Download Advanced Port Scanner

Very small size, fast and simple for use port scanner . Just type IP Addresses of the computer or you can scan a range ,  and you´ll get detailed descriptions for common ports.

this software is similar to Angry Ip scanner 

File size	426 KB
Operating System	Windows 95/98/ME/NT4.0/2000/XP/2003/Vista/2008
License:	Free

[Resolver v1.0.9] The reverse/bruteforce DNS lookup

Resolver is a windows based tool which designed to preform a reverse DNS Lookup for a given IP address or for a range of IP’s in order to find its PTR. Updated to Version 1.0.3 added dns records brute force.

Resolver features:

• Resolve a Single IP
• Resolve an IP Range
• Resolve IP’s provided in a text file
• Export Results to a text file
• Copy results to Clipboard
• DNS Records brute force

Download Resolver v1.0.9

Few Online Tools for Computer and Online Security

Computer security is of foremost importance these days even more than our physical security..lol.There are few online tools available through which we ensure our security to certain extent.We cannot say our PC will be 100% secure but to some extent we will be benefited  for sure.

(if you are looking for Antiviru software Click here)

File scanner:

1.Kaspersky:
It can used to scan files upto size 1mb and archieve file(zip,arj format etc) upto 1mb.The database is updated every 3 hours to ensure that newest virus are detected.


2.Avast:
Here you can scan a single file each time and that should not be more than 16mb.


3.VirusTotal:
Here you can scan a file upto 20mb.You can send file by SSL and via email also.


4.NovirusThanks:
Here you can scan file upto 20mb,where the file will be scanned by 24 antivirus engine and is one of the best online scanning tool.

System scanner:

1.Bitdefender:
It can scan your PC ,system memory,boot sector.It can be used without uninstalling the existing security product.


2.Symantec(Norton):
It can be used to scan the system.It is the one of the old Anti-virus company and easy to use.


3.Eset:
Administrative previleges is required to use this online scanner.It is user friendly and operates from the browser.


4.PandaSecurity:
You need the activex control to use this online tool.It is a good product from panda.

Browser scanner:

1.Qualys:
You need to install the required plugin to use this tool.It checks for vulnerability and issues in the browser.


2.BrowserScope:
It scans for browser functionality and issues.


3.Scanit:
It will scan the browser for issues and vulnerabilites.You need to close all other tabs before using it and enable persistent cookies.


4.Panopticlick:
It test your browser and give scores for uniqueness and trackable functionality.

Url scanner:

1.UrlVoid:
It scans the url with multiple antivirus engine.It is simple to use.


2.Avg:
Just copy and drop the suspicious url and press enter.


3.VirusTotal:
It is a simple tool to use as the file scanner of it.


4.OnlineLinkscan:
It scan the link from potential threats with a simple click.

Port scanner:

1.T1shopper:
It scans the Ipaddress for open ports.There is a list of some essential ports on the webpage.


2.Nmap:
It is one of the best port scanning tool and easy to use.


3.SubnetOnline:
It scans an Ipaddress for open and closed TCP ports.


4.AuditmyPc:
Here you can scan for ports to test the strength of your firewall.


5.Hashmian:
It provide a range of ports to scan and list of some essential ports.


If you find this post useful and interesting then do drop your comment.,it will be appreciated.. :)

Http Tunneling | Bypass firewall and proxy

In most of the institutions and companies due to security risk many restrictions are being imposed on network like blocked ports etc.There are many ports that are blocked for outbound connection and few ports for http connection are opened so that people working over there can access there email etc.As the http port outbound is opened so it can be used for http tunnel to access restricted applications like IM etc.In this post we will see how we can do that.

What is Http Tunnel?
It is a technique in which the communications that are restricted in the network are bundled within the http protocol and allowed to communicate.The user uses a httptunnel software with client-server but to use it with administrative privileges.

How it works?
The user need a http_Tunnel-client and a server other than the original client-server.What happens that when the original_client decides to connect to a desire server then it sends its request through the httptunnel_client to the httptunnel_server then to the original_server as shown in the figure below.

 Actually the restrcited application that is the client(in the figure) sends a request other than http through the httptunnel_client bundle inside the http request.Then the httptunnel_server receives its unwrap,decrypt,uncompress it and forward it to the original server in the same way the data is transferred.The main concept over here is that there is middle (client-server) other than the orginal client-server.

Advantages:
1.Undo restrictions on applications like instant messengers etc

2.Helpful in accessing restrcited pages and sites.

3.May be helpful in bypassing firewall  restriction but not in an extensive manner.

Lets see how we can use http tunneling.

