Nerva is a high-performance command-line interface (CLI) tool written in Go for rapid service fingerprinting. It identifies over 120 network protocols across TCP, UDP, and SCTP transports, extracting rich metadata like versions and configurations. Designed for speed and pipeline integration, Nerva is a maintained fork of fingerprintx by Praetorian.
Key Features:
- 120+ Protocol Plugins: Covers databases, remote access, web services, messaging, industrial, and telecom protocols.
- Multi-Transport Support: Supports TCP (default), UDP, and SCTP (Linux only).
- Rich Metadata: Extracts versions, configurations, and security-relevant details.
- Fast Mode: Option to scan only default ports for quicker reconnaissance.
- Flexible Output: Provides JSON, CSV, or human-readable formats.
- Pipeline Friendly: Easily integrates with tools like Naabu or Nmap.
- Go Library: Can be imported directly into Go applications.
Use Cases:
- Penetration Testing: Quickly identify potential attack vectors.
- Asset Discovery Pipelines: Integrate for large-scale asset inventory.
- CI/CD Security Scanning: Verify expected services are exposed in deployment pipelines.
- Bug Bounty Reconnaissance: Enumerate services across targets to find interesting endpoints.
- Telecom Network Analysis: Fingerprint Diameter nodes in LTE/5G networks using SCTP.
