Download Free Hacking Tools For Mac
- Mac Free Download For Pc
- Download Free Hacking Tools For Mac Software
- Download Free Hacking Tools For Mac Free
When I have started to learn
- Jun 17, 2020 WiFi Hacking Software + Wifi hacker. WiFi Password Hacking Software is a software who enables you to break any Wireless-Security users protects her networks with different securities like WPA, WpA2 & more but using this tool you can easily break security & get an access code for using free.
- Sep 17, 2014 Other Hacking Tools: Besides the aforementioned tools, there is a myriad of hacking tools used by hackers. They don’t belong to a particular category, but are very popular among hackers nonetheless: Netcat It is a featured network utility tool. It has the capability to read and write data across all network connections that use TCP/IP protocol.
- Wireless NetView. NirSoft’s WirelessNetView is a free application that runs in the backgrounds of Windows-based computers and monitors their wireless network activities. WirelessNetView is a lightweight utility (available as a standalone executable or installation package) that monitors the activity of reachable wireless networks and displays information related to them, such as SSID.
- May 31, 2020 Top 15 Best Free Hacking Tools and Security Utilities 2020 (Download) Security utilities and hacking tools make lives easier today. We do not need to put ourselves in a lot of rush. Just download the tool and let it do all the work. This page has top 15 hacking tools and security tools 2020 for free download.
- Ethical hacking tools allow you to scan. Multi-platform and fully available for Mac, Linux, Windows and Android. Nmap (Network Mapper) is a free open source security tool used by infosec professionals to manage and audit network and OS security for both local and remote hosts.
Sep 14, 2019 Video Tutorial of Creepy Free Hacking tools for Network Scanning #11 Nmap – A Network Scanner Free tool. Nmap is a free hacking tool and most used worldwide in terms of network scanning. It is used to detect live hosts in the network, open ports of devices, running service on the same port with version detail, also used for vulnerability scanning.
Today I can understand your condition if you are learning how to hack and still confused about hacking tools used by pro hacker and penetration tester then this post is relevant for you.
Free Hacking tools for Information Gathering
#1 OSINT Framework
OSINT Framework This is not a tool but framework focused on gathering information using different tools available open source (over internet). The intention is to help people find free OSINT resources. Some of the sites included might require registration or offer more data for $$$, but you should be able to get at least a portion of the available information for no cost.
#2 SHODAN
SHODAN: Shodan also is not a tool, it is a search engine that lets the user find specific types of computers (webcams, routers, servers, etc.) connected to the internet using a variety of filters. Some have also described it as a search engine of service banners, which are metadata that the server sends back to the client.[1] This can be information about the server software, what options the service supports, a welcome message or anything else that the client can find out before interacting with the server.
#3 Check User Name
CheckUserName: It is an online service that helps hacker to check usernames more than over 170 social networks. This is especially useful if Hacker is looking for social media accounts with a specific username and helpful The penetration tester for running an investigation to determine the usage of the same username on different social networks.
#4 Google Dorks
GOOGLE DORKS: Hacker never forgets to gather useful information using the search engine Google. Google hacking is a technique to get information hidden in a deep search engine Database. Google Hacking Database is the collection of google dorks.
Google Dorks Tutorial Google Hacking Open web information Gathering
Free Google Hacking Books: Google Hacking Filters Google Hacking for Penetration Tester
#5 Maltego
Maltego: Maltego is the passive information gathering tool condition if
Maltego Kali Linux Tutorial
#6 Recon-ng
Recon-ng: Recon-ng is another great tool pre-built in Kali Linux used to perform gathering information quickly. it is a full-featured Web Framework, it’s written in python. Complete with independent modules, database interaction, built-in convenience functions, interactive help, and command completion, Recon-ng provides a powerful environment in which open source web-based reconnaissance can be conducted quickly and thoroughly.
#7 Whois
A whois Kali Linux command is a utility as a part of the information gathering used in all of the Linux-based operating systems. this tool is part of information security assessment, and one of the information gathering techniques. there are a lot of information gathering strategies. It is used to identify domain information and more. Whois.com
#8 DIG (Domain Information Gropper)
Dig: The ‘dig command‘ is used in network administration that check and lookup domain name server (DNS) It is dnssec and the part of information gathering.
dnsenum
Find Information related Domain Name servers, mail servers, exchange server, file server etc.
#9 Theharvester
Theharvester: Grab email addresses by using it search engine database, it is mostly used to collect email details of particular domain. thehaverster in Kali Linux tutorial
#10 Creepy
Creepy: Creepy is a geolocation OSINT tool for penetration tester. Gathers geolocation related information from online sources by querying social networking platforms like Twitter, Flicker, and Facebook etc, and allows for presentation on map.
