what is Samurai Web Testing Framework !!
The Samurai Web Testing Framework is a virtual machine, supported on
VirtualBox and VMWare, that has been pre-configured to function
as a web pen-testing environment. The VM contains the
best of the open source and free tools that focus on
testing and attacking websites. In developing this
environment, we have based our tool selection on the
tools we use in our security practice. We have included
the tools used in all four steps of a web pen-test.
Starting with reconnaissance, we have included tools
such as the Fierce domain scanner and Maltego. For mapping,
we have included tools such WebScarab and ratproxy. We
then chose tools for discovery. These would include w3af
and burp. For exploitation, the final stage, we
included BeEF, AJAXShell and much more. This VM also includes a
pre-configured wiki, set up to be the central
information store during your pen-test.
Tools
- – recon-‐ng
- – w3af
- – BeEF
- – Burp
- – OWASP
- – Rat
- – DirBuster
- – CeWL
- – Sqlmap
- – Maltego
- – WebScarab
- – Nmap
- - Zenmap
- – Nikto
- – Metasploit
- – Firefox
- – Tilt
- – Wappalyzer
- – FoxyProxy
- – ZAP
- – Firebug
- – ZAP
- – Burp
- – Nikto
- – DirBuster
- – RaJ
- – ZAP
- – w3af
- – iMacro
- – CeWL
- – ZAP
- – ZAP TokenGen
- – Burpsuite Sequencer
- – User Agent Switcher
- – Cookies
- – Laudanum
- – BeEF
and mor....
0 commentaires:
Enregistrer un commentaire
يمكن التعليق و نشر رئيك في مدونة المطور العربي لكل من يتجاور تذكر هذه الاية الكريمة
: قال تعالى
(مَا يَلْفِظُ مِن قَوْلٍ إِلا لَدَيْهِ رَقِيبٌ عَتِيدٌ )