Change background image
  1. What's up? I see you're viewing as a Guest. How about registering, it only takes like 2 minutes. This will enable you to do more on our forum and stay updated.

Security/Hacking Tools 101

Discussion in 'PC General' started by vettacossx-alpha, May 11, 2011.

Thread Status:
This thread is more than 180 days old.
  1. vettacossx-alpha

    vettacossx-alpha Midnight Mage Member

    1. Nmap

    I think everyone has heard of this one, recently evolved into the 4.x series.

    Nmap (“Network Mapper”) is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free and open source.

    Can be used by beginners (-sT) or by pros alike (–packet_trace). A very versatile tool, once you fully understand the results.

    http://www.insecure.org/nmap/download.html


    2. Nessus Remote Security Scanner

    Recently went closed source, but is still essentially free. Works with a client-server framework.

    Nessus is the world’s most popular vulnerability scanner used in over 75,000 organizations world-wide. Many of the world’s largest organizations are realizing significant cost savings by using Nessus to audit business-critical enterprise devices and applications.

    http://www.nessus.org/download/

    3. John the Ripper

    Yes, JTR 1.7 was recently released!

    John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), DOS, Win32, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix flavors, supported out of the box are Kerberos AFS and Windows NT/2000/XP/2003 LM hashes, plus several more with contributed patches.

    http://www.darknet.org.uk/2006/03/jtr-password-cracking-john-the-ripper-17-released-finally/

    4. Nikto

    Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3200 potentially dangerous files/CGIs, versions on over 625 servers, and version specific problems on over 230 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).

    Nikto is a good CGI scanner, there are some other tools that go well with Nikto (focus on http fingerprinting or Google hacking/info gathering etc, another article for just those).

    http://www.cirt.net/code/nikto.shtml

    5. SuperScan

    Powerful TCP port scanner, pinger, resolver. SuperScan 4 is an update of the highly popular Windows port scanning tool, SuperScan.

    If you need an alternative for nmap on Windows with a decent interface, I suggest you check this out, it’s pretty nice.

    http://www.foundstone.com/index.htm...subcontent=/resources/proddesc/superscan4.htm

    6. p0f

    P0f v2 is a versatile passive OS fingerprinting tool. P0f can identify the operating system on:

    – machines that connect to your box (SYN mode),
    – machines you connect to (SYN+ACK mode),
    – machine you cannot connect to (RST+ mode),
    – machines whose communications you can observe.

    Basically it can fingerprint anything, just by listening, it doesn’t make ANY active connections to the target machine.

    http://lcamtuf.coredump.cx/p0f/p0f.shtml

    7. Wireshark (Formely Ethereal)

    Wireshark is a GTK+-based network protocol analyzer, or sniffer, that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and to give Wireshark features that are missing from closed-source sniffers.

    Works great on both Linux and Windows (with a GUI), easy to use and can reconstruct TCP/IP Streams! Will do a tutorial on Wireshark later.

    http://www.wireshark.org/

    8. Yersinia

    Yersinia is a network tool designed to take advantage of some weakeness in different Layer 2 protocols. It pretends to be a solid framework for analyzing and testing the deployed networks and systems. Currently, the following network protocols are implemented: Spanning Tree Protocol (STP), Cisco Discovery Protocol (CDP), Dynamic Trunking Protocol (DTP), Dynamic Host Configuration Protocol (DHCP), Hot Standby Router Protocol (HSRP), IEEE 802.1q, Inter-Switch Link Protocol (ISL), VLAN Trunking Protocol (VTP).

    The best Layer 2 kit there is.

    http://yersinia.sourceforge.net/

    9. Eraser

    Eraser is an advanced security tool (for Windows), which allows you to completely remove sensitive data from your hard drive by overwriting it several times with carefully selected patterns. Works with Windows 95, 98, ME, NT, 2000, XP and DOS. Eraser is Free software and its source code is released under GNU General Public License.

    An excellent tool for keeping your data really safe, if you’ve deleted it..make sure it’s really gone, you don’t want it hanging around to bite you in the ass.


    http://www.heidi.ie/eraser/download.php

    10. PuTTY

    PuTTY is a free implementation of Telnet and SSH for Win32 and Unix platforms, along with an xterm terminal emulator. A must have for any h4x0r wanting to telnet or SSH from Windows without having to use the crappy default MS command line clients.

    http://www.chiark.greenend.org.uk/~sgtatham/putty/

    11. LCP

    Main purpose of LCP program is user account passwords auditing and recovery in Windows NT/2000/XP/2003. Accounts information import, Passwords recovery, Brute force session distribution, Hashes computing.

    A good free alternative to L0phtcrack.

    LCP was briefly mentioned in our well read Rainbow Tables and RainbowCrack article.

    http://www.lcpsoft.com/english/download.htm

    12. Cain and Abel

    My personal favourite for password cracking of any kind.

    Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols. The program does not exploit any software vulnerabilities or bugs that could not be fixed with little effort.

    http://www.oxid.it/cain.html

    13. Kismet

    Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system. Kismet will work with any wireless card which supports raw monitoring (rfmon) mode, and can sniff 802.11b, 802.11a, and 802.11g traffic.

    A good wireless tool as long as your card supports rfmon (look for an orinocco gold).

    http://www.kismetwireless.net/download.shtml

    14. NetStumbler

    Yes a decent wireless tool for Windows! Sadly not as powerful as it’s Linux counterparts, but it’s easy to use and has a nice interface, good for the basics of war-driving.

    NetStumbler is a tool for Windows that allows you to detect Wireless Local Area Networks (WLANs) using 802.11b, 802.11a and 802.11g. It has many uses:

    Verify that your network is set up the way you intended.
    Find locations with poor coverage in your WLAN.
    Detect other networks that may be causing interference on your network.
    Detect unauthorized “rogue” access points in your workplace.
    Help aim directional antennas for long-haul WLAN links.
    Use it recreationally for WarDriving.

    http://www.stumbler.net/

    15. hping

    To finish off, something a little more advanced if you want to test your TCP/IP packet monkey skills.

    hping is a command-line oriented TCP/IP packet assembler/analyzer. The interface is inspired to the ping unix command, but hping isn’t only able to send ICMP echo requests. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features.

    http://www.hping.org/

    Yah I’ve stayed away from commercial products in this article, perhaps I’ll cover those another day if you have any questions or want a tut for any of these apps in particular contact DNS or VettaCossX here on the site we will try and source you anything you might need...enjoy USE THESE IN GOOD NETIQUET PLEASE....​
  2. dns

    dns Active Member Admin

    Nice tools. I've actually used the majority of these and actually created a couple programs similar to a couple on the list :o
    I made my first DDOS program when I was 16 to test a website's server threshold.
  3. vettacossx-alpha

    vettacossx-alpha Midnight Mage Member

    Thats awesome bud!

    yes I always post these for folks (keep a few posts in text docs so i can copy and paste them for new sceners they are a nice list of tools for anyone interested in hacking these are some very "typical" tools that will often be referenced in news post ect so its gr8 for any avid hacker to get to know these tools :)
  4. dns

    dns Active Member Admin

    More things you should have

    Program: livehttpheaders
    Website: http://livehttpheaders.mozdev.org/

    Description: livehttpheaders adds information about the HTTP headers by:

    1) Adds 'Headers' tab in 'View Page Info' of a web page.
    2) Adds a tool in the 'Tools->Web Development' menu enabling the display of http headers in real time (while pages are being downloaded from the Internet.)
    3) Allows you to edit request headers and replay a URL (beta). Look for the Replay button in the live window.

    This program will assist with the following:
    - Debugging web applications.
    - Seeing which kind of web server the remote site is using.
    - Seeing cookies sent by the remote site.

    ___________________________________________________________________

    Program: ActivePerl
    Website: http://www.activestate.com/activeperl/downloads

    Description:
    1) Creates a live Perl system on your computer.
    2) This is used to run perl commands and scripts directly from your computer

    ____________________________________________________________________

    Program: aircrack-ng
    Website: http://www.aircrack-ng.org/

    Description: Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the all-new PTW attack, thus making the attack much faster compared to other WEP cracking tools.

    ____________________________________________________________________

    Program: XAMPP
    Website: http://www.apachefriends.org/en/xampp.html

    Description: XAMPP is an easy to install Apache distribution containing MySQL, PHP and Perl. XAMPP is really very easy to install and to use - just download, extract and start.

    ____________________________________________________________________

    I will be adding to my list by editing this post as I go along. I suggest you check back regularly and try to get familiar with all of the programs vettacoss-x and I have both listed. It will come in very handy in the future...
  5. vettacossx-alpha

    vettacossx-alpha Midnight Mage Member

    Nice add with aircrack-ng and activeperl that saves a fkn TON of otherwise used up time via other methods, but then knowing how it all works is 50% of the fun right?! thanks for the new references DNS these should help ppl along....

    particularly those who care to wear "that color hat" LOL (geek joke appologize to those who the humor was lost on)
  6. dns

    dns Active Member Admin

    yes vetta i plan on posting an article describing "those hats" because alot of ppl here have no idea what you're talking about. don't steal my post idea biotch
  7. vettacossx-alpha

    vettacossx-alpha Midnight Mage Member

    kk ill def critique it though bro lmao

    Heres a vid tut for Nmap for tkdoud and friends project good luck guys SAVE AS GUYS its flash format video and clicking it is pointless right click and save as then play SWF in your fav media player (i like VLC it comes with the codecs needed built in)

    http://www.irongeek.com/videos/nmap1.swf
Thread Status:
This thread is more than 180 days old.

Share This Page