Exploit Prevention Suites & Software


  • OpenSCAP

    Free Linux Website

    SCAP is a line of standards managed by NIST. It was created to provide a standardized approach to maintaining the security of enterprise systems, such as automatically verifying the presence of patches, checking system security configuration settings, and examining systems for signs of compromise.

     

    OpenSCAP icon
  • cvechecker

    Free Linux Website

    The goal of cvechecker is to report about possible vulnerabilities on your system, by scanning the installed software and matching the results with the CVE database. Indeed, this is not a bullet-proof method and you will most likely have many false positives (vulnerability is fixed with a revision-release, but the tool isn't able to detect the revision itself), yet it is still better than nothing, especially if you are running a distribution with little security coverage.

    Still, the tool remains useful. With the proper reporting in place, you are immediately warned when a new CVE has been released that might match your system. You can then take the appropriate steps (acknowledge report, verify incident, fix package or mark as false positive).

     

  • Exploit Pack

    Free Mac Windows Linux Website

    Exploit Pack is an open source project security that will help you adapt exploit codes on-the-fly.

    Exploit Pack uses an advanced software-defined interface that supports rapid reconfiguration to adapt exploit codes to the constantly evolving threat environment. Our technologies allow you to rapidly tests and defend against hostile remote targets, mitigate the threat and protect your assets by testing them before hackers do.

    Exploit Pack has been designed by an experienced team of software developers and exploit writers to automate processes so that penetration testers can focus on what its really important. The threat. This blend of engineers and subject matter experts provides an unique advantage by mixing know-how with true insight.

     

    Exploit Pack icon
  • Shodan

    Freemium Web Website

    Shodan is a search engine that lets you find specific computers (routers, servers, etc.) using a variety of filters. Some have also described it as a public port scan directory or a search engine of banners.

     

    Shodan icon
  • Immunity CANVAS

    Commercial Mac Windows Linux Website

    Immunity's CANVAS makes available hundreds of exploits, an automated exploitation system, and a comprehensive, reliable exploit development framework to penetration testers and security professionals worldwide.

     

    Immunity CANVAS icon
  • Core Impact Pro

    Commercial Windows Linux Website

    Core Impact Pro is the most comprehensive software solution assessing and testing security vulnerabilities throughout your organization. Core Impact Pro tests across a broad spectrum of risk areas including:

    • endpoint systems
    • passwords & identities
    • mobile devices
    • wireless networks
    • web applications & web services
    • network systems

     

    Core Impact Pro icon
  • Metasploit

    Free Personal Windows Linux BSD Website

    Metasploit Community Edition simplifies network discovery and vulnerability verification for specific exploits, increasing the effectiveness of vulnerability scanners such as Nexpose - for free. This helps prioritize remediation and eliminate false positives, providing true security risk intelligence. IT professionals can demonstrate the impact of vulnerabilities to IT operations to obtain buy-in for remediation.

     

    Metasploit icon
  • snort

    Free Linux Website

    SnortĀ® is an open source network intrusion prevention and detection system (IDS/IPS) developed by Sourcefire. Combining the benefits of signature, protocol, and anomaly-based inspection, Snort is the most widely deployed IDS/IPS technology worldwide. With millions of downloads and nearly 400,000 registered users, Snort has become the de facto standard for IPS.

     

    snort icon
  • skipfish

    Free Mac Windows Linux BSD Website

    A fully automated, active web application security reconnaissance tool. Key features: High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets. Ease of use: heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion.

    Cutting-edge security logic: high quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors.

    The tool is believed to support Linux, FreeBSD, MacOS X, and Windows (Cygwin) environments.

     

    skipfish icon
  • OpenVAS

    Free Linux Website

    The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.

     

    OpenVAS icon
  • Nessus

    Commercial Mac Windows Linux Android iPhone Website

    The Nessus vulnerability scanner is the world-leader in active scanners, featuring high-speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis of your security posture. Nessus scanners can be distributed throughout an entire enterprise, inside DMZs and across physically separate networks.

     

    Nessus icon
  • Social-Engineer Toolkit

    Free Mac Linux Python Website

    The Social-Engineer Toolkit is an open source penetration testing framework designed for social engineering. SET has a number of custom attack vectors that allow you to make a believable attack quickly.

     

  • PatrolServer

    Freemium Mac Windows Linux Website

    Check realtime and continuously for outdated web software on your server. Delivered by mail and an easy to use dashboard and get notified if PHP, Apache, cPanel, Wordpress, Drupal and many more become outdated.

     

    PatrolServer icon
  • Nexpose

    Commercial Windows Linux Website

    Learn about our vulnerability management software, Nexpose. See how our vulnerability scanner prioritizes vulnerabilities and speeds up remediation.

     

    Nexpose icon
  • Andspoilt

    Free Linux Website

    Android hacking toolkit for creating payloads and launching exploits.

     

    Andspoilt icon
  • Intruder

    Commercial Web Website

    Intruder is a security monitoring platform for internet-facing systems.

    Intruder provides an easy to use security solution which continually scans your digital assets, highlighting vulnerabilities and outlining remediation advice in simple terms.

     

    Intruder icon



Comments on Exploit Prevention Suites & Software

Echo echo ... Feels empty in here

Maybe you want to be the first to submit a comment?

Sign up to comment, it's simple!