#Scanning

Showing 60 of 69 repositories tagged #scanning, ranked by stars

trufflesecurity
trufflesecurity
trufflehog

Find, verify, and analyze leaked credentials

Score
100
โ˜… 27.0k โ‘‚ 2.5k +5/day
Go
bee-san
bee-san
RustScan

๐Ÿค– The Modern Port Scanner ๐Ÿค–

Score
100
โ˜… 20.1k โ‘‚ 1.3k +18/day
Rust
shadow1ng
shadow1ng
fscan

ไธ€ๆฌพๅ†…็ฝ‘็ปผๅˆๆ‰ซๆๅทฅๅ…ท๏ผŒๆ–นไพฟไธ€้”ฎ่‡ชๅŠจๅŒ–ใ€ๅ…จๆ–นไฝๆผๆ‰ซๆ‰ซๆใ€‚(An intranet comprehensive scanning tool, enabling one-click automated, all-round vulnerability scanning)

Score
67
โ˜… 14.1k โ‘‚ 1.9k +32/day
Go
yogeshojha
yogeshojha
rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Score
100
โ˜… 8.7k โ‘‚ 1.3k +11/day
HTML
introlab
introlab
rtabmap

RTAB-Map library and standalone application

Score
100
โ˜… 3.9k โ‘‚ 936 +11/day
C++
activecm
activecm
rita-legacy

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Score
93
โ˜… 2.5k โ‘‚ 353 โ€”
Go
archerysec
archerysec
archerysec

ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

Score
67
โ˜… 2.5k โ‘‚ 523 +3/day
JavaScript
codingo
codingo
Reconnoitre

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Score
83
โ˜… 2.2k โ‘‚ 454 +2/day
Python
GitGuardian
GitGuardian
ggshield

Detect and validate 500+ types of hardcoded secrets with advanced checks. Use it as a pre-commit hook, GitHub Action, or CLI for proactive secret detection and security.

Score
98
โ˜… 2.0k โ‘‚ 208 +1/day
Python
Chleba
Chleba
netscanner

Terminal Network scanner & diagnostic tool with modern TUI

Score
50
โ˜… 1.8k โ‘‚ 55 +2/day
Rust
lunasec-io
lunasec-io
lunasec

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Score
74
โ˜… 1.5k โ‘‚ 167 โ€”
TypeScript
tillson
tillson
git-hound

Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.

Score
88
โ˜… 1.4k โ‘‚ 204 +1/day
Go
aquasecurity
aquasecurity
trivy-action

Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities

Score
95
โ˜… 1.4k โ‘‚ 354 +5/day
Shell
screetsec
screetsec
Dracnmap

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

Score
76
โ˜… 1.3k โ‘‚ 285 โ€”
Shell
mongodb
mongodb
kingfisher

Detect leaked secrets + live validation. Map blast radius across your stack. Revoke fast. 950+ rules.

Score
90
โ˜… 1.2k โ‘‚ 108 +1/day
Rust
GamehunterKaan
GamehunterKaan
AutoPWN-Suite

AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.

Score
100
โ˜… 1.1k โ‘‚ 137 โ€”
Python
nordicsemi
nordicsemi
Android-Scanner-Compat-Library

A compat library for Bluetooth Low Energy scanning on Android.

Score
86
โ˜… 794 โ‘‚ 162 โ€”
Java
rackerlabs
rackerlabs
scantron

A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows.

Score
50
โ˜… 756 โ‘‚ 149 โ€”
Python
michelin
michelin
ChopChop

ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.

Score
67
โ˜… 711 โ‘‚ 77 โ€”
Go
mitre
mitre
multiscanner

Modular file scanning/analysis framework

Score
69
โ˜… 619 โ‘‚ 126 โ€”
Python
blockloop
blockloop
scan

Tiny lib to scan SQL rows directly to structs, slices, and primitive types

Score
33
โ˜… 614 โ‘‚ 33 +2/day
Go
JohnSundell
JohnSundell
Sweep

Fast and powerful Swift string scanning made simple

Score
29
โ˜… 528 โ‘‚ 18 โ€”
Swift
WatchDogSecurity
WatchDogSecurity
porch-pirate

Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collections, requests, users and teams. Porch Pirate can be used as a client or be incorporated into your own applications.

