Tag: scanning

Hacking, Penetration Testing

Fast full-featured SSL scanner

SSLyze is a Python tool that can analyze the SSL configuration of a server by connecting to it. It is designed to be fast and comprehensive, and should help organizations and testers identify mis-configurations affecting their SSL servers. Key features Multi-processed and multi-threaded scanning: it’s very fast. Support for all SSL protocols, from SSL 2.0 …

Hacking, Penetration Testing

Find vulnerable routers and devices on the Internet

The Routerhunter is an automated security tool que finds vulnerabilities and performs tests on routers and vulnerable devices on the Internet. The Routerhunter was designed to run over the Internet looking for defined ips tracks or random in order to automatically exploit the vulnerability DNSChanger on home routers. The script explores four vulnerabilities in routers …

Penetration Testing, Scanners

Network infrastructure Penetration Testing

SPARTA is a python GUI application which simplifies network infrastructure penetration testing by aiding the penetration tester in the scanning and enumeration phase. It allows the tester to save time by having point and click access to his toolkit and by displaying all tool output in a convenient way. If little time is spent setting …

General, Linux, Programming, Ubuntu

First Official Pro Linux Laptop Released!

First official pro notebook that is released with Linux: DELL XPS 13, Developers Edition. Enjoy Ubuntu 12.04 LTS on up to 8GB RAM, 256GB SSD HD, full HD 1080p display on less than 1.40kg. Congrats to DELL for stepping forward on offering the Linux world to the IT/Engineering-Pro world with such nice specs!

Firewall, Host discovery, Network, Port Scanning

Idle Scanning with hping2

hping is a TCP/IP packet assembler/analyzer. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features. A subset of the stuff you can do using hping: Firewall testing Advanced port scanning Network testing, using different protocols, TOS, fragmentation Manual path …

Detection, Enumeration, Penetration Testing, Scanners, Security Software, Vulnerabilities, WEB

Testing your web application for vulnerabilities | Part 1

w3af is a Web Application Attack and Audit Framework. The project’s goal is to create a framework to help you secure your web applications by finding and exploiting all web application vulnerabilities. It is developed using Python to be easy to use and extend, and licensed under GPLv2.0. w3af is fully extensible and if you …

Exploitation, Metasploit, Vulnerabilities

Vulnerability scanning and Metasploit

A vulnerability scanner is an automated computer program designed to assess computers, computer systems, networks or applications and look for weaknesses. The program probes a system by sending data to it and analyzing the responses received. To identify any vulnerabilities on the target system, a vulnerability scanner uses its vulnerability database as reference. Don’t forget …

Metasploit

Port scanning with Metasploit auxiliary

Although nmap is the de-facto port scanner and has become a synonym to port scanning, Metasploit offers its own port scanners. These port scanners are available in auxiliary modules. In msfconsole execute search portscansearch portscan to see a list of all available portscanners in MSF. To select one of the available port scanners, let’s say …