{"id":13510859,"url":"https://github.com/skavngr/rapidscan","last_synced_at":"2025-05-15T13:07:11.806Z","repository":{"id":40582663,"uuid":"119356952","full_name":"skavngr/rapidscan","owner":"skavngr","description":":new: The Multi-Tool Web Vulnerability Scanner. ","archived":false,"fork":false,"pushed_at":"2023-08-22T12:03:38.000Z","size":3429,"stargazers_count":1839,"open_issues_count":11,"forks_count":413,"subscribers_count":69,"default_branch":"master","last_synced_at":"2025-04-15T02:10:34.599Z","etag":null,"topics":["enumeration","kali-linux","kali-scripts","offensive-security","oscp","penetration-testing","penetration-testing-framework","reconnaissance","scanner","scanner-web","security-scanner","security-scanning","security-tools","vulnerabilities","vulnerability-assessment","vulnerability-detection","vulnerability-management","vulnerability-scanner","vulnerability-scanners","web-vulnerabilities-scanner"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/skavngr.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2018-01-29T08:52:21.000Z","updated_at":"2025-04-14T07:35:01.000Z","dependencies_parsed_at":"2022-08-09T23:41:09.177Z","dependency_job_id":"b98bfef0-aefa-4592-ba3a-87ead1450522","html_url":"https://github.com/skavngr/rapidscan","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skavngr%2Frapidscan","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skavngr%2Frapidscan/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skavngr%2Frapidscan/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skavngr%2Frapidscan/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/skavngr","download_url":"https://codeload.github.com/skavngr/rapidscan/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254346624,"owners_count":22055808,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["enumeration","kali-linux","kali-scripts","offensive-security","oscp","penetration-testing","penetration-testing-framework","reconnaissance","scanner","scanner-web","security-scanner","security-scanning","security-tools","vulnerabilities","vulnerability-assessment","vulnerability-detection","vulnerability-management","vulnerability-scanner","vulnerability-scanners","web-vulnerabilities-scanner"],"created_at":"2024-08-01T02:01:56.856Z","updated_at":"2025-05-15T13:07:06.798Z","avatar_url":"https://github.com/skavngr.png","language":"Python","funding_links":[],"categories":["\u003ca id=\"8f92ead9997a4b68d06a9acf9b01ef63\"\u003e\u003c/a\u003e扫描器\u0026\u0026安全扫描\u0026\u0026App扫描\u0026\u0026漏洞扫描","Python","Weapons","Python (1887)","\u003ca id=\"132036452bfacf61471e3ea0b7bf7a55\"\u003e\u003c/a\u003e工具","vulnerability-scanners"],"sub_categories":["\u003ca id=\"de63a029bda6a7e429af272f291bb769\"\u003e\u003c/a\u003e未分类-Scanner","Tools"],"readme":"[![GitHub issues](https://img.shields.io/github/issues/skavngr/rapidscan.svg?color=%23ff0000)](https://github.com/skavngr/rapidscan/issues)\n[![GitHub issues](https://img.shields.io/github/issues-closed/skavngr/rapidscan.svg?color=%2300cc00)](https://github.com/skavngr/rapidscan/issues)\n[![GitHub forks](https://img.shields.io/github/forks/skavngr/rapidscan.svg?color=%23ffff00)](https://github.com/skavngr/rapidscan/network)\n[![GitHub stars](https://img.shields.io/github/stars/skavngr/rapidscan.svg?color=%23ff3300)](https://github.com/skavngr/rapidscan/stargazers)\n[![GitHub license](https://img.shields.io/github/license/skavngr/rapidscan.svg?color=%230000ff)](https://github.com/skavngr/rapidscan/blob/master/LICENSE)\n\n# :red_square: RapidScan v1.2 - _The Multi-Tool Web Vulnerability Scanner_\n_**RapidScan has been ported to Python3 i.e. v1.2**. The Python2.7 codebase is available on v1.1 releases section. Download and use it if you still haven't upgraded to Python 3. Kindly note that the v1.1 (Python2.7) will not be enhanced further._\n\n## Evolution:\n\u003e It is quite a fuss for a pentester to perform _**binge-tool-scanning**_ (_running security scanning tools one after the other_) sans automation. Unless you are a pro at automating stuff, it is a herculean task to perform binge-scan for each and every engagement. The ultimate goal of this program is to solve this problem through automation; viz. **running multiple scanning tools to discover vulnerabilities, effectively judge false-positives, collectively correlate results** and **saves precious time**; all these under one roof.