Hey guys! Wish you all are fine. Thanks for joining another Sunday with us.Today we gonna discuss About Hacking! We gonna know about Hacking Tool or Software And How To use them Safely.There are Three stage of Hacking -- 1. Information gathering. 2.Finding vulnerabilities 3.Exploitation. I put here tools for all stages From Information gathering to Exploitation. And also two super powerful password cracker And Guys These are not only tools There are Thousands of out there. But here i show you Some Basic & Advanced tools But Very effective So Let the game began-
Information gathering
1.Nmap or Network Mapper:
Nmap is a free and open source utility for network discovery and security auditing. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. It was designed to rapidly scan large networks, but works fine against single hosts. Nmap runs on all major computer operating systems, and official binary packages are available for Linux, Windows, Mac OS X. It Also has a GUI version that called ZenMap You can download it here
2:Wireshark
Wireshark is the world's foremost network protocol analyzer. It lets you see what's happening on your network at a microscopic level. It is the de facto (and often de jure) standard across many industries and educational institutions. It can do Live capture and offline analysis.Live data can be read from Ethernet, IEEE 802.11, PPP/HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, and others .Decryption support for many protocols, including IPsec, ISAKMP, Kerberos, SNMPv3, SSL/TLS, WEP, and WPA/WPA2.Runs on Windows, Linux, OS X, Solaris, FreeBSD, NetBSD, and many others Download Wiresark here
3:NetworkMiner
NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows that can detect the OS, hostname and open ports of network hosts through packet sniffing or by parsing a PCAP file. NetworkMiner can also extract transmitted files from network traffic.It can do 1.Network Forensics 2.Network Sniffing 3.PCAP Parser 4.Digital Forensics 5.Packet Sniffer Download NetworkMiner Here
Vulnerability Finding
4:Microsoft Baseline Security Analyze
The Microsoft Baseline Security Analyzer provides a streamlined method to identify missing security updates and common security misconfigurations. MBSA 2.3 release adds support for Windows 8.1, Windows 8, Windows Server 2012 R2, and Windows Server 2012. To easily assess the security state of Windows machines, Microsoft offers the free Microsoft Baseline Security Analyzer (MBSA) scan tool. MBSA includes a graphical and command line interface that can perform local or remote scans of Microsoft Windows systems. Download Here
The Microsoft Baseline Security Analyzer provides a streamlined method to identify missing security updates and common security misconfigurations. MBSA 2.3 release adds support for Windows 8.1, Windows 8, Windows Server 2012 R2, and Windows Server 2012. To easily assess the security state of Windows machines, Microsoft offers the free Microsoft Baseline Security Analyzer (MBSA) scan tool. MBSA includes a graphical and command line interface that can perform local or remote scans of Microsoft Windows systems. Download Here
5:Nexpose
Rapid7 Nexpose is a vulnerability scanner which aims to support the entire vulnerability management lifecycle, including discovery, detection, verification, risk classification, impact analysis, reporting and mitigation. It is sold as standalone software, an appliance, virtual machine, or as a managed service or private cloud deployment. User interaction is through a web browser. There is a free but limited community edition. Download here
6:Acunetix Web vulnerability scanner
Acunetix Web Vulnerability Scanner was released a heuristic tool designed to replicate a hacker’s methodology to find dangerous vulnerabilities — like SQL injection and cross site scripting before hackers do. Acunetix WVS brings an extensive feature-set of both automated and manual penetration testing tools, enabling security analysts to perform a complete vulnerability assessment, and repair detected threats, with just the one product.
Exploitation
7:Metasploit
Metasploit took the security world by storm.It is an advanced open-source platform for developing, testing, and using exploit code. The extensible model through which payloads, encoders, no-op generators, and exploits can be integrated has made it possible to use the Metasploit Framework as an outlet for cutting-edge exploitation research. It ships with hundreds of exploits, as you can see in their list of modules. This makes writing your own exploits easier, and it certainly beats scouring thedarkest corners of the Internet for illicit shellcode of dubious quality. One free extra is Metasploitable, an intentionally insecure Linux virtual machine you can use for testing Metasploit and other exploitation tools without hitting live servers. Download Here
8:sqlmap
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of back-end database servers. It comes with a broad range of features, from database fingerprinting to fetching data from the DB and even accessing the underlying file system and executing OS commands via out-of-band connections. The authors recommend using the development release from their Subversion repository Download here
9:Social Engineer Toolkit
Network Security Tools
Aircrack
THC Hydra (Extra)
When you need to brute force crack a remote authentication service, Hydra is often the tool of choice. It can perform rapid dictionary attacks against more then 30 protocols, including telnet, ftp, http, https, smb, several databases, and much more.
Ditulis oleh
Unknown - Minggu, 01 Februari 2015 - 00.32
Belum ada komentar untuk "Top 10 Most Used Hacking Tools !"
Posting Komentar