Skip to content


Repository files navigation

Discord | Installation Guide | Usage Guide 漎儭

Fast, smart, effective.

Arch Linux package Built with Rust GitHub All Releases Discord Actions

Docker Kali Arch apple
docker pull rustscan/rustscan:latest
Link to Documentation yay -S rustscan brew install rustscan

What is this?


The Modern Port Scanner. Find ports quickly (3 seconds at its fastest). Run scripts through our scripting engine (Python, Lua, Shell supported).


  • Scans all 65k ports in 3 seconds.
  • Full scripting engine support. Automatically pipe results into Nmap, or use our scripts (or write your own) to do whatever you want.
  • Adaptive learning. RustScan improves the more you use it. No bloated machine learning here, just basic maths.
  • The usuals you would expect. IPv6, CIDR, file input and more.
  • Automatically pipes ports into Nmap.

Important Links

Installation Guide Documentation Discord

Table of Contents

Why RustScan?

RustScan is a modern take on the port scanner. Sleek & fast. All while providing extensive extendability to you.

Not to mention RustScan uses Adaptive Learning to improve itself over time, making it the best port scanner for you.



Speed is guaranteed via RustScan. However, if you want to run a slow scan due to stealth, that is possible too.

Firstly, let's talk code.

We have tests that check to see if RustScan is significantly slower than the previous version. If it is, the continuous integration fails, and we can't commit code to master unless we make it faster.

HyperFine is used to monitor RustScan's performance over time to answer the question, "Are we getting faster? Are we getting slower?".

Every pull request is reviewed by one person, but more often than not, two people review it. We test it manually and ensure the code doesn't negatively affect performance.

Read more here.

儭 Extensible


RustScan piping results into the custom Python script

RustScan has a new scripting engine that allows anyone to write scripts in most languages. Python, Lua, and Shell are all supported.

Want to take your found ports and pipe them into Nmap for further analysis? That's possible. Want to run smb-enum if SMB is found open? Possible.

The possibilities are endless -- and you can write scripts in whatever language you feel comfortable with.

Read more here.



RustScan automatically fine-tunes itself to match the host OS

RustScan has a cool set of features called "Adaptive Learning". These features "learn" about the environment you are scanning and how you use RustScan to improve itself over time.

We use this umbrella term for any feature that fits this criterion. The list constantly changes, so check out our wiki for more information.

抽旬 Accessible


RustScan is one of the first penetration testing tools that aims to be entirely accessible.

Most penetration testing tools are not accessible, which negatively affects the whole industry.

RustScan has continuous integration testing that aims to ensure it is accessible, and we are constantly working on ways to improve our accessibility and ensure everyone can use RustScan.

Full Installation Guide

You can find our guide here.

Community Distributions

Here are all of RustScan's community distributions.

If you maintain a community distribution and want it listed here, leave an issue / pull request / Discord message or however, you want to let us know.

Packaging status

元 Usage

We have 2 usage guides. Basic Usage and Things you may want to do.

We also have documentation about our config file here.


Contributing Read this to learn how.


All Contributors

Thanks goes to these wonderful people (emoji key):




Bernardo Araujo

Izzy Whistlecroft



Atul Bhosale

Thomas Gotwig

R矇mi Gourdon

Ben (CMNatic)

Alessandro Ferrari




Niklas Mohrin

Artem Polishchuk



Dmitry Savintsev

Sebastian Andersson

Matt Corbin





This project follows the all-contributors specification. Contributions of any kind welcome!