Tsunami is a general-purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
To learn more about Tsunami, visit our documentations .
Tsunami relies heavily on its plugin system to provide basic scanning capabilities. All publicly available Tsunami plugins are hosted in a separate google/tsunami-security-scanner-plugins repository.
To quickly get started with Tsunami scans,
install the following required dependencies:
nmap >= 7.80
ncrack >= 0.7
docker run --name unauthenticated-jupyter-notebook -p 8888:8888 -d jupyter/base-notebook start-notebook.sh --NotebookApp.token=''
execute the following command:
bash -c "$(curl -sfL https://raw.githubusercontent.com/google/tsunami-security-scanner/master/quick_start.sh)"
quick_start.sh script performs the following tasks:
tsunami.yamlexample config into
127.0.0.1using the previously generated artifacts.
Read how to contribute to Tsunami .
Tsunami is not an official Google product.