Vulnerability Analysis

DBPwAudit

February 18, 2014

Password Attacks, Vulnerability Analysis

database, db2, mssql, mysql, oracle, passwords, vulnanalysis

DBPwAudit is a Java tool that allows you to perform online audits of password quality for several database engines. The application design allows for easy adding of additional database drivers by simply copying new JDBC drivers to the jdbc directory.

Doona

February 18, 2014

Vulnerability Analysis

fuzzing, stresstesting, vulnanalysis

Doona is a fork of the Bruteforce Exploit Detector Tool (BED). BED is a program which is designed to check daemons for potential buffer overflows, format string bugs etc.

DotDotPwn

February 18, 2014

Information Gathering, Vulnerability Analysis

exploitation, http, recon

It's a very flexible intelligent fuzzer to discover traversal directory vulnerabilities in software such as HTTP/FTP/TFTP servers, Web platforms such as CMSs, ERPs, Blogs, etc.

HexorBase

February 18, 2014

Password Attacks, Vulnerability Analysis

database, gui, mssql, mysql, passwords, postgresql, sqlite, vulnanalysis

HexorBase is a database application designed for administering and auditing multiple database servers simultaneously from a centralized location, it is capable of performing SQL queries and bruteforce attacks against common database servers (MySQL, SQLite, Microsoft SQL Server, Oracle, PostgreSQL ).

Inguma

February 18, 2014

Vulnerability Analysis

enumeration, fuzzing, infogathering, passwords, portscanning, vulnanalysis

Inguma is a penetration testing toolkit entirely written in python. The framework includes modules to discover hosts, gather information about, fuzz targets, brute force user names and passwords and, of course, exploits.

jSQL Injection

February 18, 2014

Vulnerability Analysis, Web Applications

gui, http, https, vulnanalysis, webapps

jSQL Injection is a lightweight application used to find database information from a distant server. jSQL is free, open source and cross-platform (Windows, Linux, Mac OS X, Solaris).

Lynis

February 18, 2014

Vulnerability Analysis

forensics, vulnanalysis

Lynis is an open source security auditing tool. Its main goal is to audit and harden Unix and Linux based systems. It scans the system by performing many security control checks. Examples include searching for installed software and determine possible configuration flaws.

ohrwurm

February 18, 2014

Sniffing/Spoofing, Vulnerability Analysis

fuzzing, rtp, sniffing, spoofing, voip, vulnanalysis

ohrwurm is a small and simple RTP fuzzer that has been successfully tested on a small number of SIP phones.

openvas

February 18, 2014

Vulnerability Analysis

analysis, enumeration, gui, infogathering, portscanning, recon, reporting, vulnanalysis

openvas Package Description OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. The framework is part of Greenbone Networks’ commercial vulnerability management solution from which developments are contributed to the Open Source community since 2009. The actual security scanner is accompanied with a regularly…

Oscanner

February 18, 2014

Vulnerability Analysis

enumeration, oracle, passwords

Oscanner is an Oracle assessment framework developed in Java. It has a plugin-based architecture.

DBPwAudit

Doona

DotDotPwn

HexorBase

Inguma

jSQL Injection

Lynis

ohrwurm

openvas

Oscanner

Tools Categories

Recent Additions

Vulnerability Analysis

Tools Categories

Recent Additions

Tag Cloud