TurboScan is a high-performance directory scanner written in Go, delivering up to 3× faster speeds than ffuf and 2.3× faster than Gobuster — with superior stability, concurrency and accuracy.
TurboScan is designed for:
- 🔥 Bug bounty hunters\
- 🛡️ Pentesters & red teams\
- 🧪 Security researchers\
- ⚙️ DevSecOps pipelines\
- 💻 CTF / OSCP practice
It provides high-speed scanning, precise result filtering, recursive crawling, smart retry logic, and an optimized custom HTTP engine capable of reaching 450--500 requests/sec on real targets.
Tool Requests/sec Time (100k wordlist)
ffuf ~148 RPS 11m 15s Gobuster ~196 RPS 8m 30s TurboScan 450--500 RPS 3m 42s
- Custom-tuned Go
http.Transport - MaxIdleConns: 1000
- MaxIdleConnsPerHost: 500
- Forced HTTP/2 for max speed
- Aggressive Keep-Alive reuse
- Compression enabled for smaller responses
- Fully parallelized\
- Zero blocking on output\
- Stable at 500+ threads
- Retries temporary network errors\
- Exponential backoff
-mc 200,301,302,401,403
-e php,html,txt,bak,zip,sql
-r -depth 3
-rate 50
turboscan/
├── main.go
├── go.mod
├── scanner/
│ ├── scanner.go
│ ├── client.go
│ ├── worker.go
│ └── filter.go
└── utils/
├── wordlist.go
├── output.go
└── stats.go
winget install -e --id GoLang.Go
git clone https://github.com/yourname/turboscan
cd turboscan
go mod tidy
go build -o turboscan
./turboscan -u https://example.com -w wordlist.txt
./turboscan -t 100 -u https://example.com -w common.txt
./turboscan -e php,html -u https://example.com -w dirs.txt
./turboscan -r -depth 3
./turboscan -rate 50
./turboscan -o out.csv
./turboscan -json out.json
[+] 403 - https://target.com/.bash_history [Size: -1] [Time: 31ms]
[+] 200 - https://target.com/register [Size: -1] [Time: 42ms]
[*] Scan Statistics:
Total Requests: 20482
Successful: 12
Failed: 20470
Duration: 18.45s
Req/sec: 1110
For authorized security testing only.
MIT © 2025 --- 1fanya