 |
hunter.how |
| Internet search engines for security researchers. |
|
|
 |
sslstrip |
| A tool for exploiting Moxie Marlinspike's SSL "stripping" attack. |
|
|
 |
Splunk |
| The unified security and observability platform. |
|
|
 |
NetWitness |
| Rapidly detect and respond to any threat, anywhere. See Everything. Fear Nothing. |
|
|
 |
Nagios |
| The industry standard in IT infrastructure monitoring. |
|
|
 |
Invicti |
| Web Application Security For Enterprise. |
|
|
 |
WebInspect |
| An automated dynamic testing solution that provides comprehensive vulnerability detection. |
|
|
 |
nipper-ng |
| Network infrastructure configuration parser. |
|
|
|
|
 |
wikto |
| Nikto for Windows with some extra features. |
|
|
 |
p0f |
| Identify the operating system of a target host simply by examining captured packets. |
|
|
 |
Sguil |
| The analyst console for network security monitoring. |
|
|
 |
Samurai WTF |
| The best security training environment for developers and AppSec professionals. |
|
|
 |
Tamper Data |
| View and modify HTTP requests before they are sent. |
|
|
 |
Tamper Dev |
| Allows you to intercept and edit HTTP/HTTPS requests and responses. |
|
|
 |
ratproxy |
| A semi-automated largely passive web application security audit tool. |
|
|
 |
KisMac |
| A free, open source wireless stumbling and security tool for Mac OS X. |
|
|
 |
ike-scan |
| Discover and fingerprint IKE hosts. |
|
|
 |
amap |
| Identify applications even if they are running on a different port than normal. |
|
|
 |
Grendel-Scan |
| A tool for automated security scanning of web applications. |
|
|
 |
Dradis |
| Collaboration and reporting for infosec teams made simple. |
|
|
 |
nbtscan |
| Scan networks searching for NetBIOS information. |
|
|
|
|
 |
Kali Linux |
| The most advanced penetration testing distribution. |
|
|
 |
upload_bypass |
| File upload restrictions bypass by using different techniques! |
|
|
 |
Quickjack |
| Point-and-click tool for producing advanced clickjacking and frame-slicing attacks. |
|
|
