SecTools

OpenSSL vulnerability scanner scans for a remote exploit for the KEY_ARG overflow in OpenSSL 0.9.6d and older. Tested against most major Linux distributions. Gives a remote nobody shell on Apache and remote root on other servers. Includes an OpenSSL vulnerability scanner and a detailed vulnerability analysis. Only Linux/x86 targets are supported.

Exploit Details (CVE-2002-0656): http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0656

OpenSSL Exploit […]

an efficient SNMP scanner

Info: http://www.phreedom.org/solar/onesixtyone/

These icons link to social bookmarking sites where readers can share and discover new web pages.

Mibble is an open-source SNMP MIB parser (or SMI parser) written in Java. It can be used to read SNMP MIB files as well as simple ASN.1 files.

Info: http://www.mibble.org/

These icons link to social bookmarking sites where readers can share and discover new web pages.

Lynx is the text web browser.

Info: http://lynx.isc.org/

These icons link to social bookmarking sites where readers can share and discover new web pages.

Extracts Urls from a webpage

These icons link to social bookmarking sites where readers can share and discover new web pages.

SinFP is a new approach to OS fingerprinting, which bypasses limitations that nmap has. This approach brings the era of OS fingerprinting on a per-TCP port basis, not on a per-host basis.

These icons link to social bookmarking sites where readers can share and discover new web pages.

TCtrace is like itrace a traceroute(1) brother - but it uses TCP SYN packets to trace. This makes it possible for you to trace through firewalls if you know one TCP service that is allowed to pass from the outside.

These icons link to social bookmarking sites where readers can share and discover […]

An SMTP Protocol Hacker. Vrfy.pl uses the vrfy command to verify users/mail accounts on a network by using a list of common system names like root, admin, etc…

These icons link to social bookmarking sites where readers can share and discover new web pages.

Relay Scanner can search for smtp server also locates and identifies open relay SMTP servers. It is an all in one program, you tell it how to scan and it does ALL of the work for you.

These icons link to social bookmarking sites where readers can share and discover new web pages.

Protos is a IP protocol scanner. It goes through all possible IP protocols and uses a negative scan to sort out unsupported protocols which should be reported by the target using ICMP protocol unreachable messages.

These icons link to social bookmarking sites where readers can share and discover new web pages.

netmask asks for the netmask by ICMP.

These icons link to social bookmarking sites where readers can share and discover new web pages.

netenum can be used to produce lists of hosts for other programs. It’s not as powerful as other ping-sweep tools, but it’s simple. When giving a timeout, it uses ICMP echo request to find available hosts. If you don’t supply a timeout, it just prints an IP address per line, so you […]

Itrace is a program that implements traceroute(1) functionality using ICMP echo request packets. Therefore, it looks like you are just pinging your target while you traceroute there. It often helps tracing behind firewalls.

These icons link to social bookmarking sites where readers can share and discover new web pages.

Gooscan is a tool that automates queries against Google search appliances.

These icons link to social bookmarking sites where readers can share and discover new web pages.

FingerGoogle is a reduced Net-Twister module that helps to find user account names.

These icons link to social bookmarking sites where readers can share and discover new web pages.

This PERL script, by Jimmy Neutron, is great for determining DNS names with Google. This tool, which is essential for network mapping, accepts two somewhat related words, and a domain name as arguments. The two words are sent through Google sets which expands the words into a list of related words. […]

Dnsmap is a small C based tool that perform brute-forcing of domains. The tool can use an internal wordlist, or work with an external dictionary file.

These icons link to social bookmarking sites where readers can share and discover new web pages.

dnsenum is a tool written in Perl to enumerate information on a domain. It uses the Net::DNS module.

These icons link to social bookmarking sites where readers can share and discover new web pages.

DNSBruteforce is used to made a brute force on name resolution.The idea of that tool is to resolve all words dot domain name. To be more useful that tool use multi threading. We use one thread for each name server. Classical brute forcer are sequential. With that method we cut the […]

Dnswalk is a DNS debugger. It performs zone transfers of specified domains, and checks the database in numerous ways for internal consistency, as well as accuracy.

These icons link to social bookmarking sites where readers can share and discover new web pages.

Mass DNS Query Program

These icons link to social bookmarking sites where readers can share and discover new web pages.

DMitry (Deepmagic Information Gathering Tool) is a UNIX/Linux command line program coded purely in C with the ability to gather as much information as possible about a host.

These icons link to social bookmarking sites where readers can share and discover new web pages.

ASS is a Autonomous System Scanner. Because routing protocols use autonomous systems to distinguish between various routing “domains” and various ways to communicate, you need something which works like a TCP port scanner but knows more then one protocol.

These icons link to social bookmarking sites where readers can share and discover new […]

Firewalk : Advanced traceroute
Firewalk employs traceroute-like techniques to analyze IP packet responses to determine gateway ACL filters and map networks. This classic tool was rewritten from scratch in October 2002. Note that much or all of this functionality can also be performed by the Hping2 –traceroute option.

These icons link to social bookmarking sites where readers […]