Blogs

Scans That You Can Perform Using RED HAWK are Basic Scan ,Site Title NEW ,IP Address ,Web Server Detection IMPROVED ,CMS Detection ,Cloudflare Detection .

XCTR is an all in one tools for Information Gathering which can admin panel,page viewer,cms,reverse IP,dork finder,prxoy viewer.

XSpear is XSS Scanner tool which is written in ruby gems. It can be useful for detecting the XSS vulnerability with different level of payloads.

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items.

XForwardy is a Host Header Injection scanning tool which can detect misconfigurations , where Host Header Injections are potentially possible.

Altair is a Python based tool that does not require any specific packages to be installed as a pre-requisite. The SQLMAP and Lfier tools must be available on the disposal of the tool.

The Yuki Chan is an Automated Penetration Testing tool this tool will auditing all standard security test method for you.

 multiple domain scanning with SQL injection dork by Bing, Google, or Yahoo .

ClassyShark is a standalone binary inspection tool for Android developers/testers.

Detective helps to find Sensitive information, files and directories that are not supposed to see.

--xss  : Scan Site if vulnerable [Xss] url must be between double citation --sql  : Scan Site if vulnerable [Sql] url must be between double citation

Spaghetti is an Open Source web application scanner, it is designed to find various default and insecure files...

Wfuzz is a command line tool written in python. It is used to discover common vulnerabilities in web applications through the method of fuzzing.

Dirsearch is Tool that performs bruteforce attack of sensitive directories and files that are found on the websites.

LFISuite, an open source local file inclusion scanner and exploiter that is coded in Python. It supports multiple attack points and also has TOR proxy support.

A plugin-based scanner that aids security researchers in identifying issues with several CMS.

OneForAll is a powerful chinese subdomain and dns enumeration tool.When considering about subdomain enumeration, amass might be your first and preferable...

Filebuster is a HTTP fuzzer / content discovery script with loads of features and built to be easy to use and fast! It uses one of the fastest HTTP classes in the world...

Infosploit is an Information Gathering Tool that can be used during a penetration test, OSINT  to enumerate Information about...

Complete Automated pentest framework for Servers, Application Layer to Web Security. Tishna is Web Server Security Penetration

Pompem is an open source tool, designed to automate the search for Exploits and Vulnerability in the most important databases.