ROOTBOX

NetWorx bandwidth meter

alt: NetMeter the live graph looks better but is a little less featured and have some instabilities on w7

NetResView(2) lists all network resources (computers, disk shares, and printer shares) on your LAN

CurrPorts(2) lists all currently opened TCP/IP and UDP ports and the processes that opened them

AS3 Personal Firewall portable firewall

eToolz gui for NS-Lookup, Ping, TraceRoute and Whois

Performance Pinging graph ping

Wireshark network protocol analyzer

Secunia PSI vulnerability scanning

Here's the /rootbox collection of apps for Android Pen Testing and Hacking. Pwn away! WARNING: EVERY SINGLE TOOL REQUIRES ROOT ACCESSIBLE ANDROID DEVICE. GOOGLE AS TO HOW TO ROOT YOUR PHONE IF YOU DO NOT KNOW HOW TO ALREADY. EACH PHONE IS ROOTED DIFFERENTLY FOR EACH CARRIER. MAKE SURE TO PROPERLY ROOT YOUR DEVICE AND DON'T BRICK IT. 

dSploit

dSploit is an Android network analysis and penetration suite which aims to offer to IT security experts/geeks the most complete and advanced professional toolkit to perform network security assesments on a mobile device. Once dSploit is started, you will be able to easily map your network, fingerprint alive hosts operating systems and running services, search for known vulnerabilities, crack logon procedures of many tcp protocols, perform man in the middle attacks such as password sniffing ( with common protocols dissection ), real time traffic manipulation, etc, etc . This application is still in beta stage, a stable release will be available as soon as possible, but expect some crash or strange behaviour until then, in any case, feel free to submit an issue on GitHub.

Shark for Root

Shark for Root Traffic sniffer, works on 3G and WiFi (works on FroYo tethered mode too).

To open dump use WireShark or similar software, for preview dump on phone use Shark Reader.

DroidSheep

DroidSheep is an Android app for Security analysis in wireless networks and capturing facebook, twitter, linkedin and other accounts.

DroidSheep Guard is another Android app for monitoring Androids ARP-table. It tries to detect ARP-Spoofing on the network, such as an attack by DroidSheep, FaceNiff and other software.

Apscan

Apscan mimics airodump-ng, minus the ability to capture packets (coming soon).

Why bother with heavy bitmaped interfaces and useless special effects, when you could use good ol' ascii!

- Lightweight

- Same formatting as Airodump-ng

- Optional colourization based on encryption type

- Sorting and filtering capabilities.

I made this app because all the other scanners on the market had lots of features I never used, especially when all I was looking for was an open or WEP network. I'm used to the airodump interface, so why not model it after that.

Due to legal reasons, wifi cracking in a market place app is not allowed. It may be possible using the mobile version of backtrack, but I'll look into that more when packet capture is less buggy.

Notable permission:

READ PHONE STATE AND IDENTITY

This is required by the ad provider (Inner-active) to provide advertising based on your rough geographic location (eg: the province/state you’re in). It also helps with targeted advertising. This is advantageous to everybody, the idea being you get ads for things you might actually care about, as opposed the usual “free iDevice” scam ads. That’s all the personal information APscan gives to the ad provider. It does not read or give away your phone number, email or anything else personal.

Happy hacking :D

G-MoN

G-MoN is a Wardriving scanner to collect and map all received wifi access points. It is also a 2G/3G netmonitor and field test drive tool for radio planning engineers. Needs enabled GPS for correct position in map!

Router Keygen

Router Keygen provides 3 ways to get Thomson keys. From the fastest to the slowest: using dictionary libraries that you will have to download, over WiFi or 3G or by native calculation that doesn't need nor Internet connection either dictionaries.

This is the free version with ads. If you like the app you can get the donate version €0.75 with no ads. It seems that the app is not in the market anymore, we don't know if it will come back soon.

Router Keygen has been developed by Rui Araújo, an individual developer who has just launched this app in the market but who should be taken in account.

Sectools.org is a great resource for any pen tester.

This list contains Top 125 Network Security Tools which are widely used by many hackers and pen-testers. Whats great about Sectools is that each tool is explained and links are provided.

Here I am going to provide a few links to tutorials on some of these tools. This list maybe updated in the future until completion.

0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Wireshark (known as Ethereal until a trademark dispute in Summer 2006) is a fantastic open source multi-platform network protocol analyzer. It allows you to examine data from a live network or from a capture file on disk. You can interactively browse the capture data, delving down into just the level of packet detail you need. Wireshark has several powerful features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session. It also supports hundreds of protocols and media types. A tcpdump-like console version named tshark is included. One word of caution is that Wireshark has suffered from dozens of remotely exploitable security holes, so stay up-to-date and be wary of running it on untrusted or hostile networks (such as security conferences).

