Top 12 Open-Source Alternatives to Shodan

Shodan

Shodan is the world's first search engine for Internet-connected devices.

(0 reviews)

Post a review

Alternatives Status Page

Verify Shodan Edit

Product categories

Attack Surface Management Bug Bounty As A Service Cyber Security Ethical Hacking Monitoring Tools Network Security Online Services Penetration Testing Search Engine Security Security & Privacy Web Application Security

Summary

The top open-source alternatives to Shodan are OWASP Amass, w3af, and FOFA. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

OWASP Amass Landing Page
1

OWASP Amass

An advanced open source tool to help information security professionals perform network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques!
Pricing:
- Open Source
#Web Application Security #Security #Monitoring Tools 1 social mentions
w3af Landing Page
2

w3af

w3af is a Web Application Attack and Audit Framework
Pricing:
- Open Source
#Web Application Security #Security #Monitoring Tools 2 social mentions
FOFA Landing Page
3

FOFA

FOFA is a Search Engine for global cyberspace mapping. Through continuous active detection of global Internet assets, identifying most software and hardware network assets.
Pricing:
- Open Source
#Web Application Security #Search Engine #Cyber Security
Criminal IP Landing Page
4

Criminal IP

Criminal IP protects IT assets and businesses by analyzing all years of cyber threats and prediciting exploits. Criminal IP provides real-time intelligence to enhance cybersecurity competencies in all aspects.
Pricing:
- Open Source
- Freemium
- Free Trial
#Web Application Security #Security #Monitoring Tools
IVRE Landing Page
5

IVRE

Network recon framework, including a web interface to browse Nmap scan results.
Pricing:
- Open Source
#Web Application Security #Security #Monitoring Tools 1 social mentions
Zed Attack Proxy Landing Page
6

Zed Attack Proxy

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding...
Pricing:
- Open Source
#Web Application Security #Security #Online Services
Rapid7 Landing Page
7

Rapid7

Find security issues, verify vulnerability mitigations & manage security assessments with Metasploit. Get the world's best penetration testing software now. DownloadPen testing software to act like an attacker.
Pricing:
- Open Source
#Web Application Security #Security #Monitoring Tools 1 social mentions
Arachni Landing Page
8

Arachni

Arachni is a Free/Public-Source Web Application Security Scanner aimed towards helping users evaluate the security of web applications.
Pricing:
- Open Source
#Web Application Security #Security #Monitoring Tools
Metasploit Landing Page
9

Metasploit

Find security issues, verify vulnerability mitigations & manage security assessments with Metasploit. Get the world's best penetration testing software now.
Pricing:
- Open Source
#Web Application Security #Security Monitoring #Security
Sn1per Security Landing Page
10

Sn1per Security

Discover hidden assets and vulnerabilities in your environment with our all-in-one Attack Surface Management platform
Pricing:
- Open Source
- Freemium
- $984.0 / Annually (Sn1per Professional v10.0)
#Web Application Security #Security #Network Security
HackerOne Landing Page
11

HackerOne

HackerOne provides a platform designed to streamline vulnerability coordination and bug bounty program by enlisting hackers.
Pricing:
- Open Source
#Bug Bounty As A Service #Network Security #Cyber Security 17 social mentions
Oh Dear! Landing Page
12

Oh Dear!

The all-in-one monitoring tool.
Pricing:
- Open Source
- Paid
- Free Trial
- €15.0 / Monthly (5 Websites)
#Status Pages #Monitoring Tools #Uptime Monitoring 10 social mentions