Difference between revisions of "Category:Penetration Testing Tools"

From OWASP
Jump to: navigation, search
(Web Testing Frameworks)
Line 99: Line 99:
  
 
{{:Template:OWASP Tool Headings}}
 
{{:Template:OWASP Tool Headings}}
{{OWASP Tool Info || tool_name = [http://w3af.sourceforge.net/ w3af]}}
+
 
 +
 
 +
 
 +
{{Template:OWASP Tool Info
 +
| tool_name = [http://w3af.sourceforge.net/ w3af]
 +
| tool_owner = Andres Riancho and w3af team
 +
| tool_licence = GPLv2
 +
| tool_platforms = Windows, Linux
 +
}}

Revision as of 20:11, 1 January 2010

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.

Contents

Penetration Testing Tools

Information Gathering Tools

  • Fingerprinting
Name Owner Licence Platforms
httprint


httprecon


Netcraft


Configuration Management Testing Tools

  • SSL Testing
Name Owner Licence Platforms
OpenSSL


SSL Digger
  • DB Listener Testing
Name Owner Licence Platforms
TNS Listener


Toad


Authentication Testing Tools

  • Password Brute Force Testing
Name Owner Licence Platforms
Burp Intruder


Brutus


John the Ripper


Ophcrack


THC Hydra


Session Management Testing Tools

Name Owner Licence Platforms
CookieDigger


Authorization Testing Tools

Data Validation Testing Tools

  • Fuzzers
  • SQL Injection Testing
  • XSS Testing
  • Buffer Overflow Testing


Denial of Service Testing Tools

Web Services Testing Tools

Ajax Testing Tools

HTTP Traffic Monitoring

  • Web Proxies
Name Owner Licence Platforms
Burp Suite


Paros Proxy


Webscarab


TamperIE


Tamper Data


SPIKE Proxy


Suru Web Proxy


Charles


Odysseus


JS Commander


ratproxy
  • Sniffers

Encoders / Decoders

  • CAPTCHA Decoders
Name Owner Licence Platforms
PWNtcha


The Captcha Breaker

Web Testing Frameworks

Name Owner Licence Platforms



w3af Andres Riancho and w3af team GPLv2 Windows, Linux

This category currently contains no pages or media.