Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.
Alternatives To Sandmap
Project NameStarsDownloadsRepos Using ThisPackages Using ThisMost Recent CommitTotal ReleasesLatest ReleaseOpen IssuesLicenseLanguage
a month ago18November 07, 2022128gpl-3.0Rust
🤖 The Modern Port Scanner 🤖
Awesome Security10,248
6 days ago11mit
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
Naabu3,73133 days ago36April 30, 202331mitGo
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
2 years ago22bsd-3-clausePython
A pretty sweet vulnerability scanner
12 days ago51mitShell
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
a month ago7November 08, 202129mitGo
Cameradar hacks its way into RTSP videosurveillance cameras
10 days agomitPowerShell
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
a day ago44gpl-3.0Python
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.
2 months ago7otherLua
Advanced vulnerability scanning with Nmap NSE
Static Binaries2,638
a month ago33otherShell
Various *nix tools built as statically-linked binaries
Alternatives To Sandmap
Select To Compare

Alternative Project Comparisons


Travis-CI Version Rawsec's CyberSecurity Inventory BlackArch Repository License

DescriptionHow To UseCommand LineConfigurationRequirementsOtherContributingLicenseWiki


Created by trimstray and contributors


sandmap is a tool supporting network and system reconnaissance using the massive Nmap engine. It provides a user-friendly interface, automates and speeds up scanning and allows you to easily use many advanced scanning techniques.

Key Features

  • simple CLI with the ability to run pure Nmap engine
  • predefined scans included in the modules
  • support Nmap Scripting Engine (NSE) with scripts arguments
  • TOR support (with proxychains)
  • multiple scans at one time
  • at this point: 31 modules with 459 scan profiles

How To Use

It's simple:

# Clone this repository
git clone --recursive

# Go into the repository
cd sandmap

# Install
./ install

# Run the app
  • symlink to bin/sandmap is placed in /usr/local/bin
  • man page is placed in /usr/local/man/man8

Command Line

Before using the sandmap read the Command Line introduction.


The etc/main.cfg configuration file has the following structure:

# shellcheck shell=bash

# Specifies the default destination.
# Examples:
#   - dest=","

# Specifies the extended Nmap parameters.
# Examples:
#   - params="--script ssl-ccs-injection -p 443"

# Specifies the default output type and path.
# Examples:
#   - report="xml"

# Specifies the TOR connection.
# Examples:
#   - tor="true"

# Specifies the terminal type.
# Examples:
#   - terminal="internal"


sandmap uses external utilities to be installed before running:

This tool working with:

  • GNU/Linux (testing on Debian and CentOS)
  • Bash (testing on 4.4.19)
  • Nmap (testing on 7.70)

Also you will need root access.



Available modules: 31 Available scan profiles: 459

If you want to create your own modules, take a look this.

Project architecture

See this.


See this.


GPLv3 :

Free software, Yeah!

Popular Nmap Projects
Popular Scanner Projects
Popular Security Categories
Related Searches

Get A Weekly Email With Trending Projects For These Categories
No Spam. Unsubscribe easily at any time.
Command Line
Hacking Tool
Service Discovery
Information Gathering
Port Scanner
Network Discovery
Nmap Scripts