Http Tunneling Software:

1.Http-Tunnel(Download)

2.HttpTunnel(Download)

3.Hopster(Download)

4.Super Network Tunnel(Download)

5.HttpTunnel(Linux)(Download)

Requrirements:

1.Http Tunneling Software(Client-server)

2.Administrative Previlage.

Procedure:

Step 1.
Here I have used the soft named HttpTunnel for tunneling with both server and client.Download and install it.

Step 2.
Now click on the client and server part of it and you can use port mapping or socks5 for connecting throught the client.

Step 3.
Here I have used Rediff bol as a restricted application and socks5 for connecting.As you set the settings click on "Test" to see if it could connect ot the server,if it is successful then proceed as shown below.

Http tunnel in the network can be still detected by analysing the data and packets in the network.On more thing is that http connections last for less interval of time but since in http tunnel with tcp protocol bundled in side it may last for extended period of time so it may create a suspicion in the mind of the network admininstrator.

[Arachni v0.4.5.1-0.4.2] Open Source Web Application Security Scanner Framework

Arachni is a Free/Open Source project, the code is released under the Apache License Version 2.0 and you are free to use it as you see fit.

Initially started as an educational exercise, it has since evolved into a powerful and modular framework allowing for fast, accurate and flexible security/vulnerability assessments. More than that, Arachni is highly extend-able allowing for anyone to improve upon it by adding custom components and tailoring most aspects to meet most needs.

New Changes

• Optimized pattern matching to use less resources by grouping patterns to only be matched against the per-platform payloads. Bottom line, pattern matching operations have been greatly reduced overall and vulnerabilities can be used to fingerprint the remote platform.
• Modules
  • Path traversal ( path_traversal)
    • Updated to use more generic signatures.
    • Added dot-truncation for MS Windows payloads.
    • Moved non-traversal payloads to the file_inclusion module.
  • File inclusion ( file_inclusion) — Extracted from path_traversal.
    • Uses common server-side files and errors to identify issues.
  • SQL Injection ( sqli) — Added support for the following databases:
    • Firebird
    • SAP Max DB
    • Sybase
    • Frontbase
    • IngresDB
    • HSQLDB
    • MS Access
  • localstart_asp — Checks if localstart.asp is accessible.
• Plugins — Added:
  • Uncommon headers ( uncommon_headers) — Logs uncommon headers.

Download Arachni v0.4.5.1-0.4.2

[SterJo NetStalker v.1.0] Security software able to detect all authorized and unauthorized connections

SterJo NetStalker is innovative and FREE security software able to detect all authorized and unauthorized connections to your computer and send you alert for each new connection.

The software is based on similar principles as most firewalls work and also could create a custom security policies with an advantage to run it totally portable. It serves as an entry point into your computer and instantly informs you about all the processes able to establish a connection with an external network.

If making an analysis of all open ports on your system with a standard port scanner would take a few minutes, with this program it would be done only in a few milliseconds. This is also quite powerful software for making analysis of all running processes on your system as well as those that look suspicious.

The program offers an option to display details about all connections and closing individual connection or entire process.

If you are one of those who want to know exactly where your connections are targeted then this program is the ideal solution for you.

Download SterJo NetStalker v.1.0

Scan, Attack, Detect & Protect on LAN: Download WinArpAttacker

Scan, Attack, Detect & Protect on LAN: Download WinArpAttacker by Harsh DaftaryWinArpAttacker is a program that can scan,attack,detect and protect computers on local area network.
The features as following:
1.1 Scan
-. It can scan and show the active hosts on the LAN within a very short time (~2-3 seconds)
It has two scan mode, one is normal scanning, the other is antisniff scanning. The later is to find who is sniffing on the lan.
-. It can save and load computer list file.
-. It can scan the Lan regularly for new computer list.
-. It can update the computer list in passive mode using sniffing technology, that is, it can update the computer list from the sender's address of arp request packets without scanning the lan.

-. It can perform advanced scanning when you open advanced scanning dialg on menu.
-. It can scan a B class ip range in advanced scan dialg.
-. It can scan acthost listed in event listview.
1.2 Attack

-. It can pull and collect all the packets on the LAN.


-. It can perform six attacking actions as following:


(1) Arp Flood - Send ip conflict packets to target computers as fast as possible, if you send too much, the target computers will down. :-(


(2) BanGateway - Tell the gateway a wrong mac address of target computers, so the targets can't receive packet from the internet. This attack is to forbid the targets access the internet.


