Security Scanning Tools
Automated security scanners for web applications, networks, and infrastructure vulnerability detection and assessment.
Browse 114 security scanning tools
FEATURED
USE CASES
Dufflebag searches through public AWS EBS snapshots to identify accidentally exposed secrets and sensitive information.
Find leaked credentials by scanning repositories for high entropy strings.
WordPress security scanner for identifying vulnerabilities in WordPress websites.
A next-generation web scanner that identifies websites and recognizes web technologies, including content management systems, blogging platforms, and more.
Mass IP port scanner for Internet-scale scanning with high speed and flexibility.
SSLyze is a fast and powerful SSL/TLS scanning tool and Python library with a focus on speed, reliability, and ease of integration.
A command-line tool that scans websites to detect publicly known security vulnerabilities in frontend JavaScript libraries using Snyk's vulnerability database.
ssh-audit is a Python-based tool for auditing SSH server and client configurations to identify security weaknesses and ensure compliance with best practices.
testssl.sh is a free command line tool for checking server's TLS/SSL configurations with clear and machine-readable output.
CryptoLyzer is a cryptographic protocol analyzer that examines TLS, SSL, SSH, and DNSSEC server implementations with fingerprinting capabilities and multiple output formats.
A tool for SSH server auditing with comprehensive analysis capabilities.
A next-generation network scanner for identifying security configuration weaknesses in devices like routers, firewalls, and switches.
A Node.js tool that analyzes HTTP security headers on websites to identify missing or problematic security configurations.
Fast, smart, effective port scanner with extensive extendability and adaptive learning.
A Ruby script that scans networks for vulnerable third-party web applications and front-ends with known exploitable security flaws.
S3Scanner is an open-source tool that scans S3 buckets across S3-compatible APIs to identify misconfigurations and security vulnerabilities.
Nmap is an essential network scanning tool used for network security auditing and status monitoring.
Security Scanning Tools FAQ
Common questions about Security Scanning tools, selection guides, pricing, and comparisons.
Scan frequency depends on asset criticality and change rate: internet-facing assets should be scanned continuously or daily, internal critical systems weekly, and all other systems at least monthly. Additionally, run scans after any significant infrastructure changes, new deployments, or when critical CVEs are published. Compliance frameworks like PCI DSS require at least quarterly external scans.