If anyone uploads images on social media with geolocation activated then you will see a full
It search filtering based on exact location and/or date, export in csv format or kml for further analysis in Google Maps.
Free Hacking tools for Network Scanning
#11 Nmap – A Network Scanner Free tool Activate mac os x office hack.
Nmap is a free hacking tool and most used worldwide in terms of network scanning. It is used to detect live hosts in the network, open ports of devices, running service on the same port with version detail, also used for vulnerability scanning.
It is free tool and available for windows, Linux, Free BSD, OpenBSD, Solaris, IRIX, Mac OS X, HP-UX, NetBSD, Sun OS, Amiga, and more.
Nmap is a powerful tool, has been used to scan huge networks of literally hundreds of thousands of machines in the same network or the network
Some Important Tutorials Here
- Kali Linux Scan Network by
nmap pingsweep – [Full Guide]
#12 Angry IP Scanner
Angry IP Scanner is an open-source, simple and fast tool to use. It is a cross-platform network scanner.
It is widely used by network administrators, hackers, Penetration tester and just curious users around the world, including large and small enterprises, banks, and government agencies.
It is available for Linux, Windows, and Mac OS X, may be supporting other platforms as well.
It scans IP addresses and ports as well as has many other features as below:
- Scans local networks as well as Interne
- IP Range, Random or file in any format
- Exports results into many formats
- Extensible with many data fetchers
- Provides command-line interface
- Over 29 million downloads
- Free and open-source
- Works on Windows, Mac and Linux
- Installation not required
#13 Advanced IP Scanner
It provides remote control over computers using RDP and Radmin, and can even switch off computers.
It is available in a portable mode, you can have this tool in your pen drive.
#14 IP Scanner
It is
Features are:
- scan IP ranges automatically or on demand
- re-discover an entire subnet with just one click
- exclude devices from the results based on type or IP address
- import your entire network setup via a CSV file
- and do so much more!
#15 Hping3
It is available in Kali Linux by default it is one of DOS attack software, DDOS stand for distributed denial of service attack. you can launch and stop the DOS attack, whenever you want. In this illustration, hping3 will act as an ordinary ping utility, sending ICMP-reverberation und getting ICMP-reply
Tutorial Article: 10 hping3 examples for scanning network in Kali Linux
#16 NetDiscover
Netdiscover is an ultimate scanning tool used to get the internal IP address and MAC address of live hosts in the network. Netdiscover is a pre-installed tool in Kali Linux, if you are using Kali Linux then you don’t need to install
Must Read: 10 best open port checker Or Scanner
Vulnerability Assesment tools
#17 OpenVAS
OpenVAS does not default in Kali Linux if you want to use, you must install it first. It is available on the Kali Linux repository so you can install directly from the terminal using apt-get utility.
OpenVAS Documentation
The OpenVAS scanner is a comprehensive vulnerability assessment system that can detect security issues in all manner of servers and network devices.
Results will be delivered to your email address for analysis; allowing you to start re-mediating any risks your systems face from external threats.
Vulnerability scanning is a crucial phase of a penetration test and having an updated vulnerability scanner in your security toolkit can often make a real difference by helping you discover overlooked vulnerable items. For this reason, we’ve manually packaged the latest and newly released OpenVAS 8.0 tool and libraries for Kali Linux. Although nothing major has changed in this release in terms of running the vulnerability scanner, we wanted to give a quick overview on how to get it up and running.
#19 Nikto – Web Scanner
Nikto is
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated.
See All features of Nikto: https://cirt.net/Nikto2
Nikto Tutorial:
#20 Nexpose – Community Addition
Nexpose community vulnerability tool is developed by Rapid7 which is an open source tool. It is widely used for vulnerability scanning and a wide range of network intrusion checks. The following are the key features of Nexpose Community tool.
- The tool is quite detailed in its scanning where it takes into account the age of the vulnerability such as malware kit employed, the advantages taken by the kit, etc.
- The tool can be easily combined with a Metaspoilt framework.
- The tool is capable to scan the new devices in order to detect the vulnerabilities and evaluate the network.
- It can monitor the vulnerabilities exposures real time and can familiarize itself to the latest hazards very efficiently.
- The tool categorizes the risks post scanning for vulnerability into low, medium, or high scale.
Download Nexpose: Nexpose Comunity Adition
Mac Free Download For Pc
#21 Retina CS Community
Retina CS is an open source free vulnerability scanner tool. It is a web-based console. It is used
Features:
- The tool is good for network security administrators, help to saves both time and money required for network security management.