Score
62
โ˜… 464 โ‘‚ 57 +1/day
Python
cisagov
cisagov
crossfeed

External monitoring for organization assets

Score
64
โ˜… 427 โ‘‚ 64 +1/day
TypeScript
bridgecrewio
bridgecrewio
checkov-action

This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.

Score
100
โ˜… 311 โ‘‚ 115 +2/day
HCL
pycroscopy
pycroscopy
pycroscopy

Scientific analysis of nanoscale materials imaging data

Score
0
โ˜… 279 โ‘‚ 75 โ€”
Jupyter Notebook
brakmic
brakmic
OpenCV

:camera: Computer-Vision Demos

Score
0
โ˜… 272 โ‘‚ 53 โ€”
C#
AnLoMinus
AnLoMinus
Diablo

Diablo ~ Hacking / Pentesting & Reporting

Score
79
โ˜… 258 โ‘‚ 40 โ€”
HTML
Secure-Compliance-Solutions-LLC
Secure-Compliance-Solutions-LLC
GVM-Docker

Greenbone Vulnerability Management Docker Image with OpenVAS

Score
55
โ˜… 246 โ‘‚ 88 โ€”
XSLT
h0tak88r
h0tak88r
AutoAR

AutoAR is an automated security reconnaissance tool, ASM and Discord bot for bug bounty hunters and penetration testers. It automates gathering subdomains, scanning ports, detecting technologies, mapping GitHub repositories, fuzzing, testing vulnerabilities, and AI analysis.

Score
86
โ˜… 225 โ‘‚ 51 โ€”
Go
alcideio
alcideio
skan

Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.

Score
33
โ˜… 204 โ‘‚ 7 โ€”
JavaScript
twilio-labs
twilio-labs
deadshot

Deadshot is a Github pull request scanner to identify sensitive data being committed to a repository

Score
0
โ˜… 192 โ‘‚ 13 โ€”
Python
rxerium
rxerium
rxerium-templates

Nuclei scripts created by @rxerium for zero days / actively exploited vulnerabilities.

Score
81
โ˜… 190 โ‘‚ 33 โ€”
Python
anteater
anteater
anteater

Anteater - CI/CD Gate Check Framework

Score
0
โ˜… 175 โ‘‚ 5 โ€”
Python
01rabbit
01rabbit
PAKURI

PAKURI has been merged with Python and launched as a new project, PAKURI-THON.

Score
48
โ˜… 142 โ‘‚ 28 โ€”
Shell
aniket2912
aniket2912
All-CEHv13-Module-wise-PDF-Reports

Practical labs, notes, and reports for CEH v13 modules โ€” covering web hacking, network pentesting, malware analysis, social engineering, and security tool usage.

Score
71
โ˜… 124 โ‘‚ 27 +3/day
fierceoj
fierceoj
ShonyDanza

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Score
43
โ˜… 120 โ‘‚ 25 โ€”
Python
doo
doo
scanbot-sdk-example-flutter

Easy-to-use Flutter document scanner and data extraction plugin

Score
71
โ˜… 106 โ‘‚ 30 โ€”
Dart
JustinTimperio
JustinTimperio
gomap

A fully self-contained Nmap like parallel port scanning module in pure Golang that supports SYN-ACK (Silent Scans)

Score
0
โ˜… 95 โ‘‚ 19 โ€”
Go
0xor0ne
0xor0ne
qscan

Quick network scanner library. https://crates.io/crates/qscan

Score
0
โ˜… 93 โ‘‚ 9 โ€”
Rust
jordanpotti
jordanpotti
OffensiveCloudDistribution

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

Score
31
โ˜… 92 โ‘‚ 12 โ€”
HCL
AnLoMinus
AnLoMinus
ScanPro

ScanPro - NMap Scanning Scripts ~ Network Mapper

Score
60
โ˜… 91 โ‘‚ 11 โ€”
Shell
williamtran29
williamtran29
react-native-fingerprint-identify

Awesome Fingerprint Identify for react-native (android only)

