aadit/MIT-Curricular
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update IS/Lab/Lab1/Tools.md

Browse source
This commit is contained in:
aadit 2025-07-22 09:07:51 +05:30
parent 2f320095cd
commit 9f7be54f8e
1 changed files with 14 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

24
IS/Lab/Lab1/Tools.md
View file

@ -14,7 +14,7 @@ Designed to be a portable network tool in HD Moore in 2003, Metasploit has grown
## [Burpsuite](https://portswigger.net/burp)
BurpSuite is a tool focused at web exploitation, used by researchers reverse engineering products for APIs. It features detection and exploitation capabilities for vulnerabilities such as Cross Site Scripting (XSS), SQL Injection, Cross Site Request Forgery (CSRF), XML External Entity Injection, Server Side Request Forgery (SSRF) and more. It is used to exploit and map APIs from various applications as well, and can be then used to map them and perform any of the above mentioned exploits.
## Ettercap
## [Ettercap](https://www.ettercap-project.org/)
Ettercap is a Man in the Middle (MITM) tool used by security researchers to ensure end to end security of data/action pipelines. It allows users to perform the following tests
- Host Lists through ARP requests sent to any subnet mask as specified by the user.
- Unified Sniffing: Kernel IP forwarding is disabled, user sends a request with a specific MAC address that is same as the attacker's one but with different IPs, so the packet is then return to the attacker instead.
@ -26,14 +26,18 @@ Ettercap is a Man in the Middle (MITM) tool used by security researchers to ensu
- Character Injection
et cetera
## Hydra
Hydra
## [Hydra](https://www.kali.org/tools/hydra/)
Hydra is a network login hacking tool built into Kali Linux used to gain unauthorized access to a remote system over various protocols and suites of tools, enabling an analyst to possibly establish/take down proxies, gain RCE, modify system resources (or their allocation and therefore cost). It supports SSL-based platforms as well and is easy to build extensions for to add support for a newer communication protocol.
## Mosquitto
## nmap
## netcat
## sqlmap
## sqlninja
## msfvenom
## [Mosquitto](https://mosquitto.org/)
Mosquitto is an OSS MQTT broker designed for messaging/message passing applications, including message stores (to facilitate later delivery to a dormant user). It uses a PubSub model over TCP (which is a byeffect of its roots in MQTT) based on topics each client is subscribed to via JSON/XML.
## [nmap](https://nmap.org/)
NMap (Network Mapper) is a network discovery tool used in security auditing. NMap uses raw IP packets in various ways to map available hosts, services, versions, OSes, firewalls and can do so with scale and for large networks.
## [netcat]
## [sqlmap]
## [sqlninja]
## [msfvenom]
## microsoft threat model (STRIDE)
## PyCharm
## [PyCharm]