LadonGO 4.2 Pentest Scanner framework 全平台Go开源内网渗透扫描器框架,Windows/Linux/Mac内网渗透,使用它可轻松一键批量探
Alternatives To Ladongo
Project NameStarsDownloadsRepos Using ThisPackages Using ThisMost Recent CommitTotal ReleasesLatest ReleaseOpen IssuesLicenseLanguage
3 days ago1February 27, 2018386otherC
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
12 days ago17April 27, 2022127gpl-3.0Rust
🤖 The Modern Port Scanner 🤖
4 days ago6otherShell
Attack Surface Management Platform | Sn1perSecurity LLC
Naabu3,37815 days ago30July 31, 202231mitGo
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
8 months ago7November 08, 202122mitGo
Cameradar hacks its way into RTSP videosurveillance cameras
2 years ago4mitShell
A script that you can run in the background!
2 months ago29apache-2.0Java
Set of useful android network tools
2 years agomitPerl
Advanced dork Search & Mass Exploit Scanner
2 months ago2mitGo
LadonGO 4.2 Pentest Scanner framework 全平台Go开源内网渗透扫描器框架,Windows/Linux/Mac内网渗透,使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost,远程执行SSH/Winrm,密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis,端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机,端口扫描服务识别PortScan。
Static Code Scan1,070
6 years agootherJavaScript
Run this quick static code scan on any URL to check for out-of-date libraries, layout issues and accessibility.
Alternatives To Ladongo
Select To Compare

Alternative Project Comparisons

Ladon Scanner For Golang


Author Ladon Bin GitHub issues Github Stars GitHub forks GitHub license Downloads


LadonGo is an open source intranet penetration scanner framework, which can be used to easily detect segment C, B, A live hosts, fingerprint identification, port scanning, password explosion, remote execution, high-risk vulnerability detection, etc. Version 4.0 includes 37 functions, high risk vulnerability detection MS17010, SmbGhost, remote execution of SshCmd, WinrmCmd, PhpShell, JspShell, GoWebShell, L, 12 protocol password explosion Smb/Ssh/Ftp/Mysql/Mssql/Oracle/Sqlplus/Winrm/HttpBasic/Edits/MongoDB/RouterOS, survival detection/information collection/fingerprint identification NbtInfo, OnlinePC, Ping, Icmp, SnmpScan, HttpBanner, HttpTitle, TcpBanner, WeblogicScan, O xidScan, Port scan / service probe portscan, forward to Socks5 proxy< br>

LadonGO 4.2 Pentest Scanner framework Go,Windows/Linux/MacCBAMS17010SmbGhostSSH/WinrmSMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/RedisPortScan/HttpBanner/HttpTitle/TcpBanner/Weblogic/OxidPortScan

Development environment

OS: Kali 2019 X64

IDE: Mousepad

Go: 1.13 Linux

Function module


. .
OnlinePC (Using ICMP/SNMP/Ping detect Online hosts)
PingScan (Using system ping to detect Online hosts)
IcmpScan (Using ICMP Protocol to detect Online hosts)
SnmpScan (Using Snmp Protocol to detect Online hosts)
HttpBanner (Using HTTP Protocol Scan Web Banner)
HttpTitle (Using HTTP protocol Scan Web titles)
T3Scan (Using T3 Protocol Scan Weblogic hosts)
PortScan (Scan hosts open ports using TCP protocol)
TcpBanner (Scan hosts open ports using TCP protocol)
OxidScan (Using dcom Protocol enumeration network interfaces)
NbtInfo (Scan hosts open ports using NBT protocol)


. .
MS17010 (Using SMB Protocol to detect MS17010 hosts)
SmbGhost (Using SMB Protocol to detect SmbGhost hosts)
CVE-2021-21972 (Check VMware vCenter 6.5 6.7 7.0 Rce Vul)
CVE-2021-26855 (Check CVE-2021-26855 Microsoft Exchange SSRF)


. .
SmbScan (Using SMB Protocol to Brute-For 445 Port)
SshScan (Using SSH Protocol to Brute-For 22 Port)
FtpScan (Using FTP Protocol to Brute-For 21 Port)
401Scan (Using HTTP BasicAuth to Brute-For web Port)
MysqlScan (Using Mysql Protocol to Brute-For 3306 Port)
MssqlScan (Using Mssql Protocol to Brute-For 1433 Port)
OracleScan (Using Oracle Protocol to Brute-For 1521 Port)
MongodbScan (Using Mongodb Protocol to Brute-For 27017 Port)
WinrmScan (Using Winrm Protocol to Brute-For 5985 Port)
SqlplusScan (Using Oracle Sqlplus Brute-For 1521 Port)
RedisScan (Using Redis Protocol to Brute-For 6379 Port)


