• Skip to content
  • Skip to primary sidebar
  • Skip to secondary sidebar
  • Google Dorks
  • Shodan Queries
  • Malware Sources
  • Privacy Policy

PenTestIT

Your source for all things Information Security!

You are here: Home / Archives for Tools

Tools Archives:

UPDATE: Wifiphisher v1.3!

Posted: 2 years ago by @pentestit 4614 views

An older post describing Wifiphisher can be found here. Recently an update was made to the open source tool that helps you execute speedy and automated phishing attacks against wireless networks. Most notably, this new release includes the Lure10 attack - a novel way for associating automatically with any device that is within range running the latest Windows. Read more about UPDATE: Wifiphisher v1.3!

WPForce & Yertle: The WordPress Attack Suite!

Posted: 2 years ago by @pentestit 4805 views

WPForce

There are a lot of WordPress security tools out there such as the WPScan, vulnerability scanner. Now, there is an addition - WPForce, which I consider is a more offensive tool that performs brute force attempts against a targeted WordPress installation. Read more about WPForce & Yertle: The WordPress Attack Suite!

APT2: An Automated Penetration Testing Toolkit!

Posted: 2 years ago by @pentestit 8429 views
Updated: April 9, 2017 at 4:48 am

APT2 v1.0-20170613

All of us know that a typical penetration testing engagement begins with reconnaissance (run nmap, etc.), testing for services & their default passwords then moving onto launching common exploits (Metasploit, etc.), getting access and then lateral movement. This is okay on small networks, but tends to be slow on large networks. Fortunately, we have APT2 to help us! Read more about APT2: An Automated Penetration Testing Toolkit!

LIEF: Cross-Platform Library to Interact With ELF, PE and Mach-O Formats!

Posted: 2 years ago by @pentestit 3021 views
Updated: July 3, 2017 at 4:05 am

LIEF

While there are multiple platform dependent libraries such as pefile, pyelftools, pwntools in Python and objdump and similar tools. Now, there is LIEF, an open source cross platform library to parse, modify and abstract ELF, PE and MachO file formats. Read more about LIEF: Cross-Platform Library to Interact With ELF, PE and Mach-O…

Acra: Database Protection With Encryption & Intrusion Detection!

Posted: 2 years ago by @pentestit 2271 views

This year at RSA, I remember meeting with a vendor who dealt with database security by encrypting the database. I forget the name, but found a open source project - Acra, which I think is a promising product if designed & developed right. Read more about Acra: Database Protection With Encryption & Intrusion Detection!

Pwnbox: A Docker Container For Reverse Engineering & Exploitation!

Posted: 2 years ago by @pentestit 4156 views
Updated: March 29, 2017 at 9:33 pm

Pwnbox

Since I blogged a bit about docker security tools, I thought of continuing the trend and introduce Pwnbox, is an open source docker container that has tools to aid you in reverse engineering and exploitation. It allows you to package up an container with all of the tools of trade you need in a capture-the-flag situation, or elsewhere too! Read more about Pwnbox: A Docker Container For Reverse Engineering & Exploitation!

Ostinato: The Network Traffic Generator and Analyzer!

Posted: 2 years ago by @pentestit 8193 views

Ostinato

I had covered Ostinato in our earlier blog, before it got blown away and was reminded of it when I was working on the Apache Struts S2-046 vulnerability. I had a .pcap file which I had to replay and this is where Ostinato came into picture. A bit off track, if you want to protect yourself from S2-045 & S2-046, and your application is on Apache, simply add the following to your .htaccess file: <IfModule mod_headers.c> RequestHeader unset Content-Type RequestHeader unset Read more about Ostinato: The Network Traffic Generator and Analyzer!

  • « Previous Page
  • Page 1
  • …
  • Page 11
  • Page 12
  • Page 13
  • Page 14
  • Next Page »

Primary Sidebar

Recent Posts

  • UPDATE: Buscador Version 2.0
  • BEEMKA: Basic Electron Post-Exploitation Framework
  • UPDATE: Cameradar v3.0.1
  • identYwaf: A Tool to Help You Identify Web Application Firewalls
  • UPDATE: XSStrike 3.1.2

Featured Post

UPDATE: Buscador Version 2.0

February 1, 2019 By Black

I briefly mentioned about Buscador in my previous post titled – List of Operating Systems for OSINT (Open-Source Intelligence). A few days ago, an updated – Buscador Version 2.0 was made available by the author. This post is about the changes made in the latest version. Share this post on: witteracebookhatsAppoogle+ufferLinkedin It

Secondary Sidebar

Categories

  • Docker Security
  • Fuzzing
  • Malware Analysis
  • Open Source
  • OSINT
  • Penetration Testing
  • Reverse Engineering
  • Site News
  • Tool Updates
  • Tools
  • Uncategorized
  • Vulnerability Assessment
  • Web Application Security
  • Wireless

Archives

  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • October 2018
  • September 2018
  • August 2018
  • July 2018
  • May 2018
  • April 2018
  • March 2018
  • February 2018
  • January 2018
  • December 2017
  • November 2017
  • October 2017
  • September 2017
  • August 2017
  • July 2017
  • June 2017
  • May 2017
  • April 2017
  • March 2017

Tags

Anchore APT2 Brute Force CloudFlare Cross-Site Scripting Cuckoo Sandbox DataSploit docker docker scan dockerscan FOCA Kali Linux malware malware analysis man-in-the-middle Metadata Metasploit Microsoft Windows MicroSploit Nmap open source OSINT OSRFramework OWASP OWASP Dependency-Check penetration testing penetration testing toolkit PowerShell PowerSploit python Raspberry Pi RedSnarf Responder reverse engineering Shodan Short Post software composition analysis SQL injection Sysdig Falco vulnerability assessment Web Application Security WiFi Wireshark WordPress WPXF

Copyright © 2019 - PenTestIT | Information shared to be used for LEGAL purposes only!