What is Autopsy? Autopsy is the premier end-to-end open source digital forensics platform. Built by Basis Technology with the core features you expect in commercial forensic tools, Autopsy is a fast, thorough, and efficient hard drive investigation solution that evolves with your needs. Autopsy performs operations onto disk images which can be created using tools like FTK Imager. Here an already [...]
What is spiderfoot? Spiderfoot is a free and open-source tool available on Github. This tool is a framework written in the python programming language. You must have python installed in your Kali Linux operating system to use this framework. Spiderfoot is used for reconnaissance. Spiderfoot uses different modules for information gathering. Spiderfoot is capable enough to gather information about the target host through active and passive scanning options [...]
What is TheHarvester? The Harvester is a tool that was developed in python. Using this you can gather information like emails, subdomains, hosts, employee names, open ports and banners from different public sources like search engines, PGP key servers, and SHODAN computer database. This tool is useful for anyone like you who needs to know what an attacker can see about the organization. Installation: In [...]
Nmap usage 1- OS scanning OS scanning is one of the most powerful features of Nmap. When using this type of scan, Nmap sends TCP and UDP packets to a particular port, and then analyze its response. It compares this response to a database of 2600 operating systems, and return information on the OS (and version) of a host. To [...]
What is Zenmap? Zenmap is the official Nmap Security Scanner GUI. It is a multi-platform (Linux, Windows, Mac OS X, BSD, etc.) free and open source application which aims to make Nmap easy for beginners to use while providing advanced features for experienced Nmap users. Frequently used scans can be saved as profiles to make them easy to run repeatedly. [...]
What is Nmap? Nmap is a free and open-source utility which is used to scan networks and security auditing. Nmap can discover hosts and services on a computer network by sending packets and analyzing the responses. The utility is available on almost every os, it is available for windows, linux and mac how to download Nmap? To download Nmap you can simply [...]
What is SQL injection (SQLi)? SQL injection is a web security vulnerability that allows an attacker to interfere with the queries that an application makes to its database. It generally allows an attacker to view data that they are not normally able to retrieve. This might include data belonging to other users, or any other data that the application itself [...]
Ettercap Ettercap is wonderful tool for MITM attacks , ettercap can make ARP spoof for you and have a lot of plug-ins that make DNS poisoning and ssl strips and more and more we can say that ettercap make the hard work for you 1- Use ettercap for arp spoofing and sniffing all password that user entered /// mean make the attack [...]
Crunch We cover how to break password with john the ripper and we say that you can use your own word list but how ? How to create your own word list that suit your need for cracking ? We will use crunch . Crunch is a wonderful tool that allow you to make any word list with any characters that u want [...]
John The Ripper John the Ripper is an open source password cracking tool it’s run in both brute force and dictionary attack modes. u can found it on Parrot and Kali Linux just type john in terminal . Of course is a lot of examples to talk about so let’s see the basic usage of john 1- Cracking hash Let’s say we [...]
