Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
To learn more about this, visit our documentation.
It relies heavily on its plugin system to provide basic scanning capabilities. All publicly available to this plugins are hosted in a separate google/tsunami-security-scanner-plugins repository.
Current Status
Quick Start
To quickly get started with its scans,
nmap >= 7.80 ncrack >= 0.7
bash -c "$(curl -sfL https://raw.githubusercontent.com/google/tsunami-security-scanner/master/quick_start.sh)"
The quick_start.sh
script performs the following tasks:
$HOME/tsunami/repos
directory.jar
files into $HOME/tsunami/plugins
directory.$HOME/tsunami
directory.tsunami.yaml
example config into $HOME/tsunami
directory.127.0.0.1
using the previously generated artifacts.Contributing
Read how to contribute to Tsunami.
Disclaimers
It is not an official Google product.
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…
Embark on the journey of becoming a certified Red Team professional with our definitive guide.…
This repository contains proof of concept exploits for CVE-2024-5836 and CVE-2024-6778, which are vulnerabilities within…
This took me like 4 days (+2 days for an update), but I got it…
MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection. Its foundation is…