Open Source Shodan Alternatives

Censys is a search engine that enables researchers to ask questions about the hosts and networks that compose the Internet.

Network recon framework, including a web interface to browse Nmap scan results.

Vega is a free and open source scanner and testing platform to test the security of web applications. Vega can help you find and validate SQL Injection, Cross-Site Scripting (XSS), inadvertently disclosed sensitive information, and other vulnerabilities.

Wapiti allows you to audit the security of your web applications. Wapiti is a command line tool.

Arachni is an Open Source, feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.

LeakIX is a search engine indexing open hosts on the internet. It focuses on listing the databases and table names and keeps a history of every successful connection.

A fully automated, active web application security reconnaissance tool. Key features: High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets.

Grabber is a web application scanner. Basically it detects some kind of vulnerabilities in your website.

Criminal IP is a comprehensive threat intelligence search engine that detects vulnerabilities of personal or corporate cyber assets in real time and facilitates preemptive responses accordingly. With 4.

Natlas is an open source project designed to provide scalable network scanning and an interface to search through the results. For more information, visit github.com/natlas/natlas