
fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。(An intranet comprehensive scanning tool, enabling one-click automated, all-round vulnerability scanning)
The Lens
Fscan is a one-command internal network scanner for security testing. Point it at an IP range and it does host discovery, port and service scanning, web and CMS fingerprinting, weak-credential brute-forcing across dozens of services, and checks for known vulnerabilities like MS17-010. It is the kind of tool a red teamer reaches for to map and probe an internal network fast. Written in Go, MIT licensed, free.
Running it is genuinely one command: `./fscan -h 192.168.1.1/24` and it goes. A single static Go binary, no dependencies, cross-platform, with an optional web UI. That simplicity is the whole appeal; there is nothing to install or configure before you are scanning.
For anyone doing authorized penetration testing or defending their own network, this is a fast, capable recon tool at zero cost. Solo testers and security teams use it the same way. There is no paid tier and no team story; it is a CLI you run against targets you are allowed to test.
The catch is that this is a dual-use offensive tool, and the responsibility is entirely yours. Fscan includes brute-forcing, credential extraction, and exploitation modules that are legal on networks you own or are contracted to test, and a crime everywhere else. It also lights up every IDS in the building. Use it inside a real engagement scope, not because it is easy to point at something.
Free vs Self-Hosted vs Paid
fully freeFree: MIT licensed. Host discovery, port/service scanning, web and CMS fingerprinting, brute-forcing across 28 services, vuln checks (MS17-010, SMBGhost). Single Go binary, optional web UI.
Self-hosted: Nothing to host; it is a standalone CLI binary you run against targets in scope.
Paid: No paid tier.
Free and open source. A capable offensive tool for authorized testing only; the legal responsibility is yours.
Get tools like this every Wednesday
One featured tool, three on the radar. No fluff.
A low score is not a verdict on quality. Young and niche tools start low by design. How we calculate scores
Trust Signals
License: MIT License
Use freely, including commercial. Just keep the license.
Commercial use: ✓ Yes
About
- Owner
- shadow1ng (User)
- Stars
- 14,114
- Forks
- 1,901
Explore Further
More tools in the directory
systeminformer
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com
15.4k ★frappe
Low code web framework for real world applications, in Python and Javascript
10.4k ★opencti
Open Cyber Threat Intelligence Platform
9.7k ★