- It can perform automated vulnerability scans for workstations, web servers, web applications, and databases very swiftly.
- It can provide an assessment of cross-platform vulnerability.
- It has features to provide patching, configuration compliance, compliance reporting, etc.
- The tool supports virtual environments such as virtual app scanning, vCenter integration, etc.
Download: Retina CS Community Tool
Web Application Analyzing Tools
#22 WPscan
Wpscan a small tool written in ruby and preinstalled in Kali Linux, if you are using another Linux distribution, then install wpscan first.
Wpscan is used to scan the
WPscan Tutorial: WpScan
#23 HTTrack – Website Copier
HTTrack is a free (GPL, libre/free software) and easy-to-use offline browser utility.
It allows you to download a World Wide Web site from the Internet to a local directory, building recursively all directories, getting HTML, images, and other files from the server to your computer. HTTrack arranges the original site’s relative link-structure. Simply open a page of the “mirrored” website in your browser, and you can browse the site from link to link, as if you were viewing it online. HTTrack can also update an existing mirrored site, and resume interrupted downloads. HTTrack is fully configurable, and has an integrated help system.
WinHTTrack is the Windows (from Windows 2000 to Windows 10 and above) release of HTTrack, and WebHTTrack the Linux/Unix/BSD release.
See the download page. HTTrack Download
How to use
How to use
#24 Arachani Web Scanner
If you are Kali Linux user, then you shouldn’t worry about arachani web scanner is available for Kali Linux. Just run following command to install
#apt-get install arachni
The Arachni scanner is an escalated tool that runs from a web interface much likened to that of Tenable’s Nessus. Notwithstanding, dissimilar to Nessus, Arachni can just perform a scan against one host on one port at a time. On the off chance that there are different web services running on a host and not serviced from the port, then repeated scan will
Tutorial : How to use Arachni scanner for Web Application vulnerability in Kali Linux
#25 sqlmap – Database Enumerator
Sqlmap is default in Kali Linux, Use and enjoy to get important information from database server.
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers.
It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
Features :
- Supported databases are MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, IBM DB2, SQLite, Firebird, Sybase, SAP MaxDB, Informix, HSQLDB.
- Six sql injetion techniques support: boolean-based blind, time-based blind, error-based, UNION query-based, stacked queries and out-of-band.
- Direct connect to the database and enumerate data without DBMS credentials.
- It can dump databse tables.
- It support to download and upload any file from the database server underlying file system when the database software is MySQL, PostgreSQL or Microsoft SQL Server.
- the database server underlying file system when the database software is MySQL, PostgreSQL or Microsoft SQL Server.
Free Hacking tools for Password Cracking
#26 John The Ripper
John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, and OpenVMS.
John, better known as John the Ripper, is a tool to find weak passwords of users in a server. John can map a dictionary or some search pattern as well as a password file to check for passwords. John supports different cracking modes and understands many ciphertext formats, like several DES variants, MD5 and blowfish. It can also be used to extract AFS and Windows NT passwords.
Documentation : https://www.openwall.com/john/doc/
#27 Hashcat
According to official website Hashcat is the world’s fastest CPU-based password recovery tool.
While it’s not as fast as its GPU counterpart oclHashcat, large lists can be easily split in half with a good dictionary and a bit of knowledge of the command switches.
Hashcat was written somewhere in the middle of 2009. Yes, there werealready close-to-perfect working tools supporting rule-based attackslike “PasswordsPro”, “John The Ripper”. However for some unknown reason,both of them did not support multi-threading. That was the only reasonto write Hashcat: To make use of the multiple cores of modern CPUs.
Granted, that was not 100% correct. John the Ripper already supported MPI using a patch, but at that time it worked only for
Must Read: Hashcat Tutorial – Bruteforce Mask Attack
#28 Cain and Abel
Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols.
Cain and Able Tutorial:
#29 Hydra-THC
According to official website of thc-hydra, One of the biggest security holes are passwords, as every password security study shows. This tool is a proof of concept code, to give researchers and security consultants the possibility to show how easy it would be to gain unauthorized access from remote to a system and different online services
There are already several login hacking tools available, however the online services Either support more than one protocol to attack or support panellized Connects.
THC-Hydra Tutorial: Dictionary attack tool thc-hydra tutorial for beginner
#30 FcrackZip
fcrackzip searches each zipfile given for encrypted files and tries to guess the password. All files must be encrypted with the same password, the more files you provide, the better.