(3) IPConflict - Like Arp Flood, send ip conflict packets to target computers regularly, maybe the users can't work because of regular ip conflict message. what's more, the targets can't access the lan.


(4) SniffGateway - Spoof the targets and the gateway, you can use sniffer to collect packets between them.


(5) SniffHosts - Spoof among two or above targets, you can use sniffer to collect packets among all of them. (dangerous!!!!)


(6) SniffLan - Just like SniffGateway, the difference is that SniffLan sends broadcast arp packets to tell all computers on the lan that this host is just the gateway, So you can sniff all the data between all hosts with the gateway.(dangerous!!!!!!!!!!!!!!)


-. While spoofing ARP tables, it can act as another gateway (or ip-forwarder) without other users' recognition on the LAN.


-. It can collect and forward packets through WinArpAttacker's ipforward function, you had best check disable system ipforward function because WinArpAttacker can do well.


-. All data sniffed by spoofing and forwarded by WinArpAttacker ipforward function will be counted, as you can see on main interface.


-. As your wish, the arp table is recovered automatically in a little time (about 5 seconds). Your also can select not to recover.


1.3 Detect


-. What is the most important function, it can detect almost all attacking actions metioned as above as well as host status. the event WinArpAttacker can detect is listed as following:


SrcMac_Mismath - Host sent an arp packet, its src_mac doesn't match,so the packet will be ignored.


DstMac_Mismath - Host recv an arp packet, its dst_mac doesn't match,so the packet will be ignored.


Arp_Scan - Host is scanning the lan by arp request for a hosts list.


Arp_Antisniff_Scan - Host is scanning the lan for sniffing host,thus the scanner can know who is sniffing.


Host_Online - Host is online now.


Host_Modify_IP - Host modified its ip to or added a new IP.


Host_Modify_MAC - Host modified its mac address.


New_Host - New gost was found.

Host_Add_IP - Host added a new ip address.

Multi_IP_Host - Host has multi-ip addresses.


Multi_Mac_Host - Host has multi-mac addresses.

Attack_Flood - Host sends a lot of arp packets to another host ,so the target computer maybe slow down.

Attack_Spoof - Host sends special arp packets to sniff the data two targets , so the victims' data exposed.

Attack_Spoof_Lan - Host lets all host on the lan believe that it's just a gateway, so the intruder can sniff all hosts' data to the real gateway.


Attack_Spoof_Ban_Access - Host told host that host has a inexist mac,so the targets can't communicate with each other.

Attack_Spoof_Ban_Access_GW - Host told host that the gateway has a inexist mac, so the target can't access the internet through the gateway.

Attack_Spoof_Ban_Access_Lan - Host broadcast host's mac as a inexist mac, so the target can't communicate with all hosts on the lan.

Attack_IP_Conflict - Host found another host has same ip as its, so the target would be disturbed by ip conflict messages.

Local_Arp_Entry_Change - now WinArpAttacker can watch local arp entry, when a host's mac address in local arp table is changed, WinArpAttacker can report.

Local_Arp_Entry_Add - When a mac address of a host is added to local arp table, WinArpAttacker can report.

-. It can explain each event which WinArpAttacker detected.

-. It can save events to file.

DOWNLOAD HERE

TOP 15 HACKING/CRACKING TOOLS 2013

1. PWN STAR

A bash script to launch the AP, can be configured with a variety of attack options. Including a php script and server index.html, for phishing. Can act as a multi-client captive portal using php and iptables. Exploitation classics such as crime-PDF, De-auth with aireplay, etc..



General Features:
Managing Interfaces and MAC Spoofing
Set sniffing
Phishing Web
Karmetasploit
WPA handshake
De-auth client
Managing Iptables

Download Pwn-Star Here

2. ZED ATTACK PROXY (ZAP)

(ZAP) is an integrated penetration testing tool for finding vulnerabilities in web applications. This tool is designed for use by people with a variety of security experience and as such is ideal for developers and functional testers who are new to penetration testing as well as being a useful addition to the toolbox tester.



Key Features:
Intercepting Proxy
Active scanners
Passive scanners
Brute Force scanner
Spider
Fuzzer
Port Scanner
Dynamic SSL certificates
API
Beanshell integration

Download ZAP Here

3. SET (SOCIAL ENGINEERING TOOLKIT)

Tools that focus on attacking the human element of weakness and inadvertence. This tool is widely used today and is one of the most successful tools demonstrated at Defcon.



