Difference between revisions of "Category:Penetration Testing Tools"

From OWASP
Jump to: navigation, search
m
Line 53: Line 53:
 
{{OWASP Tool Info || tool_name = [http://www.openwall.com/john/ John the Ripper]}}
 
{{OWASP Tool Info || tool_name = [http://www.openwall.com/john/ John the Ripper]}}
 
{{OWASP Tool Info || tool_name = [http://ophcrack.sourceforge.net/ Ophcrack]}}
 
{{OWASP Tool Info || tool_name = [http://ophcrack.sourceforge.net/ Ophcrack]}}
{{OWASP Tool Info || tool_name = [http://www.thc.org/thc-hydra/ THC Hydra] | tool_owner= The Hacker's Choise | tool_platforms = Lin--[[User:Jorge Correa|Jorge Correa]] ([[User talk:Jorge Correa|talk]]) 10:46, 4 December 2013 (CST)}}
+
{{OWASP Tool Info || tool_name = [http://www.thc.org/thc-hydra/ THC Hydra] | tool_owner= The Hacker's Choise | tool_platforms = Lin}}
 
|}
 
|}
  

Revision as of 10:47, 4 December 2013

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.

Penetration Testing Tools

Information Gathering Tools

  • Fingerprinting
Name Owner Licence Platforms
httprint NetSquare Inc no cost for personal, educational and non-commercial use. Win, Lin, Mac, FreeBSD
httprecon Marc Ruef GPL Win
Netcraft Netcraft Inc N/A WebBased
WebRecon Aung Khant GPL WebBased

Configuration Management Testing Tools

  • SSL Testing
Name Owner Licence Platforms
OpenSSL
SSL Digger
  • DB Listener Testing
Name Owner Licence Platforms
TNS Listener
Toad


Authentication Testing Tools

  • Password Brute Force Testing
Name Owner Licence Platforms
Burp Intruder
Brutus
Cain & Abel oxid Freeware Windows
John the Ripper
Ophcrack
THC Hydra The Hacker's Choise Lin


Session Management Testing Tools

Name Owner Licence Platforms
CookieDigger


Authorization Testing Tools

Data Validation Testing Tools

  • Fuzzers
  • SQL Injection Testing
  • XSS Testing
  • Buffer Overflow Testing
Name Owner Licence Platforms
Skipfish N/A Apache Linux
w3af NA GPL v2 Python required (cross platform)


Denial of Service Testing Tools

Web Services Testing Tools

Ajax Testing Tools

HTTP Traffic Monitoring

  • Web Proxies
Name Owner Licence Platforms
Burp Suite
Paros Proxy
Webscarab
TamperIE
Tamper Data
SPIKE Proxy
Suru Web Proxy
Charles
Odysseus
JS Commander
ratproxy
  • Sniffers

Encoders / Decoders

  • CAPTCHA Decoders
Name Owner Licence Platforms
PWNtcha
The Captcha Breaker

Web Testing Frameworks

Name Owner Licence Platforms
w3af Andres Riancho and w3af team GPLv2 Windows, Linux
Websecurify GNUCITIZEN / Websecurify GPLv2 Windows, Mac OS, Linux
ZeroDayScan Free Online, Cloud

This category currently contains no pages or media.