It is known to all who are interested in penetration testing and information security that there are stages pertaining to this process so that at every stage tools or even manual methods are used to reach the goal or objectives to be tested for penetration from this stage.
Of course, there are many programs and tools that help you in this process, such as tools for gathering information about the target to be penetrated from Internet addresses (Sub-domains) and data of employees who work for the goal (email addresses, phone numbers , names ... .etc) and other things, so that this information can be used in the hack process, such as phishing or social engineering, and other attacks.
Also, Ports & Services Scanning Tools: These tools are used to collect information about the ports on the target to be penetrated and to know the status of the ports (opened, closed, filterd, ... etc) in addition to knowing what services are associated with these ports and The versions of these services and other information such as the type and version of the operating system.
There are also tools for analyzing and tapping packets in networks (Packet Analyzers / Sniffers): These tools are used to analyze and eavesdrop on packets that are transmitted across networks in order to analyze whether these packages contain important data that can be obtained (such as data Entry and others)
In addition to Vulnerability Scanners: These tools are used to scan web applications, systems and networks from security vulnerabilities that may exist due to a software weakness in these applications, programs and services, so that these tools give us reports that summarize what has been found And get it in the examination process.
There are many, many tools and other programs, but to find out which one and a brief explanation about each tool, I present to you today this site which is considered as a reference like these tools. The site is called " sectools.org ". This site contains the most important 125 programs and tools in information security.
ليست هناك تعليقات:
إرسال تعليق