Best Tools of Penetration Test for Noobies

Kirill  Ulyanov
Kirill UlyanovList by Kirill Ulyanov, last updated 2022-03-29
  1. DirBuster icon

    Download DirBuster for free. DirBuster is a multi threaded java application designed to brute force directories and files names on web/application servers.

    • FreeOpen Source
    • Mac
    • Windows
    • Linux
    • ...
    DirBuster screenshot 1
  2. Wireshark icon

    Wireshark is the world's foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It is the de facto (and often de jure) standard across many industries and educational institutions.

    • Network Analyzer
    • FreeOpen Source
    • Mac
    • Windows
    • Linux
    • BSD
    • Snapcraft
    • Flathub
    • Homebrew
    • Chocolatey
    • ...
    Wireshark screenshot 1
  3. OWASP Zed Attack Proxy (ZAP) icon

    The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.

    • ...
    OWASP Zed Attack Proxy (ZAP) screenshot 1
  4. Burp Suite icon

    Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting...

    • ...
    Burp Suite screenshot 1
  5. John the Ripper icon

    John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix systems, supported...

    • FreeOpen Source
    • Windows
    • Linux
    • Haiku
    • ...
    John the Ripper screenshot 1
  6. netcat icon

    Netcat is a featured networking utility which reads and writes data across network connections, using the TCP/IP protocol. It is designed to be a reliable "back-end" tool that can be used directly or easily driven by other programs and scripts.

    • ...
    netcat screenshot 1
  7. Metasploit icon

    Metasploit Community Edition simplifies network discovery and vulnerability verification for specific exploits, increasing the effectiveness of vulnerability scanners such as Nexpose - for free. This helps prioritize remediation and eliminate false positives, providing true...

    • ...
    Metasploit screenshot 1
  8. BeEF icon

    BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.

    • ...
    BeEF screenshot 1
  9. Sqlmap icon

    sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range...

    • ...
    Sqlmap screenshot 1
  10. Nmap icon

    Nmap ("Network Mapper") is a free and open source (license) utility for network exploration or security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or...

    • ...
    Main Window

This list was created by Kirill Ulyanov Jan 21, 2022 and was last updated Mar 29, 2022. The list has 10 apps.

You can create your own lists from our large database of apps either for your own sake or if you want to share some great apps with other people.


No comments so far, maybe you want to be first?
Gu