Have you ever mis-typed a password for unzip? Unzip reacted pretty fast with ´incorrect password´, without decrypting the whole file. While the encryption algorithm used by zip is relatively secure, PK made cracking easy by providing hooks for very fast password-checking, directly in the zip file. Understanding these is crucial to zip password cracking.
Tutorial: Fcrackzip Windows to crack zip password [Tutorial]
Must Read: Top 10 Password cracker software for Windows 10
Free hacking tools for Wi-Fi
#31 Aircrack-ng
Aircrack-ng is not a tool, but it is a complete set of tools including used to audit wireless network security.
It focuses on different areas of WiFi security:
- Monitoring: Packet capture and export of data to text files for further processing by third party tools
- Attacking: Replay attacks, deauthentication, fake access points and others via packet injection
- Testing: Checking WiFi cards and driver capabilities (capture and injection)
- Cracking: WEP and WPA PSK (WPA 1 and 2)
All tools are command line which allows for heavy scripting. A lot of GUIs have taken advantage of this feature. It works primarily Linux but also Windows, OS X, FreeBSD, OpenBSD, NetBSD, as well as Solaris and even eComStation 2
Aircrack-ng Documentation: https://www.aircrack-ng.org/doku.php#documentation
#32 Fern Wifi Cracker
Fern Wifi Cracker is GUI (Graphical User Interface) based tool. It is easy to use. If you are not command lover person then this is a best tool for you to crack wifi including WEP/WPA/WPA2.
Fern Wifi Cracker is a Wireless security auditing and attack software program written using the Python Programming Language and the Python Qt GUI library, the program is able to crack and recover WEP/WPA/WPS keys and also run other
Features:
- WEP Cracking with Fragmentation,Chop-Chop, Caffe-Latte, Hirte, ARP Request Replay or WPS attack
- WPA/WPA2 Cracking with Dictionary or WPS based attacks
- Automatic saving of key in database on successful crack
- Automatic Access Point Attack System
- Session Hijacking (Passive and Ethernet Modes)
- Access Point MAC Address Geo Location Tracking
- Internal MITM Engine
- Bruteforce Attacks (HTTP,HTTPS,TELNET,FTP)
- Update Support
Best Tutorial : Fern WiFi Password Auditing Tool
#33 Fluxion
Fluxion is a wifi Security analysis tool security study
Complete Tutorial: Fluxion – WPA WPA2 hacking in minutes [2019]
#34 Metasploit Framework
If you are planning to learn hacking, you must learn how to use metasploit framework.
Metasploit is as important as milk for body.
It is the collection of small tool or scripts used for scanning, enumeration, vulnerability scanning, exploitation, password cracking, maintaining access and more.
You can say one framework collection of tool
Metasploit framework Version v5.0.2-dev has
- 1852 exploits
- 1046 auxiliary
- 325 post
- 541 payloads
- 44 encoders
- 10 nops
- 2 evasion
Metasploit is easy to learn and use for Hacking or penetration testing. Command line interface makes it more strong and powerful.
You can write your own exploits and use inside metasploit. It is absolutely Free.
Metasploit Tutorial Links:
Download Free Hacking Tools For Mac Software
Metasploit Unleashed by Offensive Security
Metasploit Minute by Hak5 Team
Free Metasploit Course by Cybrary
#35 Armitage
Do Easy and fast hacking with Armitage It is graphical interface of Metasploit framework. It has user friendly interface. Everything in one click.
One click for scanning network.
One Click for run vulnerability scanning, possibilities of exploitation those weakness.
One Click for creating backdoor and more.
Really it is very awesome exploitation framework you must try and use it.
Armitage Tutorial: Manual Page
#36 BeEF – Exploit Browser
BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.
Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser.
BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
Beef Youtube Channel: https://www.youtube.com/user/TheBeefproject
Blog : https://blog.beefproject.com/
#37 SET – Social Engineering Toolkit
It is time to exploit human, Yes human can be exploited through the computer. Just send a link to him/her, He/she will give you personal information (some time username and password) try it now.
This is menu based exploitation framework, It means choose the option from given menu, choose again and again. Hurrrr you launched attack.
It is very usefull for hacking social media accounts like Facebook, twitter, LinkedIn etc.
Do you want hack Gmail account use it.
Hacker can hack facebook account in 1 MinuteSubscribe Youtube channel:https://www.youtube.com/channel/UC7nTdoS8d0bmiVUrQTjpuzwPlease share someone Who has requirements for this training. Hacking Group: https://www.facebook.com/groups/cyberpratibhaRegards!Vijay Kumar
Posted by Cyrage on Thursday, 19 April 2018#38 Macchanger
macchanger is a GNU/Linux utility for viewing/manipulating the MAC address for network interfaces.
