Sanca

I was disappointed by the scanner of an EASM I had to use for a job, which was producing bad quality results, duplicates, false positives, and didn’t provide any evidences of its findings.
I couldn’t find any scanner that provided evidences, so I decided to create my own.

Sanca is a technology scanner that detects what technologies are running on a remote server or website, and fetches the vulnerabilities for each finding.
Soon, it will also be able to report technologies no longer supported by their editor.

Try it yourself on its demo website! The vulnerability detection is disabled, for ethical reasons.