Top 12 Open-Source Alternatives to Shodan

The top open-source alternatives to Shodan are IVRE, w3af, and Zed Attack Proxy. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

IVRE Landing Page
1

IVRE

Network recon framework, including a web interface to browse Nmap scan results.
Pricing:
- Open Source
#Web Application Security #Attack Surface Management #Security 1 social mentions
w3af Landing Page
2

w3af

w3af is a Web Application Attack and Audit Framework
Pricing:
- Open Source
#Security #Web Application Security #Monitoring Tools 1 social mentions
Zed Attack Proxy Landing Page
3

Zed Attack Proxy

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding...
Pricing:
- Open Source
#Web Application Security #Security #Security & Privacy
Criminal IP Landing Page
4

Criminal IP

Criminal IP protects IT assets and businesses by analyzing all years of cyber threats and prediciting exploits. Criminal IP provides real-time intelligence to enhance cybersecurity competencies in all aspects.
Pricing:
- Open Source
- Freemium
- Free Trial
#Security #Cyber Security #Monitoring Tools
Rapid7 Landing Page
5

Rapid7

Find security issues, verify vulnerability mitigations & manage security assessments with Metasploit. Get the world's best penetration testing software now. DownloadPen testing software to act like an attacker.
Pricing:
- Open Source
#Security #Security & Privacy #Web Application Security 1 social mentions
FOFA Landing Page
6

FOFA

FOFA is a Search Engine for global cyberspace mapping. Through continuous active detection of global Internet assets, identifying most software and hardware network assets.
Pricing:
- Open Source
#Cyber Security #Threat Intelligence #Search Engine
SpiderFoot Landing Page
7

SpiderFoot

Open source intelligence (OSINT) automation tool.
Pricing:
- Open Source
#Security & Privacy #Cyber Security #Tool
OWASP Amass Landing Page
8

OWASP Amass

An advanced open source tool to help information security professionals perform network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques!
Pricing:
- Open Source
#Security #Web Application Security #Cyber Security
ZMap Landing Page
9

ZMap

ZMap is a fast single packet network scanner designed for Internet-wide network surveys.
Pricing:
- Open Source
#Security #Security Monitoring #Monitoring Tools 7 social mentions
Sn1per Security Landing Page
10

Sn1per Security

Discover hidden assets and vulnerabilities in your environment with our all-in-one Attack Surface Management platform
Pricing:
- Open Source
- Freemium
- $984.0 / Annually (Sn1per Professional v10.0)
#Security #Vulnerability Scanner #Penetration Testing
Arachni Landing Page
11

Arachni

Arachni is a Free/Public-Source Web Application Security Scanner aimed towards helping users evaluate the security of web applications.
Pricing:
- Open Source
#Security #Web Application Security #Monitoring Tools
Angry IP Scanner Landing Page
12

Angry IP Scanner

Open-source and cross-platform network scanner designed to be fast and simple to use
Pricing:
- Open Source
#Monitoring Tools #Network Scanning #Network Security 32 social mentions