MAC address is a physical address of NIC (Network Interface Card).
Every device in the network has two type of address, One is IP address another MAC address. IP address can be changed easily, but MAC address can’t.
Macchanger is used to change the MAC Address of devices. It is available only for Linux.
It comes in Kali Linux by default.
More: Learn about macchanger or MAC spoofing in Windows 10 & Linux
#39 ArpSpoof
arpspoof redirects packets from a target host (or all hosts) on the LAN intended for another host on the LAN by forging ARP replies. This is an extremely effective way of sniffing traffic on a switch
Kernel IP forwarding (or a userland program which accomplishes the same, e.g. fragrouter(8)) must be turned on ahead of time
#40 Ettercap – MITM AttacK
Man In The Middle attack is very famous attack performed by hacker. In this attack hacker sit between you and server, and monitor all the network traffic between you and servers on the internet.
Hacker can see what are you browsing, what text you are filling on which website. If you are entering username and password, it can be seen. So be careful about this attack.
Ettercap is a comprehensive suite for man in the middle attacks. It features sniffing of live connections, content filtering on the fly and many other interesting tricks. It supports active and passive dissection of many protocols and includes many features for network and host analysis
#41 Wireshark
Wireshark is a shark of network monitoring / capturing each every packet traveling over wire or wireless medium.
Using wireshark is enough for a network administrator / Network security researcher to monitor network activity.
Wireshark is the world’s foremost and widely-used network protocol analyzer. It lets you see what’s happening on your network at a microscopic level and is the de facto (and often de jure) standard across many commercial and non-profit enterprises, government agencies, and educational institutions. Wireshark development thrives thanks to the volunteer contributions of networking experts around the globe and is the continuation of a project started by Gerald Combs in 1998
Features:
- Deep inspection of hundreds of protocols, with more being added all the time
- Live capture and offline analysis
- Standard three-pane packet browser
- Multi-platform: Runs on Windows, Linux, macOS, Solaris, FreeBSD, NetBSD, and many others
- Captured network data can be browsed via a GUI, or via the TTY-mode TShark utility
- The most powerful display filters in the industry
- Rich VoIP analysis
- Read/write many different capture file formats: tcpdump (libpcap), Pcap NG, Catapult DCT2000, Cisco Secure IDS iplog, Microsoft Network Monitor, Network General Sniffer® (compressed and uncompressed), Sniffer® Pro, and NetXray®, Network Instruments Observer, NetScreen snoop, Novell LANalyzer, RADCOM WAN/LAN Analyzer, Shomiti/Finisar Surveyor, Tektronix K12xx, Visual Networks Visual UpTime, WildPackets EtherPeek/TokenPeek/AiroPeek, and many others
- Capture files compressed with gzip can be decompressed on the fly
- Live data can be read from Ethernet, IEEE 802.11, PPP/HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, and others (depending on your platform)
- Decryption support for many protocols, including IPsec, ISAKMP, Kerberos, SNMPv3, SSL/TLS, WEP, and WPA/WPA2
- Coloring rules can be applied to the packet list for quick, intuitive analysis
- Output can be exported to XML, PostScript®, CSV, or plain text
Tutorial for Beginners: Using Wireshark
Download Wireshark: https://www.wireshark.org/#download
Wireshark Tutorial: Wiki
#42 Burp Suite Community
Burp Suite is the leading software for web security testing…
Thousands of organizations use Burp Suite to find security exposures before it’s too late. By using cutting-edge scanning technology, you can identify the very latest vulnerabilities. Our researchers frequently uncover brand new vulnerability classes that Burp is the first to report
Burp Suite constantly raises the bar of what security testing is able to achieve.
Download Burpsuite Community edition : Download Here
Tutorial of Burp Suite: Web Security
#43 Owasp ZAP Prox
The OWASP Zed Attack Proxy (ZAP) is one of the world’s most popular free security tools and is actively maintained by hundreds of international volunteers*. It can help you automatically find security vulnerabilities in your web applications while you are developing and testing your applications. Its also a great tool for experienced pentesters to use for manual security testing.
Official Website Owasp ZAP
#44 Dardis – Report Writing
When you are working as a Penetration tester/ Ethical hacker / Security Researcher then You must submit report to the organization about issues or vulnerabilities.
So you must know to to write report and send to organization.
