Penetration Test Tools
WIRESHARK
Sniffing the glue that holds the Internet together
Wireshark (known as Ethereal until a trademark dispute in Summer 2006) is a
fantastic open source network protocol analyzer for Unix and Windows. It allows
you to examine data from a live network or from a capture file on disk. You can
interactively browse the capture data, delving down into just the level of
packet detail you need. Wireshark has several powerful features, including a
rich display filter language and the ability to view the reconstructed stream of
a TCP session. It also supports hundreds of protocols and media types. A tcpdump-like
console version named tethereal is included. One word of caution is that
Ethereal has suffered from dozens of remotely exploitable security holes, so
stay up-to-date and be wary of running it on untrusted or hostile networks (such
as security conferences).
http://www.wireshark.org/download.html
Password Cracker
CAIN & ABEL
The top password recovery tool for Windows
UNIX users often smugly assert that the best free security tools support their
platform first, and Windows ports are often an afterthought. They are usually
right, but Cain & Abel is a glaring exception. This Windows-only password
recovery tool handles an enormous variety of tasks. It can recover passwords by
sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force
and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled
passwords, revealing password boxes, uncovering cached passwords and analyzing
routing protocols. It is also well
documented.
http://www.oxid.it/cain.html
OPHCRACK
NESSUS
Description: Remote network security auditor, the client The Nessus
Security Scanner is a security auditing tool. It makes possible to test security
modules in an attempt to find vulnerable spots that should be fixed. . It is
made up of two parts: a server, and a client. The server/daemon, nessusd, is in
charge of the attacks, whereas the client, nessus, interferes with the user
through nice X11/GTK+ interface. . This package contains the GTK+ 1.2 client,
which exists in other forms and on other platforms, too.
http://www.nessus.org/download/
NMAP
|
SUPERSCAN
A Windows-only port scanner, pinger, and resolver
SuperScan is a free Windows-only closed-source TCP/UDP port scanner by
Foundstone. It includes a variety of additional networking tools such as ping,
traceroute, http head, and whois.
http://www.foundstone.com/us/resources/termsofuse.asp?file=superscan4.zip
SAM SPADE
Freeware Windows network query tool
Sam Spade provides a consistent GUI and implementation for many handy network
query tasks. It was designed with tracking down spammers in mind, but can be
useful for many other network exploration, administration, and security tasks.
It includes tools such as ping, nslookup, whois, dig, traceroute, finger, raw
HTTP web browser, DNS zone transfer, SMTP relay check, website search, and more.
Non-Windows users can enjoy online versions of many of their tools.
http://www.softpedia.com/progDownload/Sam-Spade-Download-34862.html
NBTSCAN
Gathers NetBIOS info from Windows networks NBTscan is a
program for scanning IP networks for NetBIOS name information (similar to what
the Windows nbtstat tool provides against single hosts). It sends a NetBIOS
status query to each address in a supplied range and lists received information
in human readable form. For each responded host it lists IP address, NetBIOS
computer name, logged-in user name and MAC address. The
original nbtscan was
written by Alla Bezroutchko. Steve Friedl has written an
alternate implementation.
http://www.inetcat.net/software/nbtscan.html
MBSA
Microsoft Baseline Security Analyzer (MBSA) is an
easy-to-use tool designed for the IT professional that helps small and
medium-sized businesses determine their security state in accordance with
Microsoft security recommendations and offers specific remediation guidance.
Built on the Windows Update Agent and Microsoft Update infrastructure, MBSA
ensures consistency with other Microsoft management products including Microsoft
Update (MU), Windows Sere Services (WSUS), Systems Management Server (SMS)
and Microsoft Operations Manager (MOM). Apparently MBSA on average scans over 3
million computers each week.
Microsoft Baseline Security Analyzer (MBSA)
How to find the sender's original IP Address using Email message Headers