Nmap
Network discovery and port/service detection
OpenVAS
Vulnerability scanning for network services and systems
Nuclei
Template-based vulnerability detection
OWASP ZAP
Dynamic web application security testing
OSV Scanner
Open-source dependency vulnerability detection
Gitleaks
Exposed secrets detection in code repositories
KICS
Infrastructure-as-Code security scanning
OpenAPI Fuzzer
API fuzz testing for OpenAPI/Swagger endpoints
Tools Used
DeepTraQ integrates multiple open-source security tools and proprietary scanners across its security modules to detect vulnerabilities, misconfigurations, and security risks.
Network Perimeter Scanning
| Tool | Purpose | References |
|---|---|---|
| Nmap | Network discovery and port/service detection | https://github.com/nmap/nmap https://nmap.org/docs.html |
| OpenVAS | Vulnerability scanning for network services and systems | https://www.openvas.org/ https://github.com/greenbone/openvas-scanner |
| Nuclei | Template-based vulnerability detection | https://docs.projectdiscovery.io/opensource/nuclei/overview https://github.com/projectdiscovery/nuclei |
Web Application Scanning
| Tool | Purpose | References |
|---|---|---|
| OWASP ZAP | Dynamic web application security testing | https://www.zaproxy.org/docs/ https://github.com/zaproxy/zaproxy |
| Nuclei | Template-based vulnerability detection | https://docs.projectdiscovery.io/opensource/nuclei/overview https://github.com/projectdiscovery/nuclei |
| OpenAPI Fuzzer | API fuzz testing for OpenAPI/Swagger endpoints | https://github.com/zaproxy/community-scripts |
| SSLyze / SSL Testing | SSL/TLS configuration analysis | https://github.com/testssl/testssl.sh |
Code Scanning
| Tool | Purpose | References |
|---|---|---|
| OSV Scanner | Detects vulnerable open-source dependencies | https://github.com/google/osv-scanner |
| DeepTraQ Proprietary Scanner | Static code analysis and security checks | DeepTraQ internal engine |
| Gitleaks | Detects exposed secrets in repositories | https://github.com/gitleaks/gitleaks |
| KICS | Infrastructure-as-Code security scanning | https://github.com/Checkmarx/kics |
Cloud Workload Scanning
| Tool | Purpose | References |
|---|---|---|
| OpenVAS | Detect vulnerabilities in workload operating systems | https://www.openvas.org/ https://github.com/greenbone/openvas-scanner |
| Nmap | Discover services and exposed ports on workloads | https://github.com/nmap/nmap https://nmap.org/docs.html |
| Nuclei | Template-based vulnerability detection | https://docs.projectdiscovery.io/opensource/nuclei/overview https://github.com/projectdiscovery/nuclei |
Cloud Security Posture Management (CSPM)
| Tool | Purpose | References |
|---|---|---|
| Prowler | Cloud configuration and compliance auditing | https://docs.prowler.com/introduction https://github.com/prowler-cloud/prowler |