📜  渗透测试-工具

📅  最后修改于: 2020-12-06 11:34:59             🧑  作者: Mango


渗透测试通常包括信息收集,漏洞和风险分析,漏洞利用以及最终报告准备。

了解渗透测试中可用的各种工具的功能也很重要。本章提供有关这些功能的信息和见解。

什么是渗透测试工具?

下表收集了一些最重要的渗透工具,并说明了它们的功能-

Tool Name Purpose Portability Expected Cost
Hping

Port Scanning

Remote OC fingerprinting

Linux, NetBSD,

FreeBSD,

OpenBSD,

Free
Nmap

Network Scanning

Port Scanning

OS Detection

Linux, Windows, FreeBSD, OS X, HP-UX, NetBSD, Sun, OpenBSD, Solaris, IRIX, Mac, etc. Free
SuperScan

Runs queries including ping, whois, hostname lookups, etc.

Detects open UDP/TCP ports and determines which services are running on those ports.

Windows 2000/XP/Vista/7 Free
p0f

Os fingerprinting

Firewall detection

Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Solaris, Windows, and AIX Free
Xprobe

Remote active OS fingerprinting

Port Scanning

TCP fingerprinting

Linux Free
Httprint

Web server fingerprinting SSL detection

Detect web enabled devices (e.g., wireless access points, switches, modems, routers)

Linux, Mac OS X, FreeBSD, Win32 (command line & GUI Free
Nessus Detect vulnerabilities that allow remote cracker to control/access sensitive data Mac OS X, Linux, FreeBSD, Apple, Oracle Solaris, Windows Free to limited edition
GFI LANguard Detect network vulnerabilities Windows Server 2003/2008, Windows 7 Ultimate/ Vista, Windows 2000 Professional, Business/XP, Sever 2000/2003/2008 Only Trial Version Free
Iss Scanner Detect network vulnerabilities Windows 2000 Professional with SP4, Windows Server 2003 Standard with SO1, Windows XP Professional with SP1a Only Trial Version Free
Shadow Security Scanner Detect network vulnerabilities, audit proxy and LDAP servers Windows but scan servers built on any platform Only Trial Version Free
Metasploit Framework

Develop and execute exploit code against a remote target

Test vulnerability of computer systems

All versions of Unix and Windows Free
Brutus Telnet, ftp, and http password cracker Windows 9x/NT/2000 Free