Wireshark Intro Tutorial 

0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Metasploit took the security world by storm when it was released in 2004. It is an advanced open-source platform for developing, testing, and using exploit code. The extensible model through which payloads, encoders, no-op generators, and exploits can be integrated has made it possible to use the Metasploit Framework as an outlet for cutting-edge exploitation research. It ships with hundreds of exploits, as you can see in their list of modules. This makes writing your own exploits easier, and it certainly beats scouring the darkest corners of the Internet for illicit shellcode of dubious quality.

Metasploit was completely free, but the project was acquired by Rapid7 in 2009 and it soon sprouted commercial variants. The Framework itself is still free and open source, but they now also offer a free-but-limited Community edition, a more advanced Express edition ($3,000 per year per user), and a full-featured Pro edition ($15,000 per user per year). Other paid exploitation tools to consider are Core Impact (more expensive) and Canvas (less).

The Metasploit Framework now includes an official Java-based GUI and also Raphael Mudge's excellent Armitage. The Community, Express, and Pro editions have web-based GUIs.

Metasploit Unleashed

0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Nessus is one of the most popular and capable vulnerability scanners, particularly for UNIX systems. It was initially free and open source, but they closed the source code in 2005 and removed the free "Registered Feed" version in 2008. It now costs $1,200 per year, which still beats many of its competitors. A free “Home Feed” is also available, though it is limited and only licensed for home network use.

Nessus is constantly updated, with more than 46,000 plugins. Key features include remote and local (authenticated) security checks, a client/server architecture with a web-based interface, and an embedded scripting language for writing your own plugins or understanding the existing ones. The open-source version of Nessus was forked by a group of users who still develop it under the OpenVAS name.

Nessus Introduction

0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Aircrack is a suite of tools for 802.11a/b/g WEP and WPA cracking. It implements the best known cracking algorithms to recover wireless keys once enough encrypted packets have been gathered. . The suite comprises over a dozen discrete tools, including airodump (an 802.11 packet capture program), aireplay (an 802.11 packet injection program), aircrack (static WEP and WPA-PSK cracking), and airdecap (decrypts WEP/WPA capture files).

Cracking WPA/WPA2 Network Keys / 4 Way Handshake

0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Snort is a network intrusion detection and prevention system excels at traffic analysis and packet logging on IP networks. Through protocol analysis, content searching, and various pre-processors, Snort detects thousands of worms, vulnerability exploit attempts, port scans, and other suspicious behavior. Snort uses a flexible rule-based language to describe traffic that it should collect or pass, and a modular detection engine. Also check out the free Basic Analysis and Security Engine (BASE), a web interface for analyzing Snort alerts.

While Snort itself is free and open source, parent company SourceFire offers their VRT-certified rules for $499 per sensor per year and a complementary product line of software and appliances with more enterprise-level features. Sourcefire also offers a free 30-day delayed feed.

Snort Tutorial

0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Cain and Abel. UNIX users often smugly assert that the best free security tools support their platform first, and Windows ports are often an afterthought. They are usually right, but Cain & Abel is a glaring exception. This Windows-only password recovery tool handles an enormous variety of tasks. It can recover passwords by sniffing the network, cracking encrypted passwords using dictionary, brute-force and cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols. It is also well documented.

Cain and Abel Sniffing Tutorial

0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Netcat is a simple utility reads and writes data across TCP or UDP network connections. It is designed to be a reliable back-end tool to use directly or easily drive by other programs and scripts. At the same time, it is a feature-rich network debugging and exploration tool, since it can create almost any kind of connection you would need, including port binding to accept incoming connections.

The original Netcat was released by Hobbit in 1995, but it hasn't been maintained despite its popularity. It can sometimes even be hard to find a copy of the v1.10 source code. The flexibility and usefulness of this tool prompted the Nmap Project to produce Ncat, a modern reimplementation which supports SSL, IPv6, SOCKS and http proxies, connection brokering, and more. Other takes on this classic tool include the amazingly versatile Socat, OpenBSD's nc, Cryptcat, Netcat6, pnetcat, SBD, and so-called GNU Netcat.

Complete Netcat tutorial [PDF]

Matriux is a fully featured security distribution consisting of a bunch of powerful, open source and free tools that can be used for various purposes including, but not limited to, penetration testing, ethical hacking, system and network administration, cyber forensics investigations, security testing, vulnerability analysis, and much more. It is a distribution designed for security enthusiasts and professionals, although it can be used normally as your default desktop system.

 BackBox is a Linux distribution for penetration testers based on Ubuntu.It is one of the lightest and fastest Linux distros that are currently available on the Internet.It uses the Xfce component for the desktop environment and is suitable for web application analysis,network analysis,vulnerability assessments and penetration tests.