# Install naabu with Homebrew, apk, Nix

Fast port scanner. Version 2.6.1 via Homebrew; verified 2026-05-06.

## Install

```sh
sudo av install brew:naabu
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install naabu
```

  Evidence: local Homebrew formula metadata

### Linux

- apk (92%):

```sh
sudo apk add naabu
```

  Evidence: Alpine Linux edge package indexes: naabu from https://dl-cdn.alpinelinux.org/alpine/edge/testing/x86_64/APKINDEX.tar.gz

- Nix (92%):

```sh
nix profile install nixpkgs#naabu
```

  Evidence: nixpkgs package indexes: pkgs/by-name/na/naabu/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## Package facts

- **Package key:** brew:naabu
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/naabu>
- **Version:** 2.6.1
- **Source summary:** Fast port scanner
- **Homepage:** <https://docs.projectdiscovery.io/tools/naabu/overview>
- **Repository:** <https://github.com/projectdiscovery/naabu>
- **Upstream docs:** <https://docs.projectdiscovery.io/opensource/naabu/running>
- **License:** MIT
- **Source archive:** <https://github.com/projectdiscovery/naabu/archive/refs/tags/v2.6.1.tar.gz>
- **Last updated:** 2026-05-06T00:31:51Z
- **Generated:** 2026-07-08T18:08:21+00:00

## Executables

- naabu (cli)
- naabu (alias)

## Build dependencies

- go

## Uses from macOS

- libpcap

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 2.6.1
- Package-manager updated: 2026-05-06
- Local data: ok
- Upstream repository: https://github.com/projectdiscovery/naabu
- Upstream latest detected: v2.6.1 (current)
## Project history and usage

Naabu is ProjectDiscovery's fast Go port scanner for enumerating open ports across hosts, lists, CIDRs, and discovery pipelines. The GitHub repository was created on January 21, 2020, and the project sits in the same offensive-security and attack-surface-discovery family as subfinder, httpx, nuclei, dnsx, and other ProjectDiscovery tools.

### Project history

The README and ProjectDiscovery docs describe Naabu as a simple scanner that performs SYN, CONNECT, and UDP probes and returns ports that respond. Over time it gained features useful in large recon jobs: IPv4/IPv6 scanning, DNS port scans, automatic IP deduplication, host discovery, CDN/WAF exclusion, JSON/CSV output, passive port enumeration through Shodan InternetDB, native UDP service probes, and nmap integration for follow-up service discovery.

### Adoption history

Naabu is adopted mostly by bug bounty hunters, pentesters, and security engineers who already compose ProjectDiscovery tools into pipelines. On July 1, 2026 the GitHub API showed 6,029 stars and 691 forks. Homebrew reported 1,696 installs over 365 days, which is meaningful but modest beside Go install paths, container usage, and Linux package channels.

### How it is used

The basic use is `naabu -host example.com` or feeding hosts on stdin with flags such as `-p`, `-top-ports`, `-json`, `-o`, and `-rate`. Operators use it as the port-enumeration stage between subdomain discovery and HTTP/service probing, often handing discovered ports to httpx, nuclei, or nmap. The docs call out that SYN scans need sufficient privileges, while non-root use falls back to CONNECT scans.

### Why package nerds care

Naabu is not trying to replace nmap as a universal network mapper. Its niche is fast, scriptable port discovery that produces clean output for the next tool in a recon pipeline. That separation of concerns is the package-nerd angle: use Naabu for speed and breadth, then hand fewer targets to slower service/version or vulnerability scanners.

### Timeline

- 2020-01-21: GitHub repository created.
- 2026-05-05: v2.6.1 published on GitHub.
- 2026-07-01: GitHub API showed 6,029 stars and Homebrew API showed 1,696 installs over 365 days.

### Related projects

- ProjectDiscovery
- nuclei
- httpx
- subfinder
- dnsx
- nmap
- Shodan InternetDB

### Sources

- <https://api.github.com/repos/projectdiscovery/naabu>
- <https://api.github.com/repos/projectdiscovery/naabu/releases/latest>
- <https://docs.projectdiscovery.io/opensource/naabu/overview>
- <https://docs.projectdiscovery.io/opensource/naabu/running>
- <https://formulae.brew.sh/api/formula/naabu.json>
- <https://formulae.brew.sh/formula/naabu>
- <https://github.com/projectdiscovery/naabu>
- <https://pkg.go.dev/github.com/projectdiscovery/naabu>


## Security Notes

narrow executable package without higher-risk signals.

- **Geiger risk:** green / low
- narrow executable package without higher-risk signals


## Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.


## Configuration files

- Unix: ~/.config/naabu/config.yaml
## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** naabu
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Other Package-Manager Records

- Nix - naabu: normalized package name match | nixpkgs package indexes: pkgs/by-name/na/naabu/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
- apk - naabu - 2.5.0-r2: normalized package name match | Alpine Linux edge package indexes: naabu from https://dl-cdn.alpinelinux.org/alpine/edge/testing/x86_64/APKINDEX.tar.gz | Fast port scanner written in go with a focus on reliability and simplicity | https://docs.projectdiscovery.io/tools/naabu
- apk - naabu-doc - 2.5.0-r2: normalized package name match | Alpine Linux edge package indexes: naabu-doc from https://dl-cdn.alpinelinux.org/alpine/edge/testing/x86_64/APKINDEX.tar.gz | Fast port scanner written in go with a focus on reliability and simplicity (documentation) | https://docs.projectdiscovery.io/tools/naabu


## Related links

- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Language runtime packages](https://www.automicvault.com/pkg/language-runtime-packages/) - Matched language runtime, compiler, or interpreter metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [go](https://www.automicvault.com/pkg/brew/go/) - Build dependency declared by Homebrew.
- [masscan](https://www.automicvault.com/pkg/brew/masscan/) - Shares av.db curated category or tags: cli, network-scanning, port-scanner, security.
- [favirecon](https://www.automicvault.com/pkg/brew/favirecon/) - Shares av.db curated category or tags: cli, go, reconnaissance, security.
- [gau](https://www.automicvault.com/pkg/brew/gau/) - Shares av.db curated category or tags: cli, go, reconnaissance, security.
- [nmap](https://www.automicvault.com/pkg/brew/nmap/) - Shares av.db curated category or tags: cli, network-scanning, port-scanner, security.
- [synscan](https://www.automicvault.com/pkg/brew/synscan/) - Shares av.db curated category or tags: cli, network-scanning, port-scanner, security.
- [amass](https://www.automicvault.com/pkg/brew/amass/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [bbot](https://www.automicvault.com/pkg/brew/bbot/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [chaos-client](https://www.automicvault.com/pkg/brew/chaos-client/) - Shares av.db curated category or tags: cli, go, reconnaissance, security.
- [nuclei](https://www.automicvault.com/pkg/brew/nuclei/) - Security-sensitive metadata or terminology overlaps. Shared terms: cli, scanner, scanning, security.
- [scilla](https://www.automicvault.com/pkg/brew/scilla/) - Both packages touch the same language runtime or ecosystem. Shared terms: cli, go, port, port-scanner, reconnaissance.

## Combined YAML source

View the package source record on GitHub. [combined/naabu.yml](https://github.com/automic-vault/db/blob/main/combined/naabu.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated configuration and credential file locations
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
