Tag Archives: penetration testing

Fiddler – Intercepting Web Debugging Proxy

Fiddler is an Intercepting web proxy designed for "web debugging". This will be useful during a penetration testing to verify a web resources.

Tracy – Tool to Find Web application sinks and sources

Tracy is a tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.

SharpShooter – Payload Generation Framework

SharpShooter is a payload creation framework for the retrieval and execution of arbitrary CSharp source code. SharpShooter is capable of creating payloads.

Flashlight – Automated Information Gathering Tool

Flashlight (Fener) provides services to scan network/ports and gather information rapidly on target networks.This should be the choice to automate discovery

SWARM – Modular Distributed Pentest Framework

Swarm is an open source modular distributed penetration testing Tool that use distributed task queue to implement communication in the master-slave mode system and use MongoDB for data storage.

BLACKBOx – Penetration Testing Framework

BLACKBOx is a penetration testing framework that may allow user to run several type of attacks against his target. The framework include several modules

Mongoaudit – MongoDB Auditing and Pentesting Tool

mongoaudit is a CLI tool for auditing MongoDB servers, detecting poor security settings and performing automated penetration testing.