Nmap
Network discovery and security auditing scanner with scripting (NSE) and OS fingerprinting.
Why it is included
Nmap Public Source License project that is effectively the industry default for sanctioned scans.
Best for
Inventory, pentest scopes, and verifying firewall rules you own.
If you use Windows, Mac, or paid tools
Network discovery alternative to commercial vulnerability scanners’ first-pass inventory (scan only what you own).
Strengths
- NSE scripts
- Zenmap GUI
- Huge community corpus
Limitations
- Scan only networks you are authorized to test
Good alternatives
masscan · RustScan
Related tools
Security & Privacy
Wireshark
Network protocol analyzer for deep packet inspection and forensic debugging.
Networking & Remote Access
OpenSSH
SSH suite for secure remote access and file transfer.
Security & Privacy
Nikto
Web server scanner that probes for dangerous files, outdated software, and misconfigurations via many checks.
Security & Privacy
Nuclei
Fast vulnerability scanner driven by YAML templates—used for recon, misconfigs, CVEs, and custom checks at scale.
Security & Privacy
bettercap
Network attack framework: Wi-Fi, BLE, LAN recon, ARP/DNS spoofing, proxy, and modular caplets.
Security & Privacy
Suricata
High-performance IDS/IPS and network security monitoring with multi-threading, TLS inspection options, and Lua scripting.