Scanning & Enumeration

Classic web content scanner using wordlists to discover hidden directories and files.

Modern SMB/LDAP/RPC enumerator for Windows and Samba hosts—users, groups, shares, and policies.

Recursive content discovery tool with smart filtering, backups, and automatic extraction of new URLs.

Fast web fuzzer for directories, parameters, vhosts, and header injection with flexible matchers.

Fast directory, DNS, vhost, and S3 bucket brute-forcer written in Go.

Fast HTTP probe for live URLs, status codes, titles, and tech fingerprinting from host lists.

High-speed Internet-scale port scanner for rapid discovery before deeper nmap enumeration.

Web server scanner for dangerous files, misconfigurations, and outdated software indicators.

Network mapper for host discovery, port scanning, service/version detection, and NSE scripting.

Template-based fast scanner for CVEs, misconfigs, and exposures across HTTP, DNS, and more.

Fast port scanner that pipes discovered ports directly into Nmap for scripting and version detection.

Command-line search of Exploit-DB for public exploits, shellcode, and papers by keyword or CVE.

Identifies Web Application Firewalls in front of targets to tune bypass and testing strategy.

Python web fuzzer for brute-forcing parameters, directories, and headers with flexible filters.

Web technology fingerprinter identifying CMS, frameworks, plugins, and server headers.