Score
14
โ˜… 88 โ‘‚ 13 โ€”
Java
doo
doo
scanbot-sdk-example-react-native

Easy-to-use React Native document scanner and data extraction library

Score
57
โ˜… 87 โ‘‚ 16 โ€”
TypeScript
safebuffer
safebuffer
metateta

Metateta Automated Tool For Scanning And Exploiting Network Protocols Using Metasploit

Score
38
โ˜… 84 โ‘‚ 29 โ€”
Python
hoangminh5210119
hoangminh5210119
deauther

esp8266 deauther with captive portal and update GUI

Score
33
โ˜… 81 โ‘‚ 26 โ€”
C
doo
doo
scanbot-barcode-scanner-sdk-example-flutter

Fast and reliable Flutter barcode scanner plugin

Score
43
โ˜… 79 โ‘‚ 15 โ€”
Dart
Malam-X
Malam-X
DragonMS

DragonMS is Tools for ddos, scanner, tracker, payload generator msfvenom and scraping

Score
0
โ˜… 79 โ‘‚ 26 โ€”
Python
stanford-esrg
stanford-esrg
gps

GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.

Score
26
โ˜… 76 โ‘‚ 11 โ€”
Python
bridgecrewio
bridgecrewio
bridgecrew-action

This GitHub Action runs Bridgecrew against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.

Score
36
โ˜… 73 โ‘‚ 31 โ€”
augustd
augustd
burp-suite-error-message-checks

Burp Suite extension to passively scan for applications revealing server error messages

Score
29
โ˜… 66 โ‘‚ 24 โ€”
Java
ammario
ammario
ipisp

Query IP address network information in Go

Score
21
โ˜… 64 โ‘‚ 14 โ€”
Go
elfalehed
elfalehed
hack4squad

:skull: A versatile hacking framework that consolidates tools for OSINT, penetration testing, networking, auditing, and more, providing a comprehensive suite for cybersecurity professionals. Designed for flexibility and ease of use, it streamlines security assessments and vulnerability analysis.

Score
24
โ˜… 60 โ‘‚ 17 โ€”
Shell
soynx
soynx
Hacking-PenTesting-Utils

A collection of scripts, documentation and HTML-Sites that can be used for penetration-testing

Score
57
โ˜… 42 โ‘‚ 3 โ€”
HTML
whxitte
whxitte
gixposed

Gixposed is a powerful command-line tool designed to search the commit history of Git repositories for sensitive information, such as API keys and access tokens. Its purpose is to help developers and security professionals quickly identify and remediate exposed sensitive informations in their codebases.

Score
14
โ˜… 39 โ‘‚ 0 โ€”
Shell
GitGuardian
GitGuardian
gitguardian-vscode

Stop leaks. Safeguard your secrets with GitGuardian. GitGuardian actively prevents accidental exposure of sensitive information in your code, allowing you to code confidently and maintain the integrity of your data.

Score
100
โ˜… 38 โ‘‚ 4 โ€”
TypeScript
augustd
augustd
burp-suite-software-version-checks

Burp extension to passively scan for applications revealing software version numbers

Score
19
โ˜… 33 โ‘‚ 17 โ€”
Java
aalex954
aalex954
MSFT-IP-Tracker

Tracks a range of Microsoft owned ASNs and publishes a daily release containing a list of IPv4 and IPv6 address in CIDR notation.

Score
52
โ˜… 32 โ‘‚ 1 โ€”
PowerShell
electro0nes
electro0nes
x9

X9 a tool to create URLs with many parameter

Score
50
โ˜… 30 โ‘‚ 6 โ€”
Python
joeyagreco
joeyagreco
ranger-reloaded

Ranger Reloaded is a Python script that can be used to scan alive hosts on your network and check for vulnerable open ports.

Score
12
โ˜… 29 โ‘‚ 2 โ€”
Python
Related Topics
#security#devsecops#penetration-testing#hacking#pentesting#security-tools#scanner#credentials#secrets#nmap#cybersecurity#recon

ยฉ 2026 GitRepoTrend ยท GitHub repositories by topic ยท Updated weekly