Key Features:
Spear-Phishing Attack Vector
Java Applet Attack Vector
Metasploit Browser Exploit Method
Credential Harvester Attack Method
Tabnabbing Attack Method
Man Left in the Middle Attack Method
Web Jacking Attack Method
Multi-Attack Web Vector
Infectious Media Generator
Teensy USB HID Attack Vector

Download SET Here


4. BURP SUITE

Burp Suite is a very nice tool for web application security testing. This tool is great for pentester and security researchers. It contains a variety of tools with many interfaces between them designed to facilitate and accelerate the process of web application attacks.



General Function:
Interception proxies
Radar and spiders crawling
Webapps scanner
Tool assault
Repeater and sequencer tools

Download Burp Suit Here

5. ETTERCAP

Ettercap is a multipurpose sniffer / interceptor / logger for Local Area Network . It supports active and passive dissection of many protocols (even in code) and includes many feature for network and host analysis.



General Function:
To capture traffic and data
To do logging network
Etc.

Download Ettercap Here

6. SANS INVESTIGATIVE FORENSIC TOOLKIT (SIFT)

The SANS Investigative Forensic Toolkit (SIFT) Workstation is a VMware Appliance that can be configured with all the requirements to perform a detailed digital forensic. Compatible with Expert Witness Format (E01), Advanced Forensic Format (AFF), and raw (dd) evidence formats. The new version has been completely rebuilt on the Ubuntu base with many additional tools and capabilities that are used in modern forensic technology.



General Function :
iPhone, Blackberry, and Android Forensic Capabilities
Registry Viewer (YARU)
Compatibility with F-Response Tactical, Standard, and Enterprise
PTK 2.0 (Special Release - Not Available for Download)
Automated Generation Timeline via log2timeline
Many Firefox Investigative Tools
Windows Journal Parser and Shellbags Parser (jp and sbag)
Many Windows Analysis Utilities (prefetch, usbstor, event logs, and more)
Complete Overhaul of Regripper Plugins (added over 80 additional plugins)

Download SIFT Here


7. WIRESHARK


Wireshark is the most widely used and most popular in the world the protocol analyzer, and is the de facto standard across many industries and educational institutions to analyze the network in different protocol.

Image has been scaled down 18% (700x518). Click this bar to view original image (845x625). Click image to open in new window.

General Function:
Live capture and offline analysis
Standard three-pane packet browser
Multi-platform: Runs on Windows, Linux, OS X, Solaris, FreeBSD, NetBSD, and many others
Captured data network can be browsed via a GUI, or via the TTY-mode tshark utility
The most powerful display filters in the industry
Rich VoIP analysis
Read / write many different capture file formats
Etc.

Download wireshark Here


8. WEBSPLOIT


WebSploit is an Open Source Project for Remote Scan and Analysis System of the weaknesses in web applications.




Key Features: 
[>] Social Engineering Works
[>] Scan, Web Crawler & Analysis
[>] Automatic Exploiter
[>] Support Network Attacks
-
[+] Autopwn - Used From Metasploit For Scan and Exploit Target Service
[+] WMAP - Scan, Target Used Crawler From Metasploit WMAP plugin
[+] format infector - inject the payload into reverse and bind file format
[+] phpmyadmin Scanner
[+] LFI Bypasser
[+] Apache Users Scanner
[+] Dir Bruter
[+] admin finder
[ +] MLITM Attack - Man Left In The Middle, XSS Phishing Attacks
[+] MITM - Man In The Middle Attack
[+] Java Applet Attack
[+] MFOD Attack Vector
[+] USB Infection Attack
[+] Dos ARP Attack
[+ ]'s Killer Attack
[+] Attack Fake Update
[+] Fake Access Point Attack


Download Websploit Framework Here

9. WINAUTOPWN

WinAutoPWN is a tool that is used to exploit the Windows Framework directly, so that we are automatically going to be an administrator on the windows. 

Image has been scaled down 30% (700x505). Click this bar to view original image (999x720). Click image to open in new window.

Download WinAutoPWN Here


10. HASHCAT

Hashcat are a variety of tools to crack passwords in encrypted, it is very powerful for password recovery.

Image has been scaled down 3% (700x510). Click this bar to view original image (720x524). Click image to open in new window.

General Function:
Multi-Threaded
Free
Multi-Hash (up to 24 million hashes)
Multi-OS (Linux, Windows and OSX native binaries)
Multi-Algo (MD4, MD5, SHA1, DCC, NTLM, MySQL, ...)
SSE2 accelerated
All Attack-Modes except Brute-Force and Permutation can be extended by rules
Very fast Rule-engine
Rules compatible with JTR and PasswordsPro
Possible to resume or limit session
Automatically recognizes recovered hashes from outfile at startup
Can automatically generate random rules
Load saltlist from an external file and then use them in a Brute-Force Attack variant
Able to work in an distributed environment
Specify multiple wordlists or multiple directories of wordlists
Number of threads can be configured
Lowest priority threads run on
30 + Algorithms is implemented with performance in mind
... and much more

Download HashCat Here

11. UNISCAN

Uniscan is a scanner for web applications, written in perl for Linux. Currently Uniscan version is 6.2.



