ENNAENNA
🕸

Web Scanning

41 tools indexed

Web application scanning tools for directory brute-forcing, technology fingerprinting, vulnerability detection, and crawling. These scanners probe web applications for common misconfigurations, exposed files, known CVEs, and injection points that could lead to compromise.

httpx

Go

Fast multi-purpose HTTP toolkit. Probes for running HTTP servers with retries and fallbacks.

http-probetech-detectionprojectdiscovery
9.9k1.1k23d ago

Nikto

Perl

Classic web server scanner. Tests for dangerous files, outdated server software, and version-specific problems.

web-serverclassiccgi-scan
10.3k1.4k25d ago

Gobuster

Go

Directory/file, DNS, and vhost busting tool. Brute-forces URIs, DNS subdomains, virtual host names, and S3 buckets.

directory-brutedns-brutevhosts3
13.6k1.6k24d ago

Feroxbuster

Rust
Featured

Fast, recursive content discovery tool written in Rust. Like gobuster on steroids with auto-recursion.

directory-bruterecursiverustfast
7.7k6111mo ago

Burp Suite Community

Java
Featured

Web vulnerability scanner and proxy. Intercept, modify, and replay HTTP/S traffic for web app testing.

proxyweb-appinterceptorscanner
201121mo ago

ffuf

Go
Featured

Fast web fuzzer written in Go. Fuzz anything - URLs, headers, POST data - with blazing speed.

fuzzingdirectory-brutefastflexible
16.0k1.6k25d ago

Katana

Go

Next-gen crawling and spidering framework. Headless browser and standard mode with automatic form fill.

crawlerspiderheadlessprojectdiscovery
16.6k1.1k23d ago

waybackurls

Go

Fetch all URLs that the Wayback Machine knows about for a domain. Gold mine for hidden endpoints.

wayback-machineurl-discoveryarchivetomnomnom
4.4k5432y ago

gau

Go

Get All URLs. Fetches known URLs from AlienVault OTX, Wayback Machine, Common Crawl, and URLScan.

url-discoverypassivemulti-source
4.9k5102mo ago

Arjun

Python

HTTP parameter discovery suite. Finds hidden query parameters in web applications using smart heuristics.

parameter-discoveryhidden-paramsfuzzing
6.2k8541y ago

Wfuzz

Python

Web application fuzzer. Brute force parameters, directories, headers, and authentication credentials.

fuzzingbrute-forceweb-appflexible
6.5k1.4k3mo ago

WhatWeb

Ruby

Web technology fingerprinter. Identifies CMS, frameworks, JS libraries, servers, and analytics from HTTP responses.

fingerprinttech-detectioncmsframework
6.5k9811mo ago

ParamSpider

Python

Mine parameters from web archives for any domain to find hidden attack surfaces.

parametersweb-archiveattack-surfacerecon
3.1k4732mo ago

GoSpider

Go

Fast web spider written in Go for crawling and collecting URLs, subdomains, and endpoints.

crawlerspiderurl-collectionendpoints
2.9k3352y ago

Hakrawler

Go

Simple Go web crawler for quick discovery of endpoints and assets within a web application.

crawlerendpointsdiscoveryweb-app
5.0k5391y ago

LinkFinder

Python

Python script to discover endpoints and their parameters in JavaScript files.

javascriptendpointsparametersapi-discovery
4.3k6542y ago

SecretFinder

Python

Discover sensitive data like API keys, tokens, and credentials in JavaScript files.

secretsapi-keysjavascriptcredentials
2.4k4301y ago

JSFScan

Shell

Automation framework combining multiple JS analysis tools for comprehensive JavaScript recon.

javascriptautomationreconendpoints
1.1k1862y ago

dirsearch

Python

Mature web path discovery tool with recursive scanning, wordlist-based bruteforcing, and extensive extension support.

directory-bruteforcepath-discoveryweb-scannerenumeration
14.2k2.4k2mo ago

meg

Go

Fetch many paths for many hosts concurrently without overloading servers - ideal for large-scale recon on bug bounties.

mass-fetchbug-bountyconcurrentpath-probing
1.7k2672y ago

Caido

Rust

Lightweight and modern web security testing toolkit built in Rust, designed as a fast alternative to Burp Suite.

