Search: [pentest] - Bookmarks

ISIC -- IP Stack Integrity Checker http://isic.sourceforge.net/

Tue 20 Mar 2018 03:17:43 AM PDT

0xdeadbeef dot info | raptor's labs http://www.0xdeadbeef.info/

Tue 20 Mar 2018 03:10:15 AM PDT

An impressive collection of research papers, exploits, and utilities.

Penetration Testing | The Metasploit Project http://www.metasploit.com/

Tue 20 Mar 2018 03:08:28 AM PDT

A framework used by penetration testers for building custom exploits for infiltrating systems. Written in Ruby. Comes with a large library of payloads and other nifty and fascinating tools. It's worth learning to use if you're serious about penetration testing or exploit development. Also, the cutting edge of attack technologies winds up coming out of the Metasploit project.

Ophcrack http://ophcrack.sourceforge.net/

Tue 20 Mar 2018 03:06:04 AM PDT

A Windows password cracker that uses rainbow tables. A LiveCD is also available.

sqlninja - a SQL Server injection & takeover tool http://sqlninja.sourceforge.net/

Tue 20 Mar 2018 02:39:15 AM PDT

An application designed to assist in exploiting SQL injection attacks against applications based upon Microsoft SQL Server. Written in Perl. Fingerprints server, can bruteforce the password on the "sa" account, escalate privileges, create custom stored procedures to wreak havoc.

Default Passwords | CIRT.net http://www.cirt.net/passwords

Tue 20 Mar 2018 02:35:33 AM PDT

A massive online database of default passwords for networking hardware, embedded devices, and operating systems.

ORACLE SQL Injection Cheat Sheet http://ferruh.mavituna.com/oracle-sql-injection-cheat-sheet-oku/

Tue 20 Mar 2018 02:34:52 AM PDT

A handy cheatsheet for crafting SQL injection attacks against web apps backed by Oracle.

fwaeytens/dnsenum https://github.com/fwaeytens/dnsenum

Tue 20 Mar 2018 02:19:58 AM PDT

A utility that digs through DNS domain records to find things that aren't obvious, such as subdomains, hostnames with more than one kind of record associated with them, and IP address range calculation. It even Google scrapes to gather intelligence.

UCSniff IP Video Sniffer http://ucsniff.sourceforge.net/

Tue 20 Mar 2018 02:10:56 AM PDT

UCSniff is a VoIP & IP Video Security Assessment tool that integrates existing open source software into several useful features, allowing VoIP and IP Video owners and security professionals to rapidly test for the threat of unauthorized VoIP and Video Eavesdropping. Written in C/C++, and available on Linux and Windows, the software is free and available for anyone to download, under the GPLv3 license.

BlindElephant Web Application Fingerprinter http://blindelephant.sourceforge.net/

Tue 20 Mar 2018 01:36:14 AM PDT

Determines what version of a web app that it already knows about is run by comparing hashes of certain files with precomputed hashes from known versions. Designed to be low-bandwidth, fast, and automatable. Runs as a stand-alone tool or can be included as a Python module in other software.

sbilly/awesome-security https://github.com/sbilly/awesome-security

Mon 19 Mar 2018 10:46:20 PM PDT

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

[lcamtuf.coredump.cx] http://lcamtuf.coredump.cx/

Mon 19 Mar 2018 07:59:07 PM PDT

Links per page

Filters