It comes with kali linux by default if you are not user of Kali Linux then you can download from Here
If Appreciate My Work, You should consider:
- Join Group for Discussion Facebook Group
- Get your own self-hosted blog with a Free Domain at ($2.96/month)
- Buy a Coffee to Us! Make Small Contribution by Paypal
- Support us by taking our :Online Courses
- Contact me :[email protected]
Download Free Hacking Tools For Mac Free
In past decades, ethical hacking and penetration testing were performed by only a few security experts. Now almost anyone can report security incidents. Ethical hacking tools allow you to scan, search and find the flaws and vulnerabilities within any company to help make their systems and applications more secure (as seen in the recent Top CVE’s exploited in the wild post published a few weeks ago).
Today we’ll explore the best ethical hacking tools used by modern security researchers.
15 Ethical Hacking Tools You Can’t Miss
We’ve compiled some of the most popular penetration testing tools to help you through the first steps of a security investigation. You’ll find some of the classic tools that seem to have been around forever and some new tools that might not be familiar.
1. John the Ripper
John the Ripper is one of the most popular password crackers of all time. It’s also one of the best security tools available to test password strength in your operating system, or for auditing one remotely.
This password cracker is able to auto-detect the type of encryption used in almost any password, and will change its password test algorithm accordingly, making it one of the most intelligent password cracking tools ever.
This ethical hacking tool uses brute force technology to decipher passwords and algorithms such as:
- DES, MD5, Blowfish
- Kerberos AFS
- Hash LM (Lan Manager), the system used in Windows NT / 2000 / XP / 2003
- MD4, LDAP, MySQL (using third-party modules)
Another bonus is that JTR is open source, multi-platform and fully available for Mac, Linux, Windows and Android.
Stay in the loop with the best infosec news, tips and tools
Follow us on Twitter to receive updates!
2. Metasploit
Metasploit is an open source cyber-security project that allows infosec professionals to use different penetration testing tools to discover remote software vulnerabilities. It also functions as an exploit module development platform.
One of the most famous results of this project is the Metasploit Framework, written in Ruby, which enables you to develop, test and execute exploits easily. The framework includes a set of security tools that can be used to:
- Evade detection systems
- Run security vulnerability scans
- Execute remote attacks
- Enumerate networks and hosts
Metasploit offers three different versions of their software:
- Pro: ideal for penetration testing and IT security teams.
- Community: used by small companies and infosec students.
- Framework: the best for app developers and security researchers.
Supported platforms include:
- Mac OS X
- Linux
- Windows
3. Nmap
Nmap (Network Mapper) is a free open source security tool used by infosec professionals to manage and audit network and OS security for both local and remote hosts.
Despite being one of the oldest security tools in existence (launched in 1997), it continues to be actively updated and receives new improvements every year.
It’s also regarded as one of the most effective network mappers around, known for being fast and for consistently delivering thorough results with any security investigation.
What can you do with Nmap?
- Audit device security
- Detect open ports on remote hosts
- Network mapping and enumeration
- Find vulnerabilities inside any network
- Launch massive DNS queries against domains and subdomains
Supported platforms include:
- Mac OS X
- Linux, OpenBSD and Solaris
- Microsoft Windows
4. Wireshark
Wiresharkis a free open-source software that allows you to analyze network traffic in real time. Thanks to its sniffing technology, Wireshark is widely known for its ability to detect security problems in any network, as well as for its effectiveness in solving general networking problems.
While sniffing the network, you’re able to intercept and read results in human-readable format, which makes it easier to identify potential problems (such as low latency), threats and vulnerabilities.
Main features:
- Saves analysis for offline inspection
- Packet browser
- Powerful GUI
- Rich VoIP analysis
- Inspects and decompresses gzip files
- Reads other capture files formats including: Sniffer Pro, tcpdump (libpcap), Microsoft network monitor, Cisco Secure IDS iplog, etc.
- Supported ports and network devices: Ethernet, IEEE 802.11, PPP/HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI.
- Protocol decryption includes but not limited to IPsec, ISAKMP, Kerberos, SNMPv3, SSL/TLS, WEP, and WPA/WPA2
- Exports results to XML, PostScript, CSV, or plain text
Wireshark supports up to 2000 different network protocols, and is available on all major operating systems including:
- Linux
- Windows
- Mac OS X
- FreeBSD, NetBSD, OpenBSD
5. OpenVAS
OpenVAS (also known as the old classic “Nessus”) is an open-source network scanner used to detect remote vulnerabilities in any hosts. One of the best-known network vulnerability scanners, it’s very popular among system administrators and DevOps and infosec professionals.
