scanning

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

osint scanner hacking penetration-testing bug-bounty infosec pentesting recon bugbounty scanning information-gathering rengine security-tools reconnaissance scanner-web recon-engine

UpdatedNov 16, 2025
HTML

j3ssie /osmedeus

Sponsor

Star6k

A Workflow Engine for Offensive Security

go golang security osint hacking penetration-testing bug-bounty pentesting bugbounty scanning hacking-tool information-gathering security-tools reconnaissance pentest-tool attack-surface attack-surface-management

UpdatedAug 8, 2025
Go

mebjas /html5-qrcode

Sponsor

Star5.9k

A cross platform HTML5 QR code reader. See end to end implementation at:https://scanapp.org

javascript html5 camera qrcode barcode scanning

UpdatedDec 1, 2025
TypeScript

khellang /Scrutor

Sponsor

Star4.2k

Assembly scanning and decoration extensions for Microsoft.Extensions.DependencyInjection

dependency-injection decoration conventions asp-net-core scanning hacktoberfest convention-registration assembly-scanning decoration-extensions scrutor

UpdatedNov 24, 2025
C#

leebaird /discover

Star3.8k

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

bash osint enumeration nmap pentesting recon scanning kali-linux red-team information-gathering metasploit payload-generator reconnaissance

UpdatedDec 11, 2025
Shell

introlab /rtabmap

Star3.5k

RTAB-Map library and standalone application

android ios localization robotics mapping ros slam scanning project-tango ros2

UpdatedDec 15, 2025
C++

s0md3v /Smap

Sponsor

Star3.1k

a drop-in replacement for Nmap powered by shodan.io

scanner nmap port-scanner scanning network-scanner network-security port-scanning nmap-alternative

UpdatedMay 1, 2025
Go

activecm /rita-legacy

Star2.5k

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

dns security analytics analysis logs threat beacon scanning beacon-sniffer network-traffic bro-ids dga blueteam dns-tunneling rita offensive-countermeasures bhis

UpdatedJul 10, 2024
Go

archerysec /archerysec

Star2.4k

ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

devops opensource pentesting vulnerabilities devops-tools scanning vulnerability-management vulnerability-assessment secdevops pentesters devsecops asoc aspm

UpdatedJun 11, 2025
JavaScript

codingo /Reconnoitre

Star2.2k

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

security security-audit scanner snmp hacking range enumeration nmap penetration-testing scanning kali-linux offensive-security virtual-hosts hacking-tool security-scanner security-tools oscp service-enumeration services-discovered discover-services

UpdatedDec 11, 2022
Python

GitGuardian /ggshield

Star1.9k

Detect and validate 500+ types of hardcoded secrets with advanced checks. Use it as a pre-commit hook, GitHub Action, or CLI for proactive secret detection and security.

security credentials code key scanning leak apikey precommit devsecops secrets-management secrets-detection

UpdatedDec 15, 2025
Python

OpenSCAP /openscap

Star1.6k

NIST Certified SCAP 1.2 toolkit

data-stream compliance scap xccdf oval cpe scanning openscap

UpdatedDec 5, 2025
XSLT

Chleba /netscanner

Sponsor

Star1.5k

Terminal Network scanner & diagnostic tool with modern TUI

packets ping packet-analyser wifi arp rust-lang networks wifi-network network-analysis scanning ouilookup

UpdatedApr 28, 2025
Rust

lunasec-io /lunasec

Sponsor

Star1.5k

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App:https://github.com/marketplace/lunatrace-by-lunasec/

security continuous-delivery dependency-analysis cybersecurity pci-dss web-security compliance scanning cve-scanning tokenization gdpr security-tools devsecops software-composition-analysis zero-trust soc2 sbom scanning-tool sbom-generator log4shell

UpdatedMay 2, 2024
TypeScript

tillson /git-hound

Sponsor

Star1.4k

Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.

security osint credentials secret secret-management secrets recon bugbounty scanning leaks security-tools devsecops

UpdatedNov 20, 2025
Go

screetsec /Dracnmap

Star1.2k

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform va…

linux tool hacking nmap scanning parrot hacker information-gathering kalilinux nmap-command backbox toolshacking