This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Category:Penetration Testing Tools"

From OWASP
Jump to: navigation, search
(HTTP Traffic Monitoring)
Line 95: Line 95:
 
{{OWASP Tool Info || tool_name = [http://churchturing.org/captcha-dist/ The Captcha Breaker]}}
 
{{OWASP Tool Info || tool_name = [http://churchturing.org/captcha-dist/ The Captcha Breaker]}}
 
|}
 
|}
 +
 +
=== Web Testing Frameworks ===
 +
 +
{{:Template:OWASP Tool Headings}}
 +
{{OWASP Tool Info || tool_name = [http://w3af.sourceforge.net/ w3af]}}

Revision as of 01:54, 29 October 2009

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.

Penetration Testing Tools

Information Gathering Tools

  • Fingerprinting
Name Owner Licence Platforms
httprint
httprecon
Netcraft


Configuration Management Testing Tools

  • SSL Testing
Name Owner Licence Platforms
OpenSSL
SSL Digger
  • DB Listener Testing
Name Owner Licence Platforms
TNS Listener
Toad


Authentication Testing Tools

  • Password Brute Force Testing
Name Owner Licence Platforms
Burp Intruder
Brutus
John the Ripper
Ophcrack
THC Hydra


Session Management Testing Tools

Name Owner Licence Platforms
CookieDigger


Authorization Testing Tools

Data Validation Testing Tools

  • Fuzzers
  • SQL Injection Testing
  • XSS Testing
  • Buffer Overflow Testing


Denial of Service Testing Tools

Web Services Testing Tools

Ajax Testing Tools

HTTP Traffic Monitoring

  • Web Proxies
Name Owner Licence Platforms
Burp Suite
Paros Proxy
Webscarab
TamperIE
Tamper Data
SPIKE Proxy
Suru Web Proxy
Charles
Odysseus
JS Commander
ratproxy
  • Sniffers

Encoders / Decoders

  • CAPTCHA Decoders
Name Owner Licence Platforms
PWNtcha
The Captcha Breaker

Web Testing Frameworks

Name Owner Licence Platforms
w3af

This category currently contains no pages or media.