Tool Reference#
APHIDS ships with 40+ pre-installed security tools in a Kali Linux-based container.
Port Scanning & Network#
Nmap#
Network discovery and port scanning.
Masscan#
High-speed port scanner for large networks.
Vulnerability Scanning#
Nuclei#
Template-based vulnerability scanner with 8000+ templates.
Nikto#
Web server vulnerability scanner.
Wapiti#
Web application vulnerability scanner.
Web Application Testing#
OWASP ZAP#
Comprehensive web application security scanner.
Dalfox#
XSS vulnerability scanner.
SQLMap#
SQL injection detection and exploitation.
sqlmap-scan:
module: sqlmap
target: 'https://example.com/page?id=1'
args: ['--batch', '--level', '3']
Commix#
Command injection detection.
Fuzzing & Content Discovery#
FFuF#
Fast web fuzzer.
Gobuster#
Directory and DNS brute-forcing.
Feroxbuster#
Recursive content discovery.
Wfuzz#
Web application fuzzer.
Katana#
Web crawler and spider.
Subdomain Enumeration#
Amass#
Attack surface mapping and subdomain enumeration.
Subfinder#
Fast passive subdomain discovery.
Sublist3r#
Subdomain enumeration using search engines.
DNSx#
DNS toolkit for resolution and probing.
GetAllURLs (GAU)#
Fetch known URLs from Wayback Machine, Common Crawl, and more.
HTTP Analysis#
httpx#
HTTP probing toolkit for live host detection.
WhatWeb#
Web technology fingerprinting.
WAFw00f#
Web Application Firewall detection.
Secret Detection#
Gitleaks#
Scan git repositories and directories for secrets.
TruffleHog#
High-sensitivity secret detection.
Static Analysis (SAST)#
Semgrep#
Lightweight static analysis with community rules.
Bandit#
Python source code security analysis.
Dependency & Container Scanning#
Safety#
Python dependency vulnerability scanner.
OWASP Dependency-Check#
Software composition analysis.
Trivy#
Container and filesystem vulnerability scanner.
Grype#
Anchore vulnerability scanner.
Authentication & API Testing#
Hydra#
Network login brute-forcing.
hydra-scan:
module: hydra
target: '10.0.0.1'
args: ['-l', 'admin', '-P', '/usr/share/wordlists/rockyou.txt', 'ssh']
JWT Tool#
JWT token analysis and manipulation.
Protocol Analysis#
TestSSL#
SSL/TLS configuration testing.
Smuggler#
HTTP request smuggling detection.
CORScanner#
CORS misconfiguration detection.
Recon & OSINT#
ParamSpider#
Parameter discovery from web archives.
Arjun#
HTTP parameter discovery.
SearchSploit#
Exploit database search.
Binary Analysis#
Checksec#
Binary security property analysis.
Binwalk#
Firmware analysis and extraction.
CMS#
WPScan#
WordPress vulnerability scanner.
Tool Summary#
| Tool | Category | Target Type |
|---|---|---|
| nmap | Port Scanning | IP, hostname, CIDR |
| masscan | Port Scanning | IP, CIDR |
| nuclei | Vuln Scanning | URL |
| nikto | Vuln Scanning | URL |
| wapiti | Vuln Scanning | URL |
| zap2 | Web App | URL |
| dalfox | XSS | URL |
| sqlmap | SQLi | URL with params |
| commix | Command Injection | URL with params |
| ffuf | Fuzzing | URL with FUZZ |
| gobuster | Discovery | URL |
| feroxbuster | Discovery | URL |
| wfuzz | Fuzzing | URL with FUZZ |
| katana | Crawling | URL |
| amass | Subdomain | Domain (TLD) |
| subfinder | Subdomain | Domain |
| sublist3r | Subdomain | Domain |
| dnsx | DNS | Domain |
| getallurls | URL Enum | Domain |
| httpx | HTTP Probe | Domain, IP |
| whatweb | Fingerprint | URL |
| wafw00f | WAF Detection | URL |
| gitleaks | Secrets | Directory |
| trufflehog | Secrets | Directory |
| semgrep | SAST | Directory |
| bandit | SAST (Python) | Directory |
| safety | Dependencies | Directory |
| dependency_check | SCA | Directory |
| trivy | Container/FS | Directory |
| grype | Container/FS | Directory |
| hydra | Auth Testing | IP + service |
| jwt_tool | JWT Testing | Token |
| testssl | TLS Testing | Host:port |
| smuggler | HTTP Smuggling | URL |
| corscanner | CORS | URL |
| paramspider | Param Discovery | Domain |
| arjun | Param Discovery | URL |
| searchsploit | Exploit DB | Search term |
| checksec | Binary | File path |
| binwalk | Firmware | File path |
| wpscan | WordPress | URL |