Tsunami
A general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence
- Free • Open Source
- Self-Hosted
...
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
Why Tsunami?
When security vulnerabilities or misconfigurations are actively exploited by attackers, organizations need to react quickly in order to protect potentially vulnerable assets. As attackers increasingly invest in automation, the time window to react to a newly released, high severity vulnerability is usually measured in hours. This poses a significant challenge for large organizations with thousands or even millions of internet-connected systems. In such hyperscale environments, security vulnerabilities must be detected and ideally remediated in a fully automated fashion. To do so, information security teams need to have the ability to implement and roll out detectors for novel security issues at scale in a very short amount of time. Furthermore, it is important that the detection quality is consistently very high. To solve these challenges, we created Tsunami - an extensible network scanning engine for detecting high severity vulnerabilities with high confidence in an unauthenticated manner.
Goals and Philosophy
Tsunami supports small manually curated set of vulnerabilities
Tsunami detects high severity, RCE-like vulnerabilities, which often actively exploited in the wild
Tsunami generates scan results with high confidence and minimal false-positive rate.
Tsunami detectors are easy to implement.
Tsunami is easy to scale, executes fast and scans non-intrusively.
Why Tsunami?
When security vulnerabilities or misconfigurations are actively exploited by attackers, organizations need to react quickly in order to protect potentially vulnerable assets. As attackers increasingly invest in automation, the time window to react to a newly released, high severity vulnerability is usually measured in hours. This poses a significant challenge for large organizations with thousands or even millions of internet-connected systems. In such hyperscale environments, security vulnerabilities must be detected and ideally remediated in a fully automated fashion. To do so, information security teams need to have the ability to implement and roll out detectors for novel security issues at scale in a very short amount of time. Furthermore, it is important that the detection quality is consistently very high. To solve these challenges, we created Tsunami - an extensible network scanning engine for detecting high severity vulnerabilities with high confidence in an unauthenticated manner.
Goals and Philosophy
Tsunami supports small manually curated set of vulnerabilities
Tsunami detects high severity, RCE-like vulnerabilities, which often actively exploited in the wild
Tsunami generates scan results with high confidence and minimal false-positive rate.
Tsunami detectors are easy to implement.
Tsunami is easy to scale, executes fast and scans non-intrusively.
Show full description ▾
Tsunami
Summary and Relevance
Our users have written 0 comments and reviews about Tsunami, and it has gotten 1 likes
- Developed by Google
- Open Source and Free product.
- 10 alternatives listed
Popular alternatives
View allTsunami was added to AlternativeTo by IanDorfman on Jul 13, 2020 and this page was last updated Jan 27, 2021.
Features Vote on or suggest new features
Comments and Reviews Post a comment / review all • positive • negative relevance • date
No comments or reviews, maybe you want to be first?Categories
No category, edit the app to suggest tags that will place this app in a categoryTags
- vulnerability-scanner
- enterprise-software
- security-scanner
No screenshots yet
Recent user activities on Tsunami
- websecstore added Tsunami as alternative(s) to WebsiteSecurityStoreweabout 2 months ago
- DzmitryLahoda liked TsunamiDz9 months ago