A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
A common situation is that for example, I have 10 ips to scan all ports, but one of them has waf. For example, this time cwap-waf (qianxin security domain) naabu will scan each of his ports, and the speed is full, causing the entire project to be in a few days. can't be done in hours
My suggestion is to identify waf and handle it like cdn
A common situation is that for example, I have 10 ips to scan all ports, but one of them has waf. For example, this time cwap-waf (qianxin security domain) naabu will scan each of his ports, and the speed is full, causing the entire project to be in a few days. can't be done in hours
My suggestion is to identify waf and handle it like cdn