Main features
- Powerful web-based interface
- +50,000 network vulnerability tests
- Simultaneous multiple host scanning
- Able to stop, pause and resume scan tasks
- False positive management
- Scheduled scans
- Graphics and statistics generation
- Exports results to plain text, XML, HTML or LateX
- Powerful CLI available
- Fully integrated with Nagios monitoring software
While its web-based interface allows it to be run from any operating system, a CLI is also available and works well for Linux, Unix and Windows operating systems.
The free version can be downloaded from the OpenVAS website, but there is also a commercial enterprise license available from the Greenbone Security (parent company) website.
6. IronWASP
If you’re going to perform ethical hacking, IronWASP is another great tool. It’s free, open source and multi-platform, perfect for those who need to audit their web servers and public applications.
One of the most appealing things about IronWASP is that you don’t need to be an expert to manage its main features. It’s all GUI-based, and full scans can be performed in only a few clicks. So, if you’re just getting started with ethical hacking tools, this is a great way to start.
Some of its main features include:
- Powerful GUI-based interface
- Web scan sequence recording
- Exports results into HTML and RTF file format
- 25+ different web vulnerabilities
- False positive and negative management
- Full Python and Ruby support for its scripting engine
- Can be extended by using modules written in C#, Ruby, and Python
- Supported platforms: Windows, Linux with Wine, and MacOS using CrossOver
7. Nikto
Nikto is another favorite, well-known as part of the Kali Linux Distribution. Other popular Linux distributions such as Fedora already come with Nikto available in their software repositories as well.
This security tool is used to scan web servers and perform different types of tests against the specified remote host. Its clean and simple command line interface makes it really easy to launch any vulnerability testing against your target, as you can see in the following screenshot:
Nikto’s main features include:
- Detects default installation files on any OS
- Detects outdated software applications.
- Runs XSS vulnerability tests
- Launches dictionary-based brute force attacks
- Exports results into plain text, CSV or HTML files
- Intrusion detection system evasion with LibWhisker
- Integration with Metasploit Framework
8. SQLMap
sqlmap is a cool cyber-security tool written in Python that helps security researchers to launch SQL code injection tests against remote hosts. With SQLMap you can detect and test different types of SQL-based vulnerabilities to harden your apps and servers, or to report vulnerabilities to different companies.
Its SQL injection techniques include:
- UNION query-based
- time-based blind
- boolean-based blind
- error-based
- stacked queries
- out-of-band
Main features:
- Multiple database server support: Oracle, PostgreSQL, MySQL and MSSQL, MS Access, DB2 or Informix.
- Automatic code injection capabilities
- Password hash recognition
- Dictionary-based password cracking
- User enumeration
- Get password hashes
- View user privileges and databases
- Database user privilege escalation
- Dump table information
- Executes remote SQL SELECTS
Check out the next video to see the true power of SQLMap using the sqlmap out-of-band injection working with Metasploit integration against Microsoft SQL Server:
9. SQLNinja
SQLNinja is another SQL vulnerability scanner bundled with Kali Linux distribution. This tool is dedicated to target and exploit web apps that use MS SQL Server as the backend database server. Written in Perl, SQLNinja is available in multiple Unix distros where the Perl interpreter is installed, including:
- Linux
- Mac OS X & iOS
- FreeBSD
SQLninja can be run in different types of modes such as:
- Test mode
- Verbose mode
- Fingerprint remote database mode
- Brute force attack with a word list
- Direct shell & reverse shell
- Scanner for outbound ports
- Reverse ICMP Shell
- DNS tunnelled shell
10. Wapiti
Wapiti is a free open-source command-line based vulnerability scanner written in Python. While it’s not the most popular tool in this field, it does a good job of finding security flaws in many web applications.
Using Wapiti can help you to discover security holes including:
- XSS attacks
- SQL injections
- XPath injections
- XXE injections
- CRLF injections
- Server side request forgery
Other features include:
- Runs in verbose mode
- Ability to pause and resume scans.
- Highlights vulnerabilities found inside the terminal
- Generates reports and export into HTML, XML, JSON and TXT
- Activates and deactivates multiple attack modules
- Removes parameters from certain URLs
- Excludes URLs during an attack
- Bypasses SSL certificate verification
- URL extractor from javascript
- Timeout configuration for large scans
- Sets custom user-agent and HTTP headers
11. Maltego
Maltego is the perfect tool for intel gathering and data reconnaissance while you’re performing the first analysis of your target.
In this case, it can be used to correlate and determine relationships between people, names, phone numbers, email addresses, companies, organizations and social network profiles.
