Yasuo Logo

Yasuo

A Ruby script that scans networks for vulnerable third-party web applications and front-ends with known exploitable security flaws.

573
Vulnerability Management Open Source
ReconnaissanceScannerNetwork Scanning
Visit website
Compare
Compare
0
Explore Vulnerability Management27 AlternativesCompareStacksMarket MapExplore All Tools
MCPThe entire cybersecurity market, one prompt awayTry MCP Access

Yasuo Description

Yasuo is a Ruby-based network scanning tool designed to identify vulnerable third-party web applications and web front-ends during security assessments. The tool focuses on discovering commonly exploited applications such as Apache Tomcat administrative interfaces, JBoss jmx-console, Hudson Jenkins, and other web-based management systems that may contain publicly known vulnerabilities. Yasuo scans networks to locate web applications that could be susceptible to various attack vectors including remote code execution (RCE), malicious file uploads, SQL injection, and remote/local file inclusion vulnerabilities. The scanner is built to quickly identify potentially compromised targets by checking for applications with known security flaws that are documented in exploit databases. Yasuo serves as a reconnaissance tool for penetration testers and security professionals conducting internal assessments, external assessments, and red team engagements to identify vulnerable web applications that could provide entry points into target systems.

Yasuo FAQ

Common questions about Yasuo including features, pricing, alternatives, and user reviews.

Yasuo is A Ruby script that scans networks for vulnerable third-party web applications and front-ends with known exploitable security flaws.. It is a Vulnerability Management solution designed to help security teams with Reconnaissance, Scanner, Network Scanning.

Have more questions? Browse our categories or search for specific tools.

FEATURED

Push Security Logo
Push Security
Zero Trust
CybersecRadars Logo
CybersecRadars
Threat Management
Hudson Rock Logo
Hudson Rock
Threat Management
Get Featured

ALTERNATIVES

RoboShadow OWASP ZAP Vulnerability Scanner Logo
RoboShadow OWASP ZAP Vulnerability Scanner

Web app & network vulnerability scanner integrating OWASP ZAP, Shodan & Nmap

0
RoboShadow Mobile Network Scanner Logo
RoboShadow Mobile Network Scanner

Android app for scanning networks to identify security vulnerabilities

0
Halo Security Server Scanning Logo
Halo Security Server Scanning

External server vulnerability scanning for CVEs, patches, and misconfigurations

0
Sårbarhetsskanning Logo
Sårbarhetsskanning

External vulnerability scanning tool for websites and web applications

0
Carson & SAINT ASV Logo
Carson & SAINT ASV

PCI DSS-certified ASV scanning service for payment card compliance.

0

POPULAR

RoboShadow Logo
RoboShadow
Vulnerability Assessment
OSINTLeak Real-time OSINT Leak Intelligence Logo
OSINTLeak Real-time OSINT Leak Intelligence
Threat Intelligence Platforms
Cybersec Feeds Logo
Cybersec Feeds
Threat Intelligence Platforms
TestSavant AI Security Assurance Platform Logo
TestSavant AI Security Assurance Platform
AI Red Teaming
Fabric Platform by BlackStork Logo
Fabric Platform by BlackStork
Security Information and Event Management
View Popular Tools →

TRENDING CATEGORIES

Digital Forensics and Incident Response
Digital Forensics and Incident Response (DFIR) tools for digital forensic analysis, evidence collection, malware analysis, and cyber incident investigation.
509
Threat Intelligence Platforms
TIP for collecting, analyzing, and sharing cyber threat data, indicators of compromise (IOCs), and threat feeds.
357
Penetration Testing
Penetration testing tools and frameworks for manual security testing, exploit development, and vulnerability validation.
263
Offensive Security
Offensive security tools for penetration testing, red team exercises, exploit development, and ethical hacking activities.
246
Identity Governance and Administration
Identity Governance and Administration (IGA) platforms for identity lifecycle management, access governance, role management, and compliance reporting.
230
View All Categories →

Stay Updated with Mandos Brief

Get strategic cybersecurity insights in your inbox