Category Archives: Pentesting

Wapiti – Web-application vulnerability scanner

Wapiti allows you to audit the security of your websites or web applications. It performs “black-box” scans (it does not study the source code).

WPForce – WordPress Attack Suite

WPForce is a suite of Wordpress Attack tools. Currently this contains 2 scripts the first to brute forces logins via the API, and Yertle.

mXtract – Offensive Memory Extractor & Analyzer

mXtract is a tool that analyzes and dumps memory. It is developed and its purpose to scan memory for private keys, ips, and passwords using regexes

CMSeeK – CMS Detection and Exploitation suite

CMSeeK is a content management system (CMS) manages the creation and modification of digital content. it supports multiple users.

HiddenEye – Modern Phishing Framework

HiddenEye is a modern phishing framework that will allow user to create phishing website , run a keylogger to collect credentials, collect information about victims

Crowbar – Brute-force Penetration Testing Tool

Crowbar (formally known as Levye) is a brute forcing tool that can be used during penetration tests.

Cangibrina – Fast Dashboard (admin) Finder

Cangibrina is a multi platform tool which aims to obtain the admin Dashboard of sites using brute-force over wordlist, google, nmap, and robots.txt.