WebSploit Toolkit 1.6 Released

WebSploit Is An Open Source Project For Scan And Analysis Remote System From Vulnerability

Description :

[+]Autopwn - Used From Metasploit For Scan and Exploit Target Service

[+]wmap - Scan,Crawler Target Used From Metasploit wmap plugin

[+]format infector - inject reverse & bind payload into file format

[+]phpmyadmin - Search Target phpmyadmin login page

[+]lfi - Scan,Bypass local file inclusion Vulnerability & can be bypass some WAF

[+]apache users - search server username directory (if use from apache webserver)

[+]Dir Bruter - brute target directory with wordlist

[+]admin finder - search admin & login page of target

[+]MLITM Attack - Man Left In The Middle, XSS Phishing Attacks

[+]MITM - Man In The Middle Attack

[+]Java Applet Attack - Java Signed Applet Attack

[+]MFOD Attack Vector - Middle Finger Of Doom Attack Vector

[+]USB Infection Attack - Create Executable Backdoor For Infect USB For Windows

Download WebSploit Toolkit V.1.6

Read More

Browser Forensic Tool v2.0 - Advanced browser history search engine

Browser Forensic Tool v2.0 , Developed by DarkCoderSc (Jean-Pierre LESUEUR) ,is an advanced local browser history search engine, in less than few seconds it will extract the chosen keywords of most famous web browser, actually Internet Explorer, Google Chrome, Mozilla FireFox, RockMelt, Comodo Dragon and Opera.

 

BFT will attempt to find the keyword(s) in the history title and search, if the keyword is present or suspected to be, it will be display in the result list with his URL and Title. The software also give you the possibility to edit the default keywords and of course add / modify your own keywords, to separate keywords subject you can create your own keywords categories and only scan for some keywords in the chosen category .

The program is fully asynchronous so it won't affect your work during the scan time nor it will block the customization of keywords and keylist and can be canceled at anytime.

 

Video TUT-

Download Here

Read More

List of Best Ethical Hacking / Penetration Testing Tools

Here is list of useful and Best Software tools that helpful in Ethical Hacking and Penetration Testing, Forensics ...

MetaSploit :

Metsploit is a very Powerful PenTesting Tool . Metasploit Framework, a tool for developing and executing exploit code against a remote target machine. The Metasploit Project is also well known for anti-forensic and evasion tools, some of which are built into the Metasploit Framework. Very useful tool for Information Gathering, Vulnerability Scanning, Exploit Development, Client side exploits,...
Official site: http://www.metasploit.com/

WireShark:

WireShark is a free and best Network Packet Analyzer tool for UNIX and Windows.  It is used for networking troubleshooting, Malware analysis and education. Often, i use WireShark for analyzing the malwares.

Homepage: http://www.wireshark.org

NMAP

Nmap("Network Mapper") Free Security Scanner For Network Exploration & Hacking.It is used to scan a network and gathers information about the target network including open ports,Services running in the host, OS information,packet filters/firewalls details, and  more.

Official site: http://nmap.org/

John The Ripper:

JTR is free and  fast password cracker.  Its primary purpose is to detect weak Unix password.
Official site: www.openwall.com/john/

Acunetix Web Security Scanner

Audit your website security and web applications for SQL injection, Cross site scripting and other web vulnerabilities with Acunetix Web Security Scanner.
This tools is not free one ;(
Official Site: www.acunetix.com

Maltego;

Maltego is an open source intelligence and forensics application. It will offer you timous mining and gathering of information as well as the representation of this information in a easy to understand format.
Official site: www.paterva.com/

IronWASP:

IronWASP (Iron Web application Advanced Security testing Platform) is an open source system for web application vulnerability testing. It is designed to be customizable to the extent where users can create their own custom security scanners using it. Though an advanced user with Python/Ruby scripting expertise would be able to make full use of the platform, a lot of the tool's features are simple enough to be used by absolute beginners.

Official site: http://ironwasp.org

HconSTF

HconSTF is very useful PenTesting tool. It is used for Information gathering,Enumeration & Reconnaissance,Vulnerability assessment, Exploitation,Privilege escalation,Reporting.

Official site: http://www.hcon.in

Ettercap
Ettercap is a comprehensive suite for man in the middle attacks. It features sniffing of live connections, content filtering on the fly and many other interesting tricks. It supports active and passive dissection of many protocols and includes many features for network and host analysis.
Official site: http://ettercap.sourceforge.net/

Read More