Below some tools you can use for scans and vulnerability assessment while performing a penetration test:

exploit-db: The Exploit Database

grabber: web application scanner

inguma: pentest toolkik which can perfom target auditing and information gathering

Metasploit: “world’s most used penetration testing software”

Nessus: vulnerability scanner

Nikto: an Open Source web server scanner

oscanner: oracle assessment framework

searchsploit: search in exloit-db database

to be continued…

Wordpress testing

Here is the way I usually follow to test a Wordpress install.## Information gatheringGet basic informations with [WPScan](https://wpscan....… Continue reading

« Damn Vulnerable Web Application

Published on December 10, 2014

Pentest - Post exploitation tools »

Published on November 04, 2014