Archives for May, 2012
Webapp-Exploit-Payloads is a collection of payloads for common webapps. For example Joomla and Wordpress.
Usage::
$ python bin/genpayload.py src/js/wordpress/newadmin/ -o out.js
More Information: here
Download Webapp-Exploit-Payloads v1.0
Thanks to our friend ...
The Materials of HITB Security Conference 2012 - Amsterdam has been published.
Name
Size
CLOSING KEYNOTE - Ms Jaya Baloo - Identity Privacy and Security.pdf
1.9M
D1 SIGINT - Marinus ...
DoS Recon takes as input a search url, a regex to identify the number of results, and a dictionary file, and returns the search term ...
30
May
WebVulScan v0.11 Released
WebVulScan is a web application vulnerability scanner. It is a web application itself written in PHP and can be used to test remote, or local, ...
HULK is a web server denial of service tool written for research purposes. It is designed to generate volumes of unique and obfuscated traffic at ...
A Pen Test Drop Box distro for the Raspberry Pi.
Tools Included
Information Gathering
dnstracer
lynis
netmask
tcptraceroute
Network Mapping
fping
hping3
nbtscan
netdiscover
nmap
onesixtyone
p0f
sslscan
tcptraceroute
xprobe
zenmap
Vulnerability Identification
curl
flasm
ratproxy
smbclient
sqlmap
w3af
wapiti
wbox
Penetration
ExploitDB
metasploit (with db_autopwn)
S.E.T
Privilege Escalation
bkhive
chntpw
dsniff
etherape
ettercap
john
medusa
netsed
ophcrack
packeth
packit
samdump2
ssldump
tcpick
tcpreplay
wireshark
yersinia
Maintaining Access
6tunnel
cryptcat
dns2tcp
proxychains
ptunnel
socat
stunnel4
tinyproxy
udptunnel
vidalia
Radio Network Analysis
airodump-ng
aircrack-ng
airdecloak-ng
packetforge-ng
wash
airdecap-ng
ivstools
makeivs-ng
airbase-ng
aireplay-ng
airserv-ng
airdriver-ng
airmon-ng
airtun-ng
btscanner
obexftp
reaver
VoIP Analysis
sipcrack
Digital Forensic
aimage
chkrootkit
foremost
galleta
magicrescue
mboxgrep
scalpel
scrub
vinetto
wipe
Reverse Engineering
dissy
Miscellanious
ipcalc
sendemail
More Information: here
Download PwnPi ...
CSRF-Request-Builder is a tool for testing CSRF against web services. Such as RESTful JSON or even SOAP web services.
This is a tool for testing CSRF ...
24
May
Wireshark v1.4.13 Released
Wireshark is the world’s foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It is the de ...
24
May
Wireshark v1.6.8 Released
Wireshark is the world’s foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It is the de ...
Published by Christian Kirsch
At Rapid7, we often get asked what the top 10 Metasploit modules are. This is a hard question to answer: What does ...