Sanca
I was disappointed by the scanner of an EASM I had to use for a job, which
was producing bad quality results, duplicates, false positives, and didn’t
provide any evidences of its findings.
I couldn’t find any scanner that provided evidences, so I decided to create
my own.
Sanca is a technology scanner that detects what technologies are running on a
remote server or website, and fetches the vulnerabilities for each finding.
Soon, it will also be able to report technologies no longer supported by their
editor.
Try it yourself on its demo website! The vulnerability detection is disabled, for ethical reasons.