Vulnerability Scanner Software List (June 2025)

Amazon Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure.

Security management, data risk & compliance monitoring platform to help with vulnerability management. Detect & respond to security vulnerabilities.

Comodo HackerProof with Site Inspector Technology - Comodo provides the next dimension website scanner that includes PCI scanning tools

Zenmap is the official cross-platform GUI for the Nmap Security Scanner. It is free and runs on Linux, Windows, Mac OS X, etc.

Robust cloud solution for continuous web app discovery and detection of vulnerabilities and misconfigurations.

PortSwigger Web Security is a global leader in the creation of software tools for the security testing of web applications. The software (Burp Suite) is well established as the de facto standard toolkit used by web security professionals. Burp Suite is used by more than 47,000 individuals at 12,500 organisations.

Nexus Vulnerability Scanner - Scan an application for free and find any known open source vulnerabilities in your code.

Intruder is an online vulnerability scanner that finds cyber security weaknesses in most exposed systems, to avoid costly data breaches. Enjoy the same level of security as big banks and governments worldwide, without the complexity.

Zerocopter is the leading enterprises' application security platform empowered by the world’s best ethical hackers. We help you develop in a secure way.

OUTSCAN™ is an automated vulnerability management solution that scans and secures external networks. It analyzes perimeters, detects vulnerabilities, notifies organizations and gives remediation solutions. Outpost24 security experts can implement it if needed.

GitLab application security scans for SAST, DAST, Dependency scanning, Container Scanning, Secrets Detection, Fuzz testing, and License Compliance within DevOps CI pipeline

Eclypsium is the industry's leading enterprise firmware protection platform. Firmware in servers, laptops, and networking equipment is the unguarded attack surface of the enterprise. Once compromised, this blind spot allows attackers to subvert traditional security controls.

Brakeman is a static analysis security vulnerability scanner for Ruby on Rails applications.

NNT's Vulnerability Tracker™ continuously tests and assesses your IT network and any device connected to it against 66,000 Network Vulnerability Tests (NVTs) New vulnerabilities are added daily through various content providers and industry trusted resources. NNT's hyper-fast scanning technology means your organization can assess over 50,000 endpoints per 24 hours.

Probely is a security startup founded in 2016 by five security professionals from Lisbon, Portugal. Probely was founded to make security affordable, accessible and simple for other companies and developers.

CloudSploit's open-source cloud security scans find misconfigurations and security risks, allowing for mitigation before a compromise.

At its core, ZeroThreat is an intelligent security scanning platform that is designed to find vulnerabilities within their CI/CD pipelines with lightning speed. Gone are the days of waiting for days or even weeks for a comprehensive security report. With ZeroThreat, they can expect results 5 times faster, allowing them to address any potential threats immediately. But the benefits of ZeroThreat don't stop there. With built-in threat intelligence, this platform not only identifies and reports existing vulnerabilities but also proactively identifies potential threats before they can be exploited. This means they can rest easy knowing that their web applications and APIs are constantly being monitored and protected. ZeroThreat also aims to minimize external attacks by providing robust security measures, making it the forefront choice for companies looking to beef up their cybersecurity efforts. They can say goodbye to costly and time-consuming manual pen tests, as ZeroThreat reduces the need for them by a staggering 90%. This not only saves them time and resources but also ensures that their web applications and APIs are secure, giving them peace of mind and allowing them to focus on other important aspects of their business. Choose ZeroThreat today and stay ahead of the game in the ever-evolving cyber world.

Choose a package according to your needs. There will be always a free package for you to use vulnerability scanning and information gathering tools.

We believe in simple pricing and good results. No variables, no add-ons, or hidden charges. You pay only what you see.

XSignal looks at the network infrastructure "through the eyes of a hacker". XSignal can be used not only by DevOps, DevSec and other technical specialists but also by managers and business owners. The threats in the report are sorted by their danger level and described as non-technically as possible.