Difference between revisions of "Pen-testing"
From Splatspace
(→Tools) |
|||
| Line 15: | Line 15: | ||
* [http://code.google.com/p/skipfish/ Skipfish] | * [http://code.google.com/p/skipfish/ Skipfish] | ||
* [http://w3af.sourceforge.net/ w3af] | * [http://w3af.sourceforge.net/ w3af] | ||
| + | * [http://sectools.org/tool/wfuzz/ wfuzz] | ||
* [https://www.owasp.org/index.php/Category:OWASP_WebScarab_Project WebScarab] | * [https://www.owasp.org/index.php/Category:OWASP_WebScarab_Project WebScarab] | ||
* http://freeworld.thc.org/thc-hydra/ | * http://freeworld.thc.org/thc-hydra/ | ||
Revision as of 22:09, 12 November 2011
Contents |
Introduction
TBD
Tools
A list of some popular tools used for assessing network and application security.
- Wireshark
- OpenVAS (formerly Nessus)
- Metasploit
- NMap
- Skipfish
- w3af
- wfuzz
- WebScarab
- http://freeworld.thc.org/thc-hydra/
- http://www.foofus.net/?cat=4
- http://security-sh3ll.blogspot.com/2010/03/fireforce-firefox-brute-force-attack.html
Linux Distros
- Network Security Toolkit - Fedora based pen-testing distro
- Backtrack Linux - Ubuntu based pen-testing distro
