Penetration Testing Tools - IT Best Practice Penetration Testing is not a small task. Its required lots of practice and tools knowledge to get the right information and put all the information in Black & White. Tools here describe here are based on BackTrack Linux Version 5 Release 1. Directory Structure of BackTrack Linux Version 5 Release 1 A. Network Analysis 1. 1. dnsdict6 2. dnsenum 3. dnsmap 4. dnsrecon 5. dnstracer 6. dnswalk 7. fierce 8. ldb 9. maltego 10. reverseraider 2. 1. 0trace 2. alive6 3. arping 4. detect-new-ip6 5. fping 6. hping2 7. hping3 8. netdiscover 9. netifera 10. nmap 11. nping 12. pbnj 13. sctpscan 14. svwar 15. trace6 16. traceroute 17. zenmap 3. 1. fragroute 2. fragrouter 3. ftester 4. hexinject 5. sniffjoke 4. 1. autoscan 2. implementation6 3. implementation6d 4. netifera 5. nmap 6. scapy 7. zenmap 5. 1. 2. tcpdump 3. tshark 4. wireshark 6. 1. nmap 2. p0f 3. sctpscan 4. xprobe2 5. zenmap 7. 1. dmitry 2. netmask 3. scapy 4. tcptraceroute 8. 1. amap 2. dmitry 3. httprint 4. httsquash 5. miranda 6. nbtscan 7. ncat 8. nmap 9. sslscan 10. zenmap 9. 1. samrdump 10. 2. nmap
Ophcrack Cain & Abel Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols. The program does not exploit any software vulnerabilities or bugs that could not be fixed with little effort. It covers some security aspects/weakness present in protocol's standards, authentication methods and caching mechanisms; its main purpose is the simplified recovery of passwords and credentials from various sources, however it also ships some "non standard" utilities for Microsoft Windows users. The latest version is faster and contains a lot of new features like APR (Arp Poison Routing) which enables sniffing on switched LANs and Man-in-the-Middle attacks.