\u003cp\u003eEnter **RapidScan**.\n\n## Features\n- **one-step installation**.\n- **executes a multitude of security scanning tools**, does other **custom coded checks** and **prints the results spontaneously**.\n- some of the tools include `nmap, dnsrecon, wafw00f, uniscan, sslyze, fierce, lbd, theharvester, amass, nikto` etc executes under one entity.\n- saves a lot of time, **indeed a lot time!**.\n- **checks for same vulnerabilities with multiple tools** to help you **zero-in on false positives** effectively.\n- **extremely light-weight and not process intensive.**\n- **legends** to help you understand which tests may take longer time, so you can `Ctrl+C` to skip if needed.\n- **association with OWASP Top 10 \u0026 CWE 25** on the list of vulnerabilities discovered. (_**under development**_)\n- **critical, high, medium, low and informational** classification of vulnerabilities.\n- **vulnerability definitions** guides you what the vulnerability actually is and the threat it can pose.\n- **remediation** tells you how to plug/fix the found vulnerability.\n- **executive summary** gives you an overall context of the scan performed with critical, high, low and informational issues discovered.\n- **artificial intelligence** to deploy tools automatically depending upon the issues found. for eg; automates the launch of `wpscan` and `plecost` tools when a wordpress installation is found. (_**under development**_)\n- **detailed comprehensive report** in a portable document format (*.pdf) with complete details of the scans and tools used. (_**under development**_)\n- **on the run metasploit auxilliary modules** to discover more vulnerabilities. (_**under development**_)\n\n---\n### FYI:\n- _program is still under development, **works** and currently supports **80** vulnerability tests._\n- _parallel processing is not yet implemented, may be coded as more tests gets introduced._\n\n## Vulnerability Checks\n- :heavy_check_mark: DNS/HTTP Load Balancers \u0026 Web Application Firewalls.\n- :heavy_check_mark: Checks for Joomla, WordPress and Drupal\n- :heavy_check_mark: SSL related Vulnerabilities (_HEARTBLEED, FREAK, POODLE, CCS Injection, LOGJAM, OCSP Stapling_).\n- :heavy_check_mark: Commonly Opened Ports.\n- :heavy_check_mark: DNS Zone Transfers using multiple tools (_Fierce, DNSWalk, DNSRecon, DNSEnum_).\n- :heavy_check_mark: Sub-Domains Brute Forcing (_DNSMap, amass, nikto_)\n- :heavy_check_mark: Open Directory/File Brute Forcing.\n- :heavy_check_mark: Shallow XSS, SQLi and BSQLi Banners.\n- :heavy_check_mark: Slow-Loris DoS Attack, LFI (_Local File Inclusion_), RFI (_Remote File Inclusion_) \u0026 RCE (_Remote Code Execution_).\n- \u0026 more coming up...\n\n## Requirements\n- **Python 3**\n- Kali OS (_**Preferred**, as it is shipped with almost all the tools_)\n- Tested with Parrot \u0026 Ubuntu Operating Systems.\n\n## Usage \n `python3 rapidscan.py example.com`\n\nhttps://user-images.githubusercontent.com/6489729/138737524-9c4dc567-ec78-40b4-9a7b-8ff52d5dc98b.mp4\n\n\n## Installation\n\nAlternatively, your can install the `rapidscan` python module with `pip`. This will create a link for `rapidscan` in your PATH. \n\n```\ngit clone https://github.com/skavngr/rapidscan.git /opt/\ncd /opt/rapidscan\npython3 -m pip install .\n```\n\n### Docker Support\nUnder development.\n\n## Contribution\n- Create your feature branch: `git checkout -b my-new-feature`\n- Commit your changes: `git commit -am 'Add some feature'`\n- Push to the branch: `git push origin my-new-feature`\n- Submit a pull request.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fskavngr%2Frapidscan","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fskavngr%2Frapidscan","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fskavngr%2Frapidscan/lists"}