Difference between revisions of "Category:Penetration Testing Tools"

From OWASP
Jump to: navigation, search
(Web Testing Frameworks)
Line 99: Line 99:
  
 
{{:Template:OWASP Tool Headings}}
 
{{:Template:OWASP Tool Headings}}
{{OWASP Tool Info || tool_name = [http://w3af.sourceforge.net/ w3af]}}
+
 
 +
 
 +
 
 +
{{Template:OWASP Tool Info
 +
| tool_name = [http://w3af.sourceforge.net/ w3af]
 +
| tool_owner = Andres Riancho and w3af team
 +
| tool_licence = GPLv2
 +
| tool_platforms = Windows, Linux
 +
}}

Revision as of 20:11, 1 January 2010

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.

Penetration Testing Tools

Information Gathering Tools

  • Fingerprinting
Name Owner Licence Platforms
httprint
httprecon
Netcraft


Configuration Management Testing Tools

  • SSL Testing
Name Owner Licence Platforms
OpenSSL
SSL Digger
  • DB Listener Testing
Name Owner Licence Platforms
TNS Listener
Toad


Authentication Testing Tools

  • Password Brute Force Testing
Name Owner Licence Platforms
Burp Intruder
Brutus
John the Ripper
Ophcrack
THC Hydra


Session Management Testing Tools

Name Owner Licence Platforms
CookieDigger


Authorization Testing Tools

Data Validation Testing Tools

  • Fuzzers
  • SQL Injection Testing
  • XSS Testing
  • Buffer Overflow Testing


Denial of Service Testing Tools

Web Services Testing Tools

Ajax Testing Tools

HTTP Traffic Monitoring

  • Web Proxies
Name Owner Licence Platforms
Burp Suite
Paros Proxy
Webscarab
TamperIE
Tamper Data
SPIKE Proxy
Suru Web Proxy
Charles
Odysseus
JS Commander
ratproxy
  • Sniffers

Encoders / Decoders

  • CAPTCHA Decoders
Name Owner Licence Platforms
PWNtcha
The Captcha Breaker

Web Testing Frameworks

Name Owner Licence Platforms


w3af Andres Riancho and w3af team GPLv2 Windows, Linux

This category currently contains no pages or media.