IP 10.10.10.160 for enumeration
    [INF] Starting scan on host 10.10.10.160 (10.10.10.160)
    [WRN] Could not start scan on host 10.10.10.160 (10.10.10.160): mismatched hardware address sizes
    

    then program just exits.

    bug 
    opened by galimba 8
  • [Bug] With or without the -exclude-cdn flag, Naabu will create the runner and make GET requests

    [Bug] With or without the -exclude-cdn flag, Naabu will create the runner and make GET requests

    Describe the bug I would like a port scanner to be a port scanner only. Currently Naabu is making GET requests which from time to time fail because either the DNS lookup had an I/O time out or the page was acting weird. Docs say that the CDN check is optional but I bet there is a mistake somewhere because with or without the flag, it creates a runner which means it sends requests to cloudflare, ipinfo and other sites.

    Status: Completed Type: Bug 
    opened by 003random 8
  • Wildcard ports handling

    Wildcard ports handling

    Problem:-

    • Port responds with "Open" status for any port you request.

    Possible solution:-

    • Detect hosts with wildcard ports and eliminate them from the scan.

    It's an issue for the discussion, more things need to be explored to understand this issue better.

    Type: Discussion 
    opened by ehsandeep 8
  • Not scanning hosts when running as sudo on OSX Catalina

    Not scanning hosts when running as sudo on OSX Catalina

    Describe the bug Naabu not scanning ports when running as sudo in OSX Catalina 10.15.7. It just finds the fastest host, and then exits. Running without sudo finds open ports.

    To Reproduce

    $ naabu -host hackerone.com
    
                      __
      ___  ___  ___ _/ /  __ __
     / _ \/ _ \/ _ \/ _ \/ // /
    /_//_/\_,_/\_,_/_.__/\_,_/ v2.0.2
    
    		projectdiscovery.io
    
    [WRN] Use with caution. You are responsible for your actions
    [WRN] Developers assume no liability and are not responsible for any misuse or damage.
    [INF] Running CONNECT scan with non root privileges
    [INF] Found 4 ports on host hackerone.com (104.16.99.52)
    hackerone.com:443
    hackerone.com:8080
    hackerone.com:8443
    hackerone.com:80
    
    $ sudo naabu -host hackerone.com
    
                      __
      ___  ___  ___ _/ /  __ __
     / _ \/ _ \/ _ \/ _ \/ // /
    /_//_/\_,_/\_,_/_.__/\_,_/ v2.0.2
    
    		projectdiscovery.io
    
    [WRN] Use with caution. You are responsible for your actions
    [WRN] Developers assume no liability and are not responsible for any misuse or damage.
    [INF] Running TCP/ICMP/SYN scan with root privileges
    [INF] Fastest host found for target: 104.16.100.52 (12.659678ms)
    
    $
    
    Status: Completed Status: Review Needed 
    opened by dan-lind 7
  • Naabu is not able to scan in vm

    Naabu is not able to scan in vm

    I am using Kali latest version , when scanned hackerone with naabu it showed host seems down and when scanned with nmap it's worked fine , I know in past there was same issue as I saw in closed issues, but it doesn't seems to be fixed.

    question 
    opened by KathanP19 7
  • On extracting from binary it shows nuclei not naabu

    On extracting from binary it shows nuclei not naabu

    When I extract from naabu binary the contents extracted are : tar -xzvf naabu_1.1.2_linux_amd64.tar.gz LICENSE README.md nuclei I thought maybe thats a typo error. And so I did :
    sudo mv nuclei /usr/bin/naabu It was successfully done but when I called it with: $naabu It shows: bash: /usr/bin/naabu: No such file or directory Please help me fix it!

    opened by arpeetrathi 6
  • [Feature Request] Reducing false negative through ICMP Echo Request

    [Feature Request] Reducing false negative through ICMP Echo Request

    A lot of boxes will not respond to a SYN scan. Including an ICMP echo request along with the port sweep would significantly reduce the amount of targets classified to be offline.

    enhancement 
    opened by galimba 5
  • Naabu v2 preparation

    Naabu v2 preparation

    Status: Completed 
    opened by Mzack9999 5
  • [feature as a lib] easy fetch scan results

    [feature as a lib] easy fetch scan results

    Is your feature request related to a problem? Please describe. I'm trying to use naabu as a lib on my own code and I don't see (i might be wrong, ofc) an easy way to retrieve the naabu scan results (ip:openports)

    Describe the solution you'd like some sort of method

    naabuRunner, err := runner.NewRunner(&options) out := naabuRunner.getResults()

    possible?

    opened by dogasantos 1
  • [Bug] runner doesn't have any output

    [Bug] runner doesn't have any output

    Hi, I'd like to embed naabu into my toy tool, not sure if I did it incorrectly but I can't get output of the runner results

    import (
        "log"
        "github.com/projectdiscovery/naabu/v2/pkg/runner"
    )
    
    func main() {
        options := runner.Options{
          JSON: true,
          Verbose: true,
          Debug: true,
          Threads: 25,
          Retries: 1,
          Rate: 2000,
          Ping: true,
          ExcludeCDN: true,
          EnableProgressBar: true,
          ScanType: "s",
          Host: "scanme.nmap.org",
          Output: "/tmp/naabu_output.txt",
        }
    
        r, err := runner.NewRunner(&options)
        if err != nil {
          log.Println(err)
        }
        err = r.RunEnumeration()
        if err != nil {
          log.Println(err)
        }
    }
    

    go run main.go shows scanning progress, but there's no results afterwards.

