Category:Penetration Testing Tools

From OWASP
Revision as of 18:56, 10 October 2009 by Vishal Garg (Talk | contribs)

Jump to: navigation, search
This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.

Contents

Penetration Testing Tools

Information Gathering Tools

  • Fingerprinting
Name Owner Licence Platforms
httprint


httprecon


Netcraft


Configuration Management Testing Tools

  • SSL Testing
Name Owner Licence Platforms
OpenSSL


SSL Digger
  • DB Listener Testing
Name Owner Licence Platforms
TNS Listener


Toad


Authentication Testing Tools

  • Password Brute Force Testing
Name Owner Licence Platforms
Burp Intruder


Brutus


John the Ripper


Ophcrack


THC Hydra


Session Management Testing Tools

Name Owner Licence Platforms
CookieDigger


TamperIE


Tamper Data


Authorization Testing Tools

Data Validation Testing Tools

  • Fuzzers
  • SQL Injection Testing
  • XSS Testing
  • Buffer Overflow Testing


Denial of Service Testing Tools

Web Services Testing Tools

Ajax Testing Tools

HTTP Traffic Monitoring

  • Web Proxies
Name Owner Licence Platforms
Burp Suite


Paros Proxy


Webscarab
  • Sniffers


Encoders / Decoders

  • CAPTCHA Decoders
Name Owner Licence Platforms
PWNtcha


The Captcha Breaker

This category currently contains no pages or media.