WAppEx v2.0 : Web Application exploitation Tool
http://itsecteam.com/counter/?files=WAppEx/WAppEx2.0.exeWAppEx is an integrated Web Application security assessment and exploitation platform designed with the whole spectrum of security professionals to web application hobbyists in mind. It suggests a security assessment model which revolves around an extensible exploit database. Further, it complements the power with various tools required to perform all stages of a web application attack.
Automated HTTP Enumeration Tool
http://www.thexero.co.uk/downloads/http-enum.pyA python script for Automated HTTP Enumeration. currently only in the initial beta stage, but includes basic checking of files including the Apache server-status as well as well IIS WebDAV and Microsoft FrontPage Extensions, many more features will be added to this tool which will make lot of the enumeration process quick and simple.
Weevely 1.01 released
http://epinna.github.com/Weevely/Weevely is a stealth PHP web shell that simulate an SSH-like connection. It is an essential tool for web application post exploitation, and can be used as stealth backdoor or as a web shell to manage legit web accounts, even free hosted ones.
BackBox Linux 3.01 updated to include Weevely
http://www.backbox.org/BackBox is a Linux distribution based on Ubuntu. It has been developed to perform penetration tests and security assessments. Designed to be fast, easy to use and provide a minimal yet complete desktop environment, thanks to its own software repositories, always being updated to the latest stable version of the most used and best known ethical hacking tools.
No comments:
Post a Comment