Script that will perform test queries to check for the existence of files in a webroot.
c8be207d45fef0ba6ed8b95d81fe2e2afe59313cace686c44a99afe37363cbf4
Simple Skype password cracker written in Perl.
93375516e003779e0ae962ac7fa61e9e4a247f89cee30c4743b1f8d768ee3d68
Simple tool to grab results from Google and stick them in a file. Has a feature to restrict by domain.
57dc189500c14bbce4e8eeb05b395c90b095135b46b473dd691271aa63115529
Simple tool to grab results from Google and stick the links in a file.
7ff2cac119f1b31580a740c5284ccf8857ea72824b1719d50d69e1e8ccf5d1e9
Sambascan2 allows you to search an entire network or a number of hosts for SMB shares. It will also list the contents of all public shares that it finds. The difference between sambascan2 and other SMB viewers and scanners is that it will search everything using TCP/IP, and it will not send a lot of broadcast messages, so it can be used over LAN boundaries. It only uses SMB to list the shares and their contents.
1a01a02dad6a22069aa77c4e579f73241a1756a50e6b7bc12178fd140ad997f5
Abyss is a port scanner with OS detection and passive sniffing. It is fairly lightweight yet versatile.
5c4ec4c1132751c26e004bfb8d66af1a5697ccb17711d42dc6f8c2a065efcb3b
SynScan is a fast half-open port scanner. This tool will send TCP packets with the SYN flag to any block of destination addresses at very high speed. SynScan endeavors to send traffic as fast as the host network interface can support.
10725e496d28dfd91563bb7385d6f82ad8526ac050bf4626f0fea222130bfb8b
SynScan is a fast half-open port scanner. This tool will send TCP packets with the SYN flag to any block of destination addresses at very high speed. SynScan endeavors to send traffic as fast as the host network interface can support.
47dc879fed164cbb41bec07d33de62faf97d964d92278bce0fa318c910ca12ac
A hack of propecia.c to include class A domain scanning and banner grabbing.
ae8a423a27e728cb503ae16ca7498897d5c367359e9d1cc6bd038e6287aae1e4
Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions). Report modules are possible and easy to make. It is intended to do the same things as ttlscan, nmap, hping, queso, p0f, xprobe, arping, arp-sk, arpspoof, firewalk, irpas, tethereal, tcpdump, etc.
2a11ba05f34b2978af3add623a641e0340d39322b4ca2bd26baae743c78de956
Lotophagi is a relatively compact Perl script designed to scan remote hosts for default (or common) Lotus NSF and BOX databases. It currently checks for 100+ and there are plans afoot to implement additions in the future. Please note, this is a beta release, and as such your feedback / practical contributions are welcomed and encouraged.
53210d01a41417093996b315782d4ca44150529bec48d05c4874b25a0c12fc82
ike-scan is a utility that discovers IKE hosts and can also fingerprint them using the retransmission backoff pattern.
05d15c7172034935d1e46b01dacf1101a293ae0d06c0e14025a4507656f1a7b6
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
7730b4cbc522502f2d12a5b895c6618321b649f03a6a1b3ab8ccc5ec191fc8c6
This tool enables the user to perform hop enumeration ("traceroute") within an established TCP connection, such as a HTTP or SMTP session. This is opposed to sending stray packets, as traceroute-type tools usually do.
bef2510b762b0b1f0bddb9261ff48bd58606aef3f200307d00bb91da517bf024
SQL injection digger is a command line program that looks for SQL injections and common errors in websites.
4fe72effb2b5fe4a4e0a32f8eeddedee32c437bd740a3f932037e89848773791
Grabber is a web application scanner. Basically it detects some kind of vulnerabilities in your website. Grabber is simple, not fast but portable and really adaptable. This software is designed to scan small websites such as personals, forums etc. absolutely not big application: it would take too long time and flood your network.
aef111dcd1950bb92ed0934b120c81229f5a74ca6de144c128e9a8e3a46c8ae8
SQL injection digger is a command line program that looks for SQL injections and common errors in websites.
44417028b879d6d4fbf9915ad1cc1b82f2f4c92abdec94ba485af2b138092d0b
SinFP is a new approach to OS fingerprinting, which bypasses limitations that nmap has. It only requires one open TCP port, sends only fully standard TCP packets, and limits the number of tests to 2 or 3.
b331059034af9107a5337cf0610c72d0451724675b3bc870cfbdbf7ae99ffe20
p0f performs passive OS detection by watching SYN packets with tcpdump. Additionally, it is able to determine distance to remote host, and can be used to determine the structure of a foreign or local network. When running on the gateway of a network it is able to gather huge amounts of data and provide useful statistics. On a user-end computer it could be used to track which operating systems are making each connection. p0f supports full tcpdump-style filtering expressions, and has an easily modified fingerprinting database. Tested on Linux, FreeBSD, OpenBSD, NetBSD, SunOS, and Solaris. This particular version is modified by Nerijus Krukauskas to store the data in a database.
32e1f026dd57ab647074756629038bd5a27a8e6656915da975aca3b0f3a7ca75
sqlninja is a small tool to exploit SQL injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable database server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a database Server when a SQL injection vulnerability has been discovered. It is written in perl and runs on Unix-like boxes.
5c8f9dbd2871c17777b26f9f1da10ac0a5d1fea40e3cb8292a2e858940d4e91c
sauerkraut is a lightweight, multi-threaded and very fast IP scanner with a built-in banner grabber.
b2e699b7b162c30c8291ec7ada22b3d75012360bad189e68625b9ab34bff7109
Knock-Out is a remote administration tool using port-knocking techniques. It supports both UDP and TCP transmission and is customizable. It allows both bind ports and reverse shells. Note that all documentation, etc, is written in Spanish.
fdb438413d035a837a56b80605b9f9120afc5fd8327492f7ba22953c2b66b386
snmpcheck is a free open source utility to get information via SNMP protocols. It works fine against Windows, Linux, Cisco, HP-UX, SunOS systems and any devices with SNMP protocol support. It could be useful for penetration testing or systems monitoring. snmpcheck has been tested on GNU/Linux, *BSD and Windows (Cygwin) systems.
d761829bf0e54681d7f7286dc9fdb8136fc370c218b85024b7c22a2e209970ca
TCP Knocking provides a port knocking implementation that attempts to solve problems of opening firewalls to provide remote access by incorporating the knock into unused fields in the TCP handshake sequence packets, rather than using UDP packets with secret ports.
e6853f592b09665053445d9ae0240ffcee7a2a8cf03115caa0daebc05b209b9a
Simple scanning script that attempts to find ADSL router modems.
5c85446816efc8e18508b373cd5245ceada8009cb8d824e4f2f38b34bd2acd85