Along with online resources like Whois data, DNS records, social networks, search engines, geolocation services and online API services it can also be used to investigate the correlation between internet-based infrastructures including:
- Domain names
- DNS servers
- Netblocks
- IP addresses
- Files
- Web Pages
Main features include:
- GUI-based interface
- Analyzes up to 10.000 entities per graph
- Extended correlation capabilities
- Data sharing in real time
- Correlated data graphics generator
- Exports graphs to GraphML
- Generates entity lists
- Can copy and paste information
This application is available for Windows, Linux, and Mac OS, and the only software requirement is to have Java 1.8 or greater installed.
12. AirCrack-ng
AirCrack-ng is a respected Wifi security suite for home and corporate security investigations. It includes full support for 802.11 WEP and WPA-PSK networks and works by capturing network packets. It then analyzes and uses them to crack Wifi access.
For old-school security professionals, AirCrack-ng includes a fancy terminal-based interface along with a few more interesting features.
Main features:
- Extensive documentation (wiki, manpages)
- Active community (forums and IRC channels)
- Support for Linux, Mac and Windows Wifi detection
- Launches PTW, WEP and Fragmentation attacks
- Supports WPA Migration Mode
- Fast cracking speed
- Multiple Wifi card support
- Integration with 3rd party tools
As a bonus, it comes bundled with a lot of Wifi auditing tools including:
- airbase-ng
- aircrack-ng
- airdecap-ng
- airdecloak-ng
- airdriver-ng
- aireplay-ng
- airmon-ng
- airodump-ng
- airolib-ng
- airserv-ng
- airtun-ng
- easside-ng
- packetforge-ng
- tkiptun-ng
- wesside-ng
- airdecloak-ng
13. Reaver
Reaver is a great open-source alternative to Aircrack-ng that allows you to audit the security of any Wifi with WPA/WPA2 pass keys. It uses brute force Wifi attack techniques like Pixie dust attacks to crack Wifi-protected setups through common Wifi flaws and vulnerabilities.
Depending on how well-configured the router-level Wifi security is, it can take between 3 to 10 hours to get an effective brute-force cracking result.
Until recently, the original Reaver version was hosted at Google Cloud. After the release version of version 1.6,a forked community edition was launched in Github.
Build-time dependencies
- build-essential
- libpcap-dev
Runtime-time dependencies
- pixiewps (required for pixiedust attack)
It runs well on most Linux distributions.
14. Ettercap
Ettercap is a network interceptor and packet sniffer for LAN networks. It supports active and passive scans as well as various protocols, including encrypted ones such as SSH and HTTPS.
Other capabilities include network and host analysis (like OS fingerprint), as well as network manipulation over established connections -- which makes this tool great for testing man-in-the-middle attacks.
Main features
- Active and passive protocol analysis
- Filters based on IP source and destination, Mac and ARP addresses
- Data injection into established connections
- SSH and HTTPS encryption-based protocols
- Sniffs remote traffic over GRE tunnel
- Extensible with plugins
- Protocol supports include Telnet, FTP, Imap, Smb, MySQL, LDAP, NFS, SNMP, HTTP, etc.
- Determines OS name and version
- Able to kill established LAN connections
- DNS Hijacking
15. Canvas
Canvas is a great alternative to Metasploit, offering more than 800 exploits for testing remote networks.
Main features
- Remote network exploitation
- Targets different kind of systems
- Targets selected geographic regions
- Takes screenshots of remote systems
- Downloads passwords
- Modifies files inside the system
- Escalates privileges to gain administrator access
This tool also lets you use its platform to write new exploits or use its famous shellcode generator. It also integrates an alternative to nmap called scanrand, which is especially useful for port scanning and host discovery over mid to large networks.
Supported platforms include:
- Linux
- MacOSX (requires PyGTK)
- Windows (requires Python and PyGTK)
Summary
Software companies reap the most benefits from the rise of automated ethical hacking tools and penetration testing utilities, giving them more ways to increase system security every day.
Automated tools are changing the way hacking is evolving, making ethical penetration testing easier, faster and more reliable than ever. Penetration testing and reporting activities now play a crucial role in the process of identifying security flaws in remote or local software — enabling company owners to quickly prevent vulnerabilities from running wild all over the Internet.
Like many of these valuable tools, we’ve developed SecurityTrails from scratch, combining different domain automation lists and tons of forensic data so you can audit your domain names, DNS and online applications.
Are you ready to unveil the true power of our security toolkit? Grab a free API account today or contact us for consultation.
Do you want to access the ultimate OSINT tool?Fill out the form to learn how SurfaceBrowser™ can help you to explore Domains, DNS Servers, IP addresses and much more.