#
Network
Sniff the network. Modify the packets.
#
Denial of Service
Danger
Tools and resources mentioned in this section can cause impact to business. Use with permission & caution.
- DAVOSET - a tool for committing distributed denial of service attacks using execution on other sites.
- DDOSIM - Layer 7 DDoS Simulator.
- GoldenEye - A HTTP DoS Test Tool.
- HOIC - A network stress testing application.
- Http Unbreakable Load King (HULK) - A web server tool generates volumes of unique obfuscated traffic.
- LOIC - A network stress testing application.
- PyLoris - Scriptable tool for testing a services level of DoS handling.
- R-U-Dead-Yet (RUDY) - Attack targeted web applications by starvation of available sessions on the web server.
- Slowloris - An HTTP Denial of Service attack that affects threaded servers.
- TORs Hammer - Slow POST DoS testing tool ran through TOR.
- Yersinia - A framework for layer 2 attacks.
#
LAN/WAN
- bettercap - Swiss army knife for WiFi, Bluetooth, HID, and ethernet network.
- dpkt - Fast, simple packet creation / parsing, with definitions for the basic TCP/IP protocols.
- ettercap - Swiss army knife for WiFi, Bluetooth, HID, and ethernet network.
- Ghost Phisher - A Wireless and Ethernet security auditing and attack software.
- Impacket - Impacket is a collection of Python classes for working with network protocols.
- Libdnet - Provides a simplified, portable interface to several low-level networking routines.
- MITMProxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers.
- Nemesis - A command-line network packet crafting and injection utility.
- Scapy - Python-based interactive packet manipulation program & library.
- TCPDump - The TCPdump network dissector.
- YAS - Yet Another Sniffer for monitoring network traffic.
#
Man In The Middle
- Inveigh - .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers.
#
Port/Network Scanning
- armada - A High-Performance TCP SYN scanner.
- masscan - TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
- naabu - A fast port scanner written in go with a focus on reliability and simplicity.
- NMAP - The Network Mapper.
- NP - A tool to parse, deduplicate, and query multiple port scans.
- RustScan - The Modern Port Scanner.
- Skanuvaty - Dangerously fast DNS/network/port scanner.
#
SSL/TLS
- TLS-DOS - A tool to stress test the SSL handshake by triggering processor intensive calls on the server side.