Qualys VMDR
Risk-based vulnerability management with automated prioritization and patching.
Open-Source Projects
Discover top open-source software, updated regularly with real-world adoption signals.
Discover top open-source software, updated regularly with real-world adoption signals.
Unified, fast, multi-protocol vulnerability scanner for red teams
scan4all combines port scanning, service enumeration, and over 15,000 POCs into a single, cross‑platform Go binary for automated red‑team assessments.
scan4all is a Go‑based, cross‑platform scanner that unifies port discovery, service fingerprinting, and vulnerability exploitation. It bundles popular tools such as vscan, nuclei, subfinder, and ksubdomain, delivering more than 15,000 proof‑of‑concept checks in one executable.
The tool supports 146 protocols, intelligent password blasting with custom dictionaries, and smart SSL analysis that auto‑generates sub‑domain targets. Results can be exported as JSON, CSV, TXT, or streamed directly to Elasticsearch for real‑time dashboards. Installation is straightforward via or pre‑built releases, and it runs on Linux, Windows, and macOS. Optional nmap integration provides faster scans when available, though it requires a root password environment variable.
go installSecurity teams, penetration testers, and researchers looking for a single, highly configurable binary to automate reconnaissance, credential spraying, and large‑scale vulnerability assessment will find scan4all especially valuable.
When teams consider scan4all, these hosted platforms usually appear on the same shortlist.
Risk-based vulnerability management with automated prioritization and patching.
Vulnerability management with live dashboards, unified agent, and risk-based prioritization
Risk-based vulnerability management for continuous discovery, prioritization, and remediation
Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.
Comprehensive external network assessment
Identify open ports, services, and applicable exploits across thousands of IPs in a single run.
Web application fingerprinting and vulnerability detection
Automatically generate fingerprints and run 15k+ POCs to surface web‑specific flaws.
Credential spraying across multiple services
Perform password blasting on RDP, SSH, MySQL, etc., using custom dictionaries and prioritize high‑value targets.
Continuous monitoring with Elasticsearch
Stream scan results into Elasticsearch for real‑time dashboards and alerting.
Use `go install github.com/GhostTroops/scan4all@<version>` or download a release binary; it runs on Linux, Windows, and macOS.
scan4all uses naabu by default; nmap is optional and automatically enabled if present, offering faster scans but requiring a root password environment variable.
Yes, custom dictionaries can be defined in `config/config.json` for password blasting and POC loading.
Results can be saved as JSON, TXT, CSV, printed to STDOUT, or bulk‑uploaded to Elasticsearch.
Yes, scan4all detects CL‑TE, TE‑CL, TE‑TE, CL_CL, and BaseErr smuggling techniques.
Project at a glance
DormantLast synced 4 days ago