Alternatives and similar repositories for arachni

Users that are interested in arachni are comparing it to the libraries listed below

• andresriancho / w3af

  View on GitHub
  w3af: web application attack and audit framework, the open source web vulnerability scanner.
  ☆4,853Feb 22, 2023Updated 2 years ago
• Arachni / arachni-ui-web

  View on GitHub
  Arachni's Web User Interface.
  ☆232May 3, 2022Updated 3 years ago
• infobyte / faraday

  View on GitHub
  Open Source Vulnerability Management Platform
  ☆6,255Jan 26, 2026Updated 3 weeks ago
• urbanadventurer / WhatWeb

  View on GitHub
  Next generation web scanner
  ☆6,406Oct 19, 2025Updated 3 months ago
• 1N3 / Sn1per

  View on GitHub
  Attack Surface Management Platform
  ☆9,386Jan 12, 2026Updated last month
• xmendez / wfuzz

  View on GitHub
  Web application fuzzer
  ☆6,411Jan 21, 2026Updated 3 weeks ago
• sullo / nikto

  View on GitHub
  Nikto web server scanner
  ☆10,078Updated this week
• 1N3 / IntruderPayloads

  View on GitHub
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,901Sep 27, 2021Updated 4 years ago
• commixproject / commix

  View on GitHub
  Automated All-in-One OS Command Injection Exploitation Tool
  ☆5,624Feb 8, 2026Updated last week
• We5ter / Scanners-Box

  View on GitHub
  A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
  ☆8,818Oct 9, 2025Updated 4 months ago
• michenriksen / aquatone

  View on GitHub
  A Tool for Domain Flyovers
  ☆5,897May 22, 2022Updated 3 years ago
• zaproxy / zaproxy

  View on GitHub
  The ZAP by Checkmarx Core project
  ☆14,751Updated this week
• scipag / vulscan

  View on GitHub
  Advanced vulnerability scanning with Nmap NSE
  ☆3,717Feb 6, 2026Updated last week
• fuzzdb-project / fuzzdb

  View on GitHub
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,810Nov 10, 2023Updated 2 years ago
• s0md3v / XSStrike

  View on GitHub
  Most advanced XSS scanner.
  ☆14,735Apr 26, 2025Updated 9 months ago
• future-architect / vuls

  View on GitHub
  Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
  ☆12,044Updated this week
• owtf / owtf

  View on GitHub
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,926Updated this week
• codingo / NoSQLMap

  View on GitHub
  Automated NoSQL database enumeration and web application exploitation tool.
  ☆3,230Aug 26, 2025Updated 5 months ago
• EnableSecurity / wafw00f

  View on GitHub
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆6,157Jan 27, 2026Updated 3 weeks ago
• maurosoria / dirsearch

  View on GitHub
  Web path scanner
  ☆13,979Updated this week
• ysrc / GourdScanV2

  View on GitHub
  被动式漏洞扫描系统
  ☆873Nov 1, 2017Updated 8 years ago
• epinna / weevely3

  View on GitHub
  Weaponized web shell
  ☆3,479Oct 1, 2025Updated 4 months ago
• foospidy / payloads

  View on GitHub
  Git All the Payloads! A collection of web attack payloads.
  ☆3,891May 15, 2023Updated 2 years ago
• samratashok / nishang

  View on GitHub
  Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
  ☆9,740Apr 25, 2024Updated last year
• lanjelot / patator

  View on GitHub
  Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
  ☆3,845May 20, 2025Updated 8 months ago
• archerysec / archerysec

  View on GitHub
  ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
  ☆2,435Jun 11, 2025Updated 8 months ago
• FeeiCN / Cobra

  View on GitHub
  Source Code Security Audit (源代码安全审计)
  ☆3,188Sep 16, 2022Updated 3 years ago
• v3n0m-Scanner / V3n0M-Scanner

  View on GitHub
  Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
  ☆1,557Nov 14, 2023Updated 2 years ago
• RedSiege / EyeWitness

  View on GitHub
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,638Jan 5, 2026Updated last month
• j3ssie / osmedeus

  View on GitHub
  A Modern Orchestration Engine for Security
  ☆6,096Feb 10, 2026Updated last week
• wpscanteam / wpscan

  View on GitHub
  WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websit…
  ☆9,448Feb 9, 2026Updated last week
• owasp-amass / amass

  View on GitHub
  In-depth attack surface mapping and asset discovery
  ☆14,103Feb 10, 2026Updated last week
• ysrc / xunfeng

  View on GitHub
  巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。
  ☆3,593Apr 16, 2024Updated last year
• EmpireProject / Empire

  View on GitHub
  Empire is a PowerShell and Python post-exploitation agent.
  ☆7,806Jan 19, 2020Updated 6 years ago
• aboul3la / Sublist3r

  View on GitHub
  Fast subdomains enumeration tool for penetration testers
  ☆10,802Aug 2, 2024Updated last year
• ivre / ivre

  View on GitHub
  Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…
  ☆3,943Jan 27, 2026Updated 2 weeks ago
• guelfoweb / knock

  View on GitHub
  Knock Subdomain Scan
  ☆4,131Oct 26, 2025Updated 3 months ago
• n1nj4sec / pupy

  View on GitHub
  Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
  ☆8,940Mar 22, 2024Updated last year
• byt3bl33d3r / CrackMapExec

  View on GitHub
  A swiss army knife for pentesting networks
  ☆9,056Dec 6, 2023Updated 2 years ago