    I intent to capture the results and throw it around, how can I achieve it? Thanksk.

    Status: Review Needed 
    opened by namm2 2
  • [Bug]  panic: runtime error: invalid memory address or nil pointer dereference

    [Bug] panic: runtime error: invalid memory address or nil pointer dereference

    Describe the bug can not scan CIDR

    [email protected]:~# git clone https://github.com/projectdiscovery/naabu.git
    Cloning into 'naabu'...
    remote: Enumerating objects: 1942, done.
    remote: Counting objects: 100% (318/318), done.
    remote: Compressing objects: 100% (175/175), done.
    remote: Total 1942 (delta 163), reused 266 (delta 140), pack-reused 1624
    Receiving objects: 100% (1942/1942), 794.26 KiB | 1.08 MiB/s, done.
    Resolving deltas: 100% (1120/1120), done.
    [email protected]:~# cd naabu/v2/cmd/naabu/
    [email protected]:~/naabu/v2/cmd/naabu# go build
    [email protected]:~/naabu/v2/cmd/naabu# ./naabu  -host 101.xxx.xxx.97/24 -top-ports top-100
    
                      __
      ___  ___  ___ _/ /  __ __
     / _ \/ _ \/ _ \/ _ \/ // /
    /_//_/\_,_/\_,_/_.__/\_,_/ v2.0.4
    
                    projectdiscovery.io
    
    Use with caution. You are responsible for your actions
    Developers assume no liability and are not responsible for any misuse or damage.
    [INF] Running SYN scan with root privileges
    panic: runtime error: invalid memory address or nil pointer dereference
    [signal SIGSEGV: segmentation violation code=0x1 addr=0x20 pc=0x79d3c2]
    
    goroutine 1 [running]:
    github.com/projectdiscovery/mapcidr.AddressCountIpnet(0x0, 0x11)
            /root/go/pkg/mod/github.com/projectdiscovery/[email protected]/cidr.go:47 +0x22
    github.com/projectdiscovery/ipranger.(*IPRanger).add(0xc0001120a0, 0xc00071c000, 0x11, 0x10, 0x10)
            /root/go/pkg/mod/github.com/projectdiscovery/[email protected]/ipranger.go:77 +0x5a
    github.com/projectdiscovery/ipranger.(*IPRanger).Add(0xc0001120a0, 0xc00071c000, 0x11, 0x0, 0x0)
            /root/go/pkg/mod/github.com/projectdiscovery/[email protected]/ipranger.go:65 +0x125
    github.com/projectdiscovery/ipranger.(*IPRanger).AddHostWithMetadata(0xc0001120a0, 0xc00071c000, 0x11, 0x9cae31, 0x4, 0xc0000f85a0, 0x0)
            /root/go/pkg/mod/github.com/projectdiscovery/[email protected]/ipranger.go:122 +0xd1
    github.com/projectdiscovery/naabu/v2/pkg/runner.(*Runner).AddTarget(0xc0000446c0, 0xc00071c000, 0x11, 0x1, 0x101000000000001)
            /root/naabu/v2/pkg/runner/targets.go:113 +0x59a
    github.com/projectdiscovery/naabu/v2/pkg/runner.(*Runner).PreProcessTargets.func1(0xc000716000, 0xc0000446c0, 0xc00071c000, 0x11)
            /root/naabu/v2/pkg/runner/targets.go:97 +0x8e
    github.com/projectdiscovery/naabu/v2/pkg/runner.(*Runner).PreProcessTargets(0xc0000446c0, 0x0, 0x0)
            /root/naabu/v2/pkg/runner/targets.go:100 +0x205
    github.com/projectdiscovery/naabu/v2/pkg/runner.(*Runner).Load(0xc0000446c0, 0x0, 0x0)
            /root/naabu/v2/pkg/runner/targets.go:29 +0x95
    github.com/projectdiscovery/naabu/v2/pkg/runner.(*Runner).RunEnumeration(0xc0000446c0, 0x0, 0x0)
            /root/naabu/v2/pkg/runner/runner.go:114 +0xb4
    main.main()
            /root/naabu/v2/cmd/naabu/main.go:18 +0x5d
    [email protected]:~/naabu/v2/cmd/naabu# 
    
    Type: Bug 
    opened by veo 1
  • [feature] Add support for CIDR in file

    [feature] Add support for CIDR in file

    If a file has CIDR ,naabu will only output skipping.

