Difference between revisions of "Tools (Hacking)"
Jump to navigation
Jump to search
Line 11: | Line 11: | ||
* [http://www.chiark.greenend.org.uk/~sgtatham/putty/ putty] | * [http://www.chiark.greenend.org.uk/~sgtatham/putty/ putty] | ||
* [http://technet.microsoft.com/en-us/sysinternals/bb896649.aspx pstools] | * [http://technet.microsoft.com/en-us/sysinternals/bb896649.aspx pstools] | ||
* [http://technet.microsoft.com/en-us/sysinternals/bb896652.aspx | * [http://technet.microsoft.com/en-us/sysinternals/bb896652.aspx RegMon]/[http://technet.microsoft.com/en-us/sysinternals/bb896642.aspx FileMon]/[http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx procmon] (from sysinternals) | ||
* [http://pentestmonkey.net/tools/unix-privesc-check/ unix-privesc-check] | * [http://pentestmonkey.net/tools/unix-privesc-check/ unix-privesc-check] | ||
* [http://freeworld.thc.org/thc-amap/ amap] | * [http://freeworld.thc.org/thc-amap/ amap] |
Revision as of 15:28, 10 September 2008
Useful tools
This is my attempt to maintain a list of tools. I might eventually sort it by OS or purpose or whatever, but eh? Note that I'm not including wireless tools in this list. So, in no particular order, ...
General (uncategorized)
- nmap
- nessus
- metasploit
- hping3
- netcat
- wireshark (ethereal)
- putty
- pstools
- RegMon/FileMon/procmon (from sysinternals)
- unix-privesc-check
- amap
- xprobe2
- ettercap
- BiLE.pl
- LfT
- Wireshark SSL cracker
- gsecdump
- p0f
- nbtscan
Enumeration/Passwords
- user2sid/sid2user
- enum
- fgdump
- pwdump
- cain&able
- rcrack (+tables)
- john
- hydra
- libssh2 0.11 (http://0xbadc0de.be/libssh/libssh-0.11.tgz)
- pshtoolkit (pass-the-hash toolkit)
- samba (w/ hash passing)
Web
- DirBuster (http://www.owasp.org/index.php/Category:OWASP_DirBuster_Project)
- nikto.pl
- paros
Stuff to investigate
- SMBProxy (http://www.cqure.net/wp/11/)
Useful Non-metasploit Exploits
- vmsplice (http://www.milw0rm.com/exploits/5093)
Firefox Addons
I don't actually use all these on a regular basis, but I found some on another site.
- Add N Edit Cookies
- Firebug
- Foxy Proxy
- Hackbar
- Header Monitor
- Noscript
- Poster
- Server Spy
- SQL Inject Me
- SSL Blacklist
- Tamper Data
- User Agent Switcher
- Web Developer
This is cool enough that I had to link it from somewhere
- Security Bookmarklets (http://ha.ckers.org/bookmarklets.html)
Wireless tools
TODO: learn to hack wireless. :)
Stuff I wrote
- See My Projects