Tool and Usage
|License||Apache License 2.0|
|Latest release||0.0.1 |
ZGrab is a stateful application-layer scanner. It works together with ZMap and is also part of the ZMap project. ZGrab is written in Go and supports multiple protocols, including:
- Siemens S7
- Tridium Fox
Why this tool?
This tool can be used to grab banner of services, including those using SSL/TLS. Such usage can be useful for security assessments or find out what particular service is running on an internal system.
Usage and audience
ZGrab is commonly used for penetration testing, security assessment, or vulnerability scanning. Target users for this tool are pentesters.
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + The source code of this software is available
Similar tools to ZGrab:
Google's Certificate Transparency project audits the way SSL/TLS certificates are used and its underlying cryptographic system.
Cipherscan is a tool to test the ordering of SSL/TLS ciphers on a given target. It tests the major versions of SSL, TLS, and any extensions of these protocols.
Found an improvement? Help the community by submitting an update.