Tools & Utility
33 articles
dnsEnum
A powerful multithreaded Perl script for DNS enumeration and information gathering.
Recon-ng
A powerful modular OSINT and reconnaissance framework with a Metasploit-like interface.
Dig
The Domain Information Groper (dig) is one of the most powerful command-line tools for querying DNS records.
Fierce
DNS reconnaissance tool for discovering subdomains, IP ranges, and network information of a target domain.
Sublist3r
Python tool for enumerating subdomains using OSINT techniques via multiple search engines and services.
Gobuster
A fast directory and DNS subdomain brute-forcing tool written in Go.
FFUF
Fast and flexible fuzzing tool for web applications written in Go.
Nmap
The ultimate network scanning tool for host discovery, port scanning, OS detection, and vulnerability assessment.
Netdiscover
Lightweight and efficient ARP scanning tool for network discovery on local networks.
WAFW00F
Web Application Firewall fingerprinting tool to detect and identify WAFs protecting web applications.
Google Dorks
Advanced Google search techniques for extracting sensitive information from websites using specialized operators.
theHarvester
Open-source OSINT tool for collecting emails, subdomains, IPs, and intelligence from public sources.
WhatWeb
Website fingerprinting tool for identifying web servers, CMS platforms, frameworks, and technologies.
Hashcat
Advanced password recovery tool supporting GPU-accelerated cracking for hundreds of hash types.
John The Ripper
Open-source password cracker supporting hundreds of hash and cipher types.
Hydra
Fast and flexible online password brute-forcing tool supporting numerous protocols.
CeWL
Custom wordlist generator that spiders a given URL and collects words to create a targeted wordlist.
CUPP Password Generator
Common User Password Profiler - generates targeted wordlists based on personal information about the target.
Slowloris
Low-bandwidth DDoS tool that keeps many connections to the target web server open as long as possible.
Metasploit Framework
The world's most used penetration testing framework for exploit development and vulnerability verification.
Netcat
The Swiss Army knife of networking - a versatile tool for reading and writing data across network connections.
Socat
Advanced networking utility that establishes bidirectional byte streams between two data channels.
Enum4linux
Tool for enumerating information from Windows and Samba systems (shares, users, groups, policies).
SQLMap
Automated SQL injection and database takeover tool.
Burp Suite
The leading web application security testing platform with proxy, scanner, and intruder tools.
LinPEAS
Linux Privilege Escalation Awesome Script for finding possible paths to escalate privileges on Linux/Unix hosts.
LinEnum
Linux enumeration script for privilege escalation that provides detailed system information.
Linux Exploit Suggester
Tool that suggests possible kernel exploits based on the target's kernel version.
WinPEAS
Windows Privilege Escalation Awesome Script for finding possible paths to escalate privileges on Windows hosts.
PowerSploit
Collection of PowerShell post-exploitation modules for Windows penetration testing.
JAWS
Just Another Windows (Enum) Script - PowerShell script for enumerating Windows systems.
Cobalt Strike
Commercial adversary simulation platform used for red team operations and advanced penetration testing.
Sliver
Open-source cross-platform adversary emulation and C2 framework written in Go.