ZGrab
Tool and Usage
Project details | |
---|---|
License | Apache License 2.0 |
Programming language | Golang |
Author | David Adrian |
Latest release | 0.0.1 [] |
Project health
Links
ZGrap GitHub project |
Introduction
ZGrab is a stateful application-layer scanner. It works together with ZMap and is also part of the ZMap project. ZGrab is written in Go and supports multiple protocols, including:
- BACNET
- HTTP
- HTTPS
- FTP
- IMAP
- POP3
- Modbus
- Siemens S7
- SMTP
- SSH
- Telnet
- Tridium Fox
Why this tool?
This tool can be used to grab banner of services, including those using SSL/TLS. Such usage can be useful for security assessments or find out what particular service is running on an internal system.
Usage and audience
ZGrab is commonly used for penetration testing, security assessment, or vulnerability scanning. Target users for this tool are pentesters.
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
Strengths
- + The source code of this software is available
ZGrab alternatives
Similar tools to ZGrab:
Certificate Transparency
Google's Certificate Transparency project audits the way SSL/TLS certificates are used and its underlying cryptographic system.
cipherscan
Cipherscan is a tool to test the ordering of SSL/TLS ciphers on a given target. It tests the major versions of SSL, TLS, and any extensions of these protocols.
clinker
Found an improvement? Help the community by submitting an update.
Related tool information
Categories
This tool is categorized as a application layer scanner and banner grabbing tool.