DIY Web Pentesting Tools on Ubuntu
Arachni on Ubuntu 14.04 LTS
BeEF on Ubuntu 14.04 LTS
Burp Suite on Ubuntu 14.04 LTS
CMSMap on Ubuntu 14.04 LTS
Commix on Ubuntu 14.04 LTS
HconSTF on Ubuntu 14.04 LTS
John on Ubuntu 14.04 LTS
Masscan on Ubuntu 14.04 LTS
Metasploit Framework on Ubuntu 14.04 LTS
NMap on Ubuntu 14.04 LTS
NetCat on Ubuntu 14.04 LTS
NoSQLMap on Ubuntu 14.04 LTS
Recon-ng on Ubuntu 14.04 LTS
SET on Ubuntu 14.04 LTS
SQLMap on Ubuntu 14.04 LTS
--[ Recover your wifi password on windows]
C:\Users\jpdltd>netsh wlan show profile
Profiles on interface Wi-Fi:
Group policy profiles (read only)
---------------------------------
User profiles
-------------
All User Profile : Anothernetwork
Current User Profile : myhomenetwork
C:\Users\jpdltd>netsh wlan show profile myhomenetwork key=clear
Profile myhomenetwork on interface Wi-Fi:
=======================================================================
Applied: Current User Profile
Profile information
-------------------
Version : 1
Type : Wireless LAN
Name : myhomenetwork
Control options :
Connection mode : Connect automatically
Network broadcast : Connect only if this network is broadcasting
AutoSwitch : Switch to more preferred network if possible
MAC Randomization : Disabled
Connectivity settings
---------------------
Number of SSIDs : 1
SSID name : "myhomenetwork"
Network type : Infrastructure
Radio type : [ Any Radio Type ]
Vendor extension : Not present
Security settings
-----------------
Authentication : WPA2-Personal
Cipher : CCMP
Authentication : WPA2-Personal
Cipher : Unknown
Security key : Present
Key Content : MyS3cr3tPassW0RD!
Cost settings
-------------
Cost : Unrestricted
Congested : No
Approaching Data Limit : No
Over Data Limit : No
Roaming : No
Cost Source : Default
Bash Commands
a
alias Create an alias •
apropos Search Help manual pages (man -k)
apt-get Search for and install software packages (Debian/Ubuntu)
aptitude Search for and install software packages (Debian/Ubuntu)
aspell Spell Checker
awk Find and Replace text, database sort/validate/index
b
alias Create an alias •
apropos Search Help manual pages (man -k)
apt-get Search for and install software packages (Debian/Ubuntu)
aptitude Search for and install software packages (Debian/Ubuntu)
aspell Spell Checker
awk Find and Replace text, database sort/validate/index
b
--[ KALI 2.0 iso of doom ]
Setting up the OpenVPN Server
We will first set up our OpenVPN server on a Kali Linux box with an external IP address (a.b.c.d). Once that’s done, we’ll build The Kali Linux ISO of Doom on the same machine and make it available for download through HTTP
echo "1" > /proc/sys/net/ipv4/ip_forward
echo "1" > /proc/sys/net/ipv4/ip_forward
--[ WiFi Pumpkin ]
WiFi-Pumpkin
Framework for Rogue Wi-Fi Access Point Attack
Description
WiFi-Pumpkin is a security tool that provides the Rogue access point to Man-In-The-Middle and network attacks.
WiFi-Pumpkin is a security tool that provides the Rogue access point to Man-In-The-Middle and network attacks.
Python 2.7
https://github.com/P0cL4bs/WiFi-Pumpkin
refer to the wiki for Installation
# git clone https://github.com/P0cL4bs/WiFi-Pumpkin.git
# cd WiFi-Pumpkin
# chmod +x installer.sh
# ./installer.sh --install
https://github.com/P0cL4bs/WiFi-Pumpkin
--[ Kali Sana Virtualbox & MSF pro ]
To install vbox you need to install the following :
apt-get install linux-headers-amd64
apt-get install build-essential dkms && apt-get remove --purge virtualbox-dkms
->reboot
apt-get install linux-headers-amd64
apt-get install build-essential dkms && apt-get remove --purge virtualbox-dkms
->reboot
--[ Links for study ]
1. CEH Tools :
1.1. CEH v7 Instructor Slides
CEH v7 Instructor Slides are 11 PDF Files for you to learn Complete Ethical Hacking or, refer it side by side when learning it from Cybrary. Each file has more than 100 Slides and they also include link to specific tools and softwares for you to use. Size : 170 MB
This is the Disk version of CEH v8 Toolkit. You can find all the tools here.
2. Pentesting OS :
2.1. Kali Linux
Kali Linux, The most powerfull and advanced Pentesting System. Most of you might be familar with else, just visit the link above
2.2. Parrot Security OS
Parrot Security OS is one of the known Pentesting OS available. Little has been known about this OS ( to me ) so i’d like your review on this
2.3. Cyborg Hawk Linux
Cyborg Hawk Linux runs on Ubuntu ( unlike Kali which run on Debain ) and has more features and tools and a sexy little OS. Give it a try !
--[ Vulnerable apps ]
| Vulnerable Application | Platform | |
| 1 | SPI Dynamics (live) | ASP |
| 2 | Cenzic (live) | PHP |
| 3 | Watchfire (live) | ASPX |
| 4 | Acunetix 1 (live) | PHP |
| 5 | Acunetix 2 (live) | ASP |
| 6 | Acunetix 3 (live) | ASP.Net |
--[ Python resources ]
Python is an easy to learn language many beginners to coding choose as their first programming language and it is not limited to web development, as you can build games and applications for academical research with it. If you are new to programming or simply interested in learning Python, here are some resources you can use.
Collection of Python Tutorials.
Subscribe to:
Posts (Atom)