commix – Automated All-in-One OS Command Injection and Exploitation Tool.evilgrade – The update explotation framework.faraday – Collaborative Penetration Test and Vulnerability Management Platform.BeeF – The Browser Exploitation Framework Project.ExploitPack – Graphical tool for penetration testing with a bunch of exploits.Burp Suite – An integrated platform for performing security testing of web applications.Metasploit Framework – World’s most used penetration testing software.Fedora Security Lab – Provides a safe test environment to work on security auditing, forensics, system rescue and teaching security testing methodologies.Parrot – A distribution similar to Kali, with multiple architectures.BackBox – Ubuntu-based distribution for penetration tests and security assessments.Pentoo – Security-focused LiveCD based on Gentoo.NST – Network Security Toolkit distribution.BlackArch – Arch Linux-based distribution for penetration testers and security researchers.ArchStrike – An Arch Linux repository for security professionals and enthusiasts.Kali – A Linux distribution designed for digital forensics and penetration testing.Penetration testing Tools Penetration Testing Distributions It aims to improve the user experience of various debuggers Voltron is an extensible debugger UI toolkit written in Python.Voltron – A hacky debugger UI for hackers.Exploit Writing Tutorials – Tutorials on how to develop exploits.Shellcode Examples – Shellcodes database.Shellcoding for Linux and Windows Tutorial -with example windows and Linux shellcode.Shellcode Tutorial – Tutorial on how to write shellcode. Everything is organized in a fashion that is cohesive to the Penetration Testing Execution Standard (PTES) and eliminates a lot of things that are hardly used. The Pentes ters Framework – PTF attempts to install all of your penetration testing tools (latest and greatest), compile them, build them, and make it so that you can install/update your distribution on any machine.Vulnerability Assessment Framework – Penetration Testing Framework.pentest-wiki is a free online security knowledge library for pentesters / researchers.PENTEST-WIKI – A free online security knowledge library for pentesters / researchers.Open Web Application Security Project® (OWASP) is a nonprofit foundation that works to improve the security of software.OWASP – Open Web Application Security Project.The penetration testing execution standard consists of seven (7) main sections.PTES – Penetration Testing Execution Standard.The Metasploit Unleashed (MSFU) course is provided free of charge by Offensive Security in order to raise awareness for underprivileged children in East Africa.Metasploit Unleashed – Free Offensive Security Metasploit course.Online Penetration testing Resources Penetration Testing Resources Proxies and Machine-in-the-Middle (MITM) Tools.Network Traffic Replay and Editing Tools.LanScan Pro integrated: To perform an initial scan of your network, a version of LanScan Pro is integrated in Debookee.Real-time packet capture analysis: extraction of requests details such as: HTTP, HTTPS, DNS, TCP, DHCP.Now you can analyze the traffic of devices that can’t support packet capture, such as mobile, tablets, etc. Intercept traffic from any device on your network: iPhone, iPad, Android, BlackBerry, PC, Mac, etc.Decrypt IMAPS email traffic (soon on POP3s/SMTPs/FTPS).See full HTTPS URLs, HTTPS headers and HTTPS response codes (Full raw payload data is not shown).One click SSL/TLS decryption for your own and all targets traffic.Debookee is a LAN and Wi-Fi packet-capture tool and network analyzer that allows you to see what your devices are sending over the network.
0 Comments
Leave a Reply. |