    Type: Question 
    opened by the-fog 2
  • [Feature] Enhancement for Raw packet mode

    [Feature] Enhancement for Raw packet mode

    • PCAP
    • XDP (not a good fit for RX multiqueue NICs as only one queue is currently supported)
    Type: Enhancement 
    opened by Mzack9999 0
  • [Bug] Improve Regression Tests Coverage

    [Bug] Improve Regression Tests Coverage

    Type: Enhancement 
    opened by Mzack9999 0
  • [Feature] Add internal scripting engine

    [Feature] Add internal scripting engine

    Type: Enhancement 
    opened by Mzack9999 0
  • support wsl [feature]

    support wsl [feature]

    i hope naabu support wsl as soon as possible thanks

    Type: Discussion 
    opened by dody2004 2
  • [Bug] -nmap-cli fails when used combined with custom ports

    [Bug] -nmap-cli fails when used combined with custom ports

    Describe the bug When using -nmap-cli option, the -p switch only works for full tcp "-p -". If you specify any port, it will fail.

    naabu will throw an error related with interface:

    [ERR] Could not get network interfaces: exit status 1 However, provide the interface via -interface has no effect. Also, using -p through the nmap-cli won't work.

    Using strace, we can see that naabu tries to execute nmap with a blank -p parameter:

    [pid 187478] execve("/usr/bin/nmap", ["nmap", "-sV", "-p", "443", "-oX", "naabu-output.xml", "-p", ""], 0xc0007a4000 /* 33 vars */ <unfinished ...>

    To Reproduce naabu -iL ips.txt -nmap -p 80 -scan-all-ips -stats -nmap-cli 'nmap -sV -oX naabu-output.xml'

    Screenshots naabu-working

    naabu-not-working-1

    naabu-not-working-2

    Status: Review Needed 
    opened by dogasantos 4
  • [feature] Allow custom resolver list support  for host resolutions with r flag

    [feature] Allow custom resolver list support for host resolutions with r flag

    Please add -r/-rL like dnsx to allow a user to specify a list of resolvers to use during the DNS lookup of parsed domains, this can allow for the scanner to scale without the issue of being blocked by a DNS server.

    Priority: Low Type: Enhancement 
    opened by PR3R00T 6
Releases(v2.0.4)
Owner
ProjectDiscovery
Security Through Intelligent Automation
ProjectDiscovery
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

Naabu is a port scanning tool written in Go that allows you to enumerate valid ports for hosts in a fast and reliable manner. It is a really simple to

ProjectDiscovery 1.4k Jul 25, 2021
DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

Minify and Secure Docker containers (free and open source!) Don't change anything in your Docker container image and minify it by up to 30x making it

docker-slim 10.3k Jul 24, 2021
Cameradar hacks its way into RTSP videosurveillance cameras

Cameradar An RTSP stream access tool that comes with its library Cameradar allows you to Detect open RTSP hosts on any accessible target host Detect w

Brendan Le Glaunec 2.6k Jul 23, 2021
Cossack Labs 771 Jul 16, 2021
A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.

Dent More Information If you want to learn more about the techniques utlized in this framework please take a look at this article. Description This fr

Optiv Security 220 Jul 15, 2021
Fast web fuzzer written in Go

/'___\ /'___\ /'___\ /\ \__/ /\ \__/ __ __ /\ \__/ \ \ ,__\\ \ ,__\/\ \/\ \ \ \ ,__\ \ \ \_/ \ \ \_/\ \ \_\ \ \ \

null 4.9k Jul 25, 2021
Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.

Fast and customisable vulnerability scanner based on simple YAML based DSL. How • Install • For Security Engineers • For Developers • Documentation •

ProjectDiscovery 4.7k Jul 23, 2021
🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

Finder Of XSS, and Dal(달) is the Korean pronunciation of moon. What is DalFox ?? ?? DalFox is a fast, powerful parameter analysis and XSS scanner, bas

HAHWUL 1.1k Jul 23, 2021
Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal

Easy and Powerful TLS Automation The same library used by the Caddy Web Server Caddy's automagic TLS features—now for your own Go programs—in one powe

Caddy 3.7k Jul 24, 2021
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Vuls: VULnerability Scanner Vulnerability scanner for Linux/FreeBSD, agent-less, written in Go. We have a slack team. Join slack team Twitter: @vuls_e

Future Corp 8.6k Jul 25, 2021
A scalable overlay networking tool with a focus on performance, simplicity and security

What is Nebula? Nebula is a scalable overlay networking tool with a focus on performance, simplicity and security. It lets you seamlessly connect comp

Slack 7.5k Jul 24, 2021
A tool to check for vulnerabilities in your Golang dependencies, powered by Sonatype OSS Index

Nancy nancy is a tool to check for vulnerabilities in your Golang dependencies, powered by Sonatype OSS Index, and as well, works with Nexus IQ Server

Sonatype Community 304 Jul 22, 2021
Idiomatic nmap library for go developers

nmap This library aims at providing idiomatic nmap bindings for go developers, in order to make it easier to write security audit tools using golang.

Brendan Le Glaunec 459 Jul 19, 2021
null 526 Jul 22, 2021