Ethical Hacking - Tools-ethicalhacker.tk

Ethical Hacking -Top 5 Tools.

In this chapter, we will discuss some well-known tools that are widely used to prevent hacking and gain unauthorized access to computers or network systems.

Nmap
Knapp stands for Network Mapper. It is an open source device that is widely used for network search and security auditing. Namp was originally designed to scan large networks, but it could work equally well for a single host. Network administrators find it useful for tasks like network inventory, management of service upgrade schedules, and monitoring of host or service uptime.

*NMP uses raw IP packet to determine -

*Which hosts are available on the network,

*The services that the hosts are offering,

*What operating system are they running on,

*What types of firewalls are in use, and such other features are.

*Nmap runs on all major computer operating systems such as Windows, Mac OS X, and Linux.

Metasploit
Metasploit is one of the most powerful exploitation tools. It is a product of Rapid7 and most of its resources can be found at www.metasploit.com. It comes in two versions - Commercial and Free Edition. Matasploit can be used with a command prompt or web UI.

*With Metasploit, you can do the following:

*Conduct basic entrance examinations on small networks

*Check spots on the exploitation potential of vulnerabilities

*Search Network or Import Scanned Data

*Browse absorbent modules and run personal exploits on hosts

Burp suit
The Burp Suite is a popular platform that is widely used for security testing of web applications. There are various tools that work to support the entire testing process, by analyzing the initial mapping and the surface of the attack of an application, to find and exploit the security vulnerabilities.

*Burp is easy to use and provides full control over administrators to combine advanced manual techniques with automation for efficient testing. Burp can be easily configured and it includes features to assist most experienced testers with their work.

Angry IP Scanner
Angry IP scanner is a lightweight, cross-platform IP address and port scanner. It can scan the IP address in any range. It can be copied independently and can be used anywhere. To increase the scanning speed, it uses a multi-threaded approach, in which a separate scanning thread is created for each scanned IP address.

*An angry IP scanner simply pinges every IP address to check whether it is alive, and then, it resolves its hostname, determines the MAC address, scans the port, etc. The amount of data collected about each host can be saved in TXT, XML, CSV. Or IP-port list files With the help of plugins, an angry IP scanner can gather any information about the scanned IP.

Can and abel
Can & Abell is a password recovery tool for the Microsoft operating system. It helps in easy recovery of various types of passwords by employing any of the following methods -

*The network is sniffing,

*Cracking encrypted passwords using dictionary, brute-force and cryptanalysis attacks,

*Recording of VoIP conversations,

*Code coded,

*Recovering wireless network key,

*The password box reveals,

*Uncover cached passwords and analyze the routing protocol.

*Cain & Abel is a useful tool for security consultants, professional inspection testers and everyone else who plans to use it for ethical reasons.

Ettercap
Ettercap means for Ethernet capture. This is a network security tool for man-in-the-middle attacks. There are sniffing of live connections, filtering materials on the fly and many other interesting tricks. There are inbuilt features in Ettercap for Network and Host Analysis. It supports the active and passive dissection of several protocols.

*You can run Ettercap on all popular operating systems like Windows, Linux and Mac OS X.

EtherPeek
EtherPeek is an amazing tool that simplifies network analysis in multitrokal asymmetric network environment. EtherPeek is a small device (less than 2 MB) which can be easily installed in a few minutes.

*EtherPeek continually sniffs traffic packets over a network. By default, EtherPeek supports protocols such as AppleTalk, IP, IP Address Resolution Protocol (ARP), NetWare, TCP, UDP, NetBEUI and NBT Packets.

SuperScan
SuperScan is a powerful tool for network administrators to scan TCP ports and resolve hostnames. It has a user friendly interface that you can use -

*Scan a ping scan and port using any IP range.

*Scan any port range from any created list or any given category.

*See responses from connected hosts.

*Modify port list and port details by using the built-in editor.

*Merge port list to create new port

*Connect to any searched open port.

*A custom assistant application on any port