Archive for the ‘Pentesting’ Category

Foto

InSSider new release

February 4th, 2012 Mourad Ben Lakhoua

New update has been released for Inssider a free wardriving application that help penetration tester to check different wireless network available. The program is very useful as it provides information about the encryption used, vendor of the access point, SSID and the performance of the Wifi network coverage. Update release note include the following: ” [...]

Share
Posted in Open-Source, Pentesting Tags: , , , , No Comments »

WPA/WPA2 Vulnerable to Brute-Force Attacks

January 5th, 2012 Mourad Ben Lakhoua

Wireless network access points are everywhere so if you travel a lot you will find more than one AP at airports coffee shop or at the beach, I often try to scan different wireless network to check what type of encryption used by the AP owner (you can use InSSider) and as a result I [...]

Share
Posted in Open-Source, Pentesting, Tools Tags: , , , 3 Comments »

Metasploit Pro 4.0 New Release

July 28th, 2011 Mourad Ben Lakhoua

New version of Metasploit professional edition has been released by Rapid7, Metasploit is a complete solution for penetration testing that gives pentester a complete visibility on different threat with over 10 vulnerability scanners. Metasploit Pro 4.0 helps you improve your enterprise vulnerability management program and test how well your perimeter holds up against real world [...]

Share
Posted in Pentesting, Tools Tags: , , No Comments »

WebSurgery- Web Security Testing Tool

July 24th, 2011 Mourad Ben Lakhoua

WebSurgery is another suite of tools for security testing of web applications. It was designed for security auditors to help them with the web application planning and exploitation. Currently, it uses an efficient, fast and stable Web Crawler, File/Dir Bruteforcer and Fuzzer for advanced exploitation of known and unusual vulnerabilities such as SQL Injections, Cross [...]

Share
Posted in Pentesting, Web Security Tags: , No Comments »

theHarvester Retrieve Desired Information Online

June 19th, 2011 Mourad Ben Lakhoua

theHarvester is a Computer-based social engineering tool for gathering e-mail accounts, user names and hostnames/subdomains from different public sources like search engines and PGP key servers. This tools is intended to help Penetration testers in the early stages of the project It’s a really simple tool, but very effective. The sources supported are: Google – [...]

Share
Posted in Pentesting, Privacy & data protection Tags: , , , , 44 Comments »

Profiling Web Application With WhatWeb

June 12th, 2011 Mourad Ben Lakhoua

Getting the information about website configuration and version is important during penetesting any web application, for this purposes you can consider WhatWeb. WhatWeb recognizes web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices. It has over 900 plugins, each to recognize something different.it also helps to [...]

Share
Posted in Pentesting, Web Security Tags: , , 50 Comments »

New release of John the Ripper Password Cracker

June 4th, 2011 Mourad Ben Lakhoua

New version of John The Ripper has been released, John the Ripper is a free password cracking software tool. Initially developed for the UNIX operating system, it currently runs on fifteen different platforms (11 architecture-specific flavors of Unix, DOS, Win32, BeOS, and OpenVMS). It is one of the most popular password testing/breaking programs as it [...]

Share
Posted in Pentesting, Tools Tags: , , , 59 Comments »
« Older Entries
Twitter Delicious Facebook Digg Stumbleupon Favorites More
Powered by WordPress | Designed by: Best SUV | Thanks to Toyota SUV, Ford SUV and Best Truck