web-proxyinterceptorsecurity-testingburp-alternative
2.3k1221mo ago

SilverBullet

C#

Multi-purpose automation suite for web testing with configurable request sequences, scraping, and credential testing.

automationcredential-testingweb-testingconfig-based
2.3k58423d ago

Interactsh

Go

Out-of-band interaction server. Detect blind vulnerabilities with DNS, HTTP, SMTP, and LDAP callback listeners.

oobblind-vulncallbackssrf
4.3k45724d ago

Aquatone

Go

Visual web discovery tool. Takes screenshots of web pages across large target lists and generates browsable HTML reports.

screenshotsvisual-reconweb-discoverytriage
5.9k9083y ago

EyeWitness

Python

Web screenshot and categorization tool. Captures screenshots of web pages, RDP, and VNC services with auto-categorization.

screenshotscategorizationrdpvnc
5.7k8964mo ago

CRLFuzz

Go

CRLF injection scanner. Fast detection of HTTP response splitting vulnerabilities across multiple URLs.

crlf-injectionresponse-splittingheader-injectionscanner
1.5k1441mo ago

Smuggler

Python

HTTP request smuggling tester. Detects CL.TE, TE.CL, and TE.TE desync vulnerabilities in web servers and proxies.

request-smugglingdesynchttpproxy
2.1k3272y ago

reNgine

Python

Automated reconnaissance framework with correlated scan engines, continuous monitoring, and vulnerability reporting.

reconautomationcontinuous-monitoringbug-bounty
8.6k1.3k2mo ago

reconftw

Shell

Automated recon pipeline orchestrating subdomain enum, vulnerability scanning, and OSINT via best-of-breed tools.

reconautomationpipelinebug-bounty
7.5k1.2k28d ago

wafw00f

Python

Identify and fingerprint Web Application Firewall products protecting a site.

waffingerprintwebdetection
6.3k1.0k1mo ago

SSLyze

Python

Fast TLS/SSL configuration analyzer for identifying misconfigurations.

tlssslscannerconfiguration
3.8k4921mo ago

Wapiti

Python

Black-box web application vulnerability scanner with built-in fuzzer modules.

webvulnerabilityscannerblackbox
1.8k2583mo ago

Bearer

Go

SAST tool scanning code for security risks, sensitive data flows, and vulnerabilities.

sastcode-securityscanner
2.6k14224d ago

Bandit

Python

Python static analysis security linter to find common code vulnerabilities.

sastpythonsecuritylinting
8.0k7541mo ago

OWASP ZAP

Java

Full-featured intercepting proxy for web application security testing. Automated scanners, fuzzing, scripting, and API testing built in.

proxydastweb-securityintercepting-proxy
15.1k2.5k23d ago

Kiterunner

Go

API-aware content discovery tool that brute-forces routes using contextual wordlists derived from real API schemas.

api-discoverycontent-discoverybrute-forceapi-security
3.2k3332y ago

Tplmap

Python

Automated server-side template injection detection and exploitation tool supporting 15+ template engines.

sstitemplate-injectionexploitationweb-security
4.2k6852y ago

Brakeman

Ruby

Static analysis security scanner for Ruby on Rails applications. Finds SQL injection, XSS, and dozens of Rails-specific vulnerabilities.

sastruby-on-railsstatic-analysiscode-scanning
7.2k76626d ago

BunkerWeb

Python

Open-source Web Application Firewall with built-in security hardening, bot detection, and DDoS protection.

wafweb-securitynginxreverse-proxy
10.4k58624d ago

Shannon

TypeScript
Featured

Autonomous AI pentester for web apps and APIs. Analyzes source code, identifies attack vectors, and executes real exploits to prove vulnerabilities.

ai-pentestingautonomouswhite-boxexploit-proof
41.4k2.1k14d ago

Lonkero

Rust

Professional web app scanner with 126+ checks, ML-powered false positive reduction, proof-based XSS detection, and blind SQLi engine.

web-scannerml-poweredlow-false-positivexss
7908517d ago

Related Categories

🌐

Network Recon

40 tools

🔍

Subdomain Enumeration

14 tools

Vulnerability Scanning

22 tools

💥

Exploitation

22 tools