External attack surface discovery, enumeration and reconnaissance for massive networks. ScanCannon is a tool designed to help security professionals and researchers discover and enumerate external attack surfaces, including IP addresses, subdomains, and other potential entry points. It's a Python-based tool that uses various techniques to scan and gather information about a target network, including DNS, HTTP, and other protocols. ScanCannon is designed to be a powerful and flexible tool for security professionals and researchers, and can be used to identify potential vulnerabilities and weaknesses in a target network. It's a great tool for anyone looking to improve their network security and stay ahead of potential threats.
FEATURES
SIMILAR TOOLS
A Linux command-line tool that allows you to kill in-progress TCP connections based on a filter expression, useful for libnids-based applications that require a full TCP 3-way handshake for TCB creation.
A free, open-source network protocol analyzer for capturing and displaying packet-level data.
Suricata offers real-time intrusion detection, intrusion prevention, and network monitoring.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.
A suite for man in the middle attacks, featuring sniffing of live connections, content filtering, and protocol dissection.
A free DNS recursive service that blocks malicious host names and protects user privacy.
WiGLE.net is a platform that collects and provides data on WiFi networks and cell towers, with over 1.3 billion networks collected.
A website scanner that provides a sandbox for the web, allowing users to scan URLs and websites for potential threats and vulnerabilities.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.