The Best Hacking Tools Hacking Tools : List of security tools specifically aimed toward security professionals for testing and demonstrating security weaknesses.     Passwords Cain & Abel Cain & Abel is a password recovery tool for Microsoft Opera…

Hacking Tools 种各样的黑客工具浩如天上繁星,这也让许多刚刚入门安全技术圈的童鞋感到眼花缭乱,本文整理了常用的安全技术工具,希望能够给你带来帮助.以下大部分工具可以在 GitHub 或 SourceForge 下载. 通用调试器 binwalk:二进制文件分析工具 OllyDbg:经典的反汇编工具 IDA pro:宇宙最强反汇编,支持源码级别的查看 x64dbg:基于Qt的开源现代化的动态调试器 Immunity Debugger:流行的用户模式调试器(依赖Python)配合 PyC…

Password Sniffing with Scapy 1. Download and install the Scapy first. pip install scapy https://scapy.net/ 2. Target Website https://aavtrain.com/index.asp 3. Write the Python code from scapy.all import * def sniffer(packet): http_packet = packet if…

Socket Programming 1.  Scan the target Vulnerable Server. And test it by telnet. 2. Write the scanner source code. import socket ip = "10.0.0.32" for port in range(1,10000): try: s = socket.socket() s.connect((ip,port)) s.close() print "%d/…

Security Header website: https://securityheaders.com/ Scan the target website: https://www.hackthissite.org/ Write the Python Source Code: import requests domain = "https://www.hackthissite.org/" headers = requests.get(domain).headers if 'X-Fram…

Preparation: Python Libray in the following programming: 1. Requests Document: https://2.python-requests.org//en/master/ 2. Beautiful Soup Documentation: https://www.crummy.com/software/BeautifulSoup/bs4/doc/ Install the lib on Kali Linux: apt-get in…

文中提及的部分技术可能带有一定攻击性,仅供安全学习和教学用途,禁止非法使用! 0×00 前言 国际黑客大会Defcon传统之一:开锁!因为黑客认为锁也是一种安全挑战.我们在黑客题材电影.电视剧中也常常看到:男主女主利用高超的黑客技能侵入目标公司的网络,甚至利用社会工程学突破门禁防护潜入对方办公地点进行物理攻击,如入无人之境.(神盾局.黑客军团.Who am i 貌似都有类似情节) 北上广不相信眼泪 16集 在这一背景下,我们不经思考:门禁系统作为企业物理第一道屏障,这些硬件基础设施安全是否一直都…

原帖地址:http://drops.wooyun.org/papers/5157 0x00 IPCAM hacking TOOLS github-binwalk firmware-mod-kit IDA ...... 主要分析流程 通过binwalk分析识别固件文件 分离提取固件 把提取的elf载入到分析软件(IDA) 开始分析研究吧~ binwalk和fmk学习 binwalk binwalk xxx.bin 最简单的分析命令,通过签名匹配来识别固件中的文件,可是单单通过这样的简单匹配可能有其…

1.安装mod_securityyum install mod_security 2.安装mod_security_crsyum install mod_security_crs 3.在/etc/httpd/modsecurity.d建立exclude.conf文件用来排除无需检查的文件<IfModule mod_security2.c>  <Location /PATH/>    SecRuleEngine off  </Location></IfModule&…

Wifite v2 is now available What's new in this version: support for cracking WPS-encrypted networks (via reaver) 2 new WEP attacks more accurate WPA handshake capture various bug fixes Version 2 does not include a GUI, so everything must be done at th…