. .
SshCmd (SSH Remote command execution Default 22 Port)
WinrmCmd (Winrm Remote command execution Default 5985 Port)
PhpShell (Php WebShell command execution Default 80 Port)
GoWebShell (Go WebShell Default http://IP:888/web)
WinJspShell (JSP Shell Remote command execution Default 80 Port)
LnxJspShell (JSP Shell Remote command execution Default 80 Port)
LnxRevShell (Bash Reverse Shell)


. .
PhpStudyDoor (PhpStudy 2016 & 2018 BackDoor Exploit)
CVE-2018-14847 (Export RouterOS Password 6.29 to 6.42)


. .
Socks5 (Socks5 forward proxy server)


go get
go build Ladon.go


make windows
make linux
make mac



make install


go run install.go



Ladon FuncList
Ladon Detection
Ladon VulDetection
adon BruteFor
Ladon RemoteExec
Ladon Exploit
Ladon Example


Ladon IP/pcname/CIDR/URL/txt moudle

Ladon MS17010
Ladon MS17010
Ladon 192.168.1/c MS17010
Ladon 192.168/b MS17010
Ladon 192/a MS17010

Ladon 192.168.1-192.168.5 MS17010
Ladon BasicAuthScan
Ladon ip.txt MS17010
Ladon url.txt HttpBanner


Forward Socks5 proxy server

Ladon Socks5 1080

Information collection and vulnerability detection

Ping scan segment C live hosts (with any permission) < br >

Ladon PingScan

ICMP scanning section C survival host (administrator authority)

Ladon IcmpScan

SNMP scanning of surviving hosts and devices in Segment C

Ladon SnmpScan

SMB scans C-segment eternal blue ms17010 vulnerable hosts < br >

Ladon MS17010

SMB scans C-segment eternal black smbghost vulnerability host < br >

Ladon SmbGhost

T3 scans the hosts with open WebLogic in Segment C

Ladon T3Scan

HTTP scanning C-segment open Web site Banner

Ladon BannerScan

HTTP scanning section C open Web site title

Ladon HttpTitle

TCP scans the open port service information of section C. < br >

Ladon TcpBanner

TCP scans common open ports of segment C hosts

Ladon PortScan

Password explosion, weak password

Scan weak password of windows machine on port 445 of section C. < br >

Ladon SmbScan

Scan the SSH weak password of the 22 port Linux machine in section C

Ladon SshScan

Scan the weak password of FTP server on port 21 of section C. < br >

Ladon FtpScan

Scan the weak password of MySQL server on port 3306 in section C

Ladon MysqlScan

Scan weak password of Oracle server on port 1521 in segment C

Ladon OracleScan

Scan the weak password of MongoDB server on port 27017 in section C

Ladon MongodbScan

Scan weak password of Oracle server on port 1521 of section C. < br >

Ladon SqlplusScan

Scan section C 5985 port Winrm server weak password

Ladon WinrmScan

Scan the empty password of redis server on port 6379 of section C. < br >

Ladon RedisScan

Scan C-segment 8728 port Routeros router < br >

Ladon RouterOSScan

Remote command execution
Ladon SshCmd host port user pass cmd
Ladon WinrmCmd host port user pass cmd
Ladon PhpShell url pass cmd
Ladon PhpStudyDoor url cmd

SshCmd & WinrmCmd image

PhpShell & PhpStudyDoor image

SCAN IP/24 (192.168.1/c)

. . .
ICMP 3ms 1/20s
WebTitle 10ms 1/6s
T3Scan 15ms 1/4s
EthScan 2ms 1/30s

Scan B(192.168/b)

. . .
EthScan 23Min 1 Port
T3Scan 1h 4 Port
WebTitle 40Min 1 Port
MS17010 12Min 1 Port
Snmp 20Min 1 Port

PS: the scanning speed is actually similar to the speed of Ladon. Net version, but there is no special record, because the speed of go version is recorded by the way during the rewrite test

Cross platform / whole platform / whole system

Support old and new operating systems, especially old Linux systems. Many online tools can't be used at all or various errors are reported


0 WinXP
1 Win 2003
2 Win 7
3 Win 8.1
4 Win 10
5 Win 2008 R2
6 Win 2012 R2
7 Win 2019
8 Kali 1.0.2
9 Kali 2018
10 Kali 2019
11 SUSE 10
12 CentOS 5.8
13 CentOS 6.3
14 CentOS 6.8
15 Fedora 5
16 RedHat 5.7
17 BT5-R3
18 MacOS 10.15
19 Ubuntu 8
20 Ubuntu 18

MacOS x64 10.15







LadonGo (ALL OS)

Ladon (Windows & Cobalt Strike)

911 Ver

Stargazers over time

Stargazers over time

Popular Scanner Projects
Popular Port Projects
Popular Security Categories
Related Searches

Get A Weekly Email With Trending Projects For These Categories
No Spam. Unsubscribe easily at any time.
Security Tools
Brute Force