Update Discover v-22.9.14 : Formally BackTrack scripts. For use with Kali...
______ ___ ______ ______ _____ _ _ ______ _____ | \ | |____ | | | \ / |_____ |____/ |_____/ _|_ _____| |_____ |_____| \/ |_____ | \_ Whats New change v-22.9.14 : -...
View ArticleClik here to view.
Penetration-Testing-Toolkit v1.0 released: A web interface for various...
Penetration-Testing-Toolkit is a web based project to automate Scanning a network,Exploring CMS, Generating Undectable metasploit payload, DNS-Queries, IP related informations, Information Gathering,...
View ArticleClik here to view.
Updates Lynis v-1.6.3 : is a system and security auditing tool for Unix/Linux.
Changelog v-1.6.3 : New: – Added tests for Shellshock bash vulnerability [SHLL-6290] – Added test to determine if Snoopy is used [ACCT-9636] – New test for qdaemon configuration file [PRNT-2416] – Test...
View ArticleClik here to view.
Damn Small SQLi Scanner (DSSS) & Damn Small XSS Scanner (DSXS) released.
Damn Small SQLi Scanner (DSSS) has been made as a PoC to show that commercial (SQLi) scanners can be beaten under 100 lines of code. It supports GET and POST parameters, blind/error SQLi tests and...
View ArticleClik here to view.
Updates Lynis v-1.6.4 : is a system and security auditing tool for Unix/Linux.
changelog v-1.6.4 : New: – Boot loader detection for AIX [BOOT-5102] – Detection of getcap and lsvg binary – Added filesystem_ext to report – Detect rootsh Changes: – Hide errors when RPM database is...
View ArticleJoomlaScan V-1.2 released : Scans known vulnerable RFI path/files in Joomla...
Scans known vulnerable RFI path/files in Joomla and reports http response.#!usr/bin/python #Scans known vulnerable RFI path/files in Joomla and reports http response. #Changelog ver1.1: added proxy...
View ArticlePyfiscan v-12.2014 released : Free web-application vulnerability and version...
changelog and tool added December 2014 : + Add WordPress plugin vulnerabilities from WPScan database. + Added fingerprint data from freewvs for migration. + Added support for Gollum. + SquirrelMail...
View ArticleClik here to view.
Updates PHP mini vulnerability suite/PHPmvs v-4.2 : Multiple server/webapp...
Changelog v-4.2 beta : 4.2 is a small update to add a new method to fetch the URL via curl if file_get_contents fails because of reasons and added some MySQL Union and Error Based queries. PHPmvs is a...
View ArticleDomain/ip Fuzzing tool for vulnerability mining v-2.0 released.
Domain/ip Fuzzing tool for vulnerability mining v-2.0 Usage :usage: eg1: python run3102.py --target optional arguments: -h, --help show this help message and exit -V, --version show program's version...
View ArticleThe Android Forensic Scanner v-1.0 released.
The Android Forensics project is a Windows-based application that will copy all of the data on your Android mobile device, to your system. Then the application will scan that information and return any...
View ArticleClik here to view.
Updates wpscan v-2.6 : is a black box WordPress vulnerability scanner.
changelog Version 2.6 Released: 2014-12-19 : New : – Updates the readmes to reflect the new –usernames option – Improves plugin/theme version detection by looking at the “Version:” – Solution to avoid...
View ArticleUpdates Discover v-20.12.2014 – Custom bash scripts To automate various...
changelog v-20.12.2014 : + Added more Nessus mappings. + Updated Burp notes. + new bash Script Formerly BackTrack scripts. For use with Kali Linux. Custom bash scripts used to automate various...
View Articleparanoicscan released: is a search engine Vulnerability Scanner.
Tools Include : * XSS * SQL GET / POST * SQL GET * SQL GET + Admin * Directory listing * MSSQL * Jet Database * Oracle * LFI * RFI * Full Source Discloure * HTTP Information * SQLi Scanner * Bypass...
View ArticleClik here to view.
Shodan Tool v-0.6 released : Simple tool to search in Shodan.
A simple script to search on Shodan with the following options: Simple tool to search in Shodan [+] Search Results for IP [+] Search Results for quantity [+] Normal Search [+] List the saved query [+]...
View ArticleClik here to view.
Upddates Bluebox-ng v-0.1.8 : is a GPL VoIP/UC vulnerability scanner written...
Changelog v-0.1.8: + Some details added to the “.jshintrc” file + package.json Version updated. Bluebox-ng is a GPL VoIP/UC vulnerability scanner written using Node.js powers. Features Auto VoIP/UC...
View ArticleClik here to view.
Updates Arachni v-1.0.6 : Web Application Security Scanner Framework.
changelog v-1.0.6 (December 07, 2014) : arachni_rpcd — Fixed bug causing the –nickname option to not be understood. UI::Output — Flush output stream after each message. Platform::Manager Removed...
View ArticleClik here to view.
Update jSQL Injection v-0.6 Alpha : a java tool for automatic database...
This version includes major changes : – 10 dbs vendors supported: MySQL Oracle MSSQLServer PostgreSQL DB2 Firebird Informix Ingres MaxDb Sybase – JUnit tests – No more hex encoding: injection speed x 2...
View ArticleNosqlmap v-0.5 Released : Automated NoSQL Database Pwnage.
change v-0.5 (MAJOR RELEASE): – Web app attacks-Added $gt no value attack for PHP/ExpressJS applications. Thanks go to Petko D. Petkov for this one! – Web app attacks-Corrected labeling to reflect...
View ArticleClik here to view.
Updates Nikto v-19.01.2015 : a web server assessment tool.
Changelog v-19.01.2015: + Add -404string to match body content for negative respons… …es; allows regex. This is added to the strings specified in db_404_strings. — Renamed -IgnoreCode to -404code to be...
View ArticleClik here to view.
Updates Seccubus_v2 v-2.13 – OWASP ZAP Proxy : Easy automated vulnerability...
released dates 0-01-2015 – 2.13 – OWASP ZAP Proxy Seccubus OWASP ZAP Proxy release The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in...
View Article