General Function:Identification of system pages through a Web Crawler.
Use of threads in the crawler.
Control the maximum number of requests the crawler.
Control of variation of system pages identified by Web Crawler.
Control of file extensions that are ignored.
Test of pages found via the GET method.
Test the forms found via the POST method.
Support for SSL requests ( HTTPS ).
Proxy support.
Generate site list using Google.
Generate site list using Bing.
Plug-in support for Crawler.
Plug-in support for dynamic tests.
Plug-in support for static tests.
Plug-in support for stress tests.
Multi-language support.
Web client.General Function:
Identification of system pages through a Web Crawler.
Use of threads in the crawler.
Control the maximum number of requests the crawler.
Control of variation of system pages identified by Web Crawler.
Control of file extensions that are ignored.
Test of pages found via the GET method.
Test the forms found via the POST method.
Support for SSL requests ( HTTPS ).
Proxy support.
Generate site list using Google.
Generate site list using Bing.
Plug-in support for Crawler.
Plug-in support for dynamic tests.
Plug-in support for static tests.
Plug-in support for stress tests.
Multi-language support.
Web client.

Download Uniscan Here


12. OLYYDBG

OllyDbg is a 32-bit assembler debugger for Microsoft Windows. Emphasis on binary code analysis makes it particularly useful in cases where source code is not available.




General Function:
Intuitive user interface, no cryptical commands
Code analysis - traces registers, recognizes procedures, loops, API calls, switches, tables, constants and strings
Directly loads and debugs DLLs
Object file scanning - locates routines from object files and libraries
Allows for user-defined labels, comments and function descriptions
Understands debugging information in Borland ® format
Saves patches between sessions, writes them back to executable file and updates fixups
Open architecture - many third-party plugins are available
No installation - no trash in registry or system directories
Debugs multithreaded applications
Attaches to running programs
Configurable disassembler, supports both MASM and IDEAL formats
MMX, 3DNow! and SSE instructions and the data types, Including Athlon extensions
Full UNICODE support
Dynamically recognizes ASCII and UNICODE strings - also in Delphi format!
Recognizes complex code constructs, like call to jump to procedure
Decodes calls to more than 1900 standard API and 400 C functions
Gives context-sensitive help on API functions from external help file
Sets conditional, logging, memory and hardware breakpoints
Traces program execution, logs arguments of known functions
Shows fixups
Dynamically traces stack frames
Searches for imprecise commands and masked binary sequences
Searches whole allocated memory
Finds references to constant or address range
Examines and modifies memory , sets breakpoints and Pauses program on-the-fly
Assembles commands into the shortest binary form
Starts from the floppy disk


Download OllyDbj Here


13. BBQSQL

BBQSQL an Opensource SQL injection tools with the framework specifically designed to carry out the process in hyper fast, database agnostic, easy to setup, and easy to modify. This is another amazing release from Arsenal Blackhat USA 2012. When conducting security assessments of applications, we often find that it is difficult to SQL vulnerabilities exploitable, with this tool will be extremely easy.
BBQSQL written in the Python programming language. This is very useful when complex SQL injection attack vulnerabilities. BBQSQL also a semi-automated tool, which allows little customization for those who are finding it difficult to trigger a SQL injection. The tool is built to be database agnostic and very versatile. It also has an intuitive UI for setting up the attack much easier.





General Function:
SQL Injection Tools
URL
HTTP Method
Headers
Cookies
Encoding methods
Redirect behavior
Files
HTTP Auth
Proxies

Download BBQSQL Here


14. CRYPTOHAZE


Tools to crack password / hash where cryptohaze supports CUDA, OpenCL , and the CPU code (SSE, AVX, etc.). Can run on OS that support CUDA. These are intended to make it easier to pentester did crack the hash.





General Function:
Crack various kinds of hash
Showing results from crackhash
Cracking on various OS platforms


Download Cryptohaze Here


15. SAMURAI WEB TESTING FRAMEWORK (SWTF)

SWTF is used to do testing / pentest against web application, is used to find a weakness and exploited to perform web. 



General Function:
Web Scanner
Web Mapping
Web Exploitation


Download SWTF Here


SO Thats It .enjoy