Clik here to view.
Updates sslyze : Fast and full-featured SSL scanner.
Changelog 07.02.2015: + sslyze.py; Ensure title attribute is always returned + Fix StartTLS LDAP + Fix trust store import once and for all pt 51 SSLyze is a Python tool that can analyze the SSL...
View ArticleClik here to view.
Updates netool.sh V- 4.4 : MitM PENTESTING OPENSOURCE T00LKIT.
Changelog v-4.4: * netool.sh => “improved” added zenity “Displays” * netool.sh => “improved” nmap scanner menu “Redesign/Improved” * netool.sh => “improved” scan WAN for hosts “port nmap.xml...
View ArticleDork-Cli : Google hacking / dorking command-line aid for finding potentially...
Dork-Cli : Command-line utility for finding potentially vulnerable dynamic webpages within a Google Custom Search Engine (CSE) using Google dorks. Setup In order to use this program you need to...
View ArticleClik here to view.
Yosuo is A ruby script that scans for vulnerable & exploitable 3rd-party web...
Yasuo is a ruby script that scans for vulnerable 3rd-party web applications. While working on a network security assessment (internal, external, redteam gigs etc.), we often come across vulnerable...
View ArticleTools : a Collection security and hacking tools; likes exploits, proof of...
This section offers a selection of our fully featured security and hacking tools from NullSecurity. + Automation : This section includes automation tools and wrapper scripts for well-known and public...
View ArticleClik here to view.
Updates w3af v-1.6.45 : web application attack and audit framework, the open...
change v-1.6.45 Huge improvements! – HTTP response parsers are now run in a different process – Added support for SSL’s SNI using OpenSSL – Added support for scanning servers with specific SSL...
View ArticleClik here to view.
IIS Short Name Scanner : The latest version of scanner for IIS short file...
Microsoft IIS contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered during the parsing of a request that contains a tilde character (~). This may allow a...
View ArticleFreak Scanner : Multithreaded FREAK scanner, used to detect SSL EXP Ciphers.
Multithreaded Python FREAK scanner, used to detect SSL EXP Ciphers, vulnerable to CVE-2015-0204 It’s pretty quick, should be able to scan just shy of 1k hosts in an hour. The output is messy though,...
View ArticleUpdates Tools : a Collection security and hacking tools; likes exploits,...
Change and Update 14.03.2015 updates vulnerability scanner: ## Blackbox vulnerability scanne for the concrete5 CMS ## Detects concrete5 CMS, version and associated vulnerabilities ## Detects full path...
View ArticleClik here to view.
Reconnaissance tools is a Python Vulnerability Scanner.
Reconnaissance tools is a Python Command Line tool (cli) Vulnerability Scanner. List of Tools : – Automatic Vulnerability Scanner – Command Line tool : Pings all IPs in current network then uses...
View ArticleSCADA scan is a ics/scada scanner to detect and bruteforce ModBus and DNP3...
ics/scada perl tool for ModBus and DNP3 devices ScadaScan finds SCADA slaves in the network. The tool works on the IP range that is provided on command line and currently supports enumeration of DNP 3...
View ArticleClik here to view.
Updates Nikto v-24.03.2015 : a web server assessment tool.
Changelog v-24.03.2015: + databases; – Test for adminer.php – Some changes to headers and support for X-Clacks-Overhead – Additions to axis2 checks and fixes for jenkins/hudson + Plugin ; Add patch to...
View ArticleClik here to view.
ruby-SSLscanner : A simple and easy to use SSL Cipher scanner.
ruby-SSLscanner is A simple and easy to use SSL Cipher scanner. Todo : + Checks for insecured TLS renogotiation + Checks for weak certificate key algorithms + Option to import hosts from file: Txt...
View ArticleClik here to view.
Odat – Oracle Database Attacking Tool.
ODAT (Oracle Database Attacking Tool) is an open source penetration testing tool that tests the security of Oracle Databases remotely. Usage examples of ODAT: + You have an Oracle database listening...
View ArticleClik here to view.
Modbus_scanner that scans selected com-ports with different parity and...
Modbus_scanner that scans selected com-ports with different parity and baudrate to find modbus units. V-0.9 is a Working version, might add more features later, like modbus test tools for sending raw...
View ArticleWebbies – Collection of tools for web recon and enumeration.
A python3 asynchronous web recon and enumeration tool set. Given a list of host,port combinations, this tool will enumerate the service to determine if it is https or http, the title and banner...
View ArticleClik here to view.
Updates w3af v-1.6.49 : web application attack and audit framework, the open...
change v-1.6.49 : – Update unittest after vulndb update – Fix Proxy (and maybe others) affected by querystring + not being decoded by URL – Cosmetic : Cache.py, history.py – Upgrade to latest nltk...
View ArticleClik here to view.
HTTPSScan – Shell script for testing the SSL/TLS Protocols
HTTPSScan is a Shell script for testing the SSL/TLS Protocols. HTTPSScan is a Shell script for testing the SSL/TLS Protocols. Check for SSL/TLS Vulnerabilities: – SSLv2 (CVE-2011-1473) – TLS CRIME...
View ArticleThe Cleveridge SSH Scanner is a SSH Brute Force tool written in python.
The Cleveridge SSH Scanner is a SSH Brute Force tool written in python. The tool tries to get access to machines (IPv4) on the SSH port (22). When the machines is accessible on port 22, the tool brute...
View ArticleMalscan is a powerful malware scanner and leveraging.
Malscan : Robust ClamAV-based malware scanner for web servers. Version 1.4.3 Released: May 5, 2015 : + Bugfix: Corrected a logging path issue. All log files will now be correctly generated in the ‘log’...
View Article