Difference between revisions of "Kali"
Jump to navigation
Jump to search
(Created page with "==Context== This page is about softwares provided in Kali distribution ==Repositories== To add Kali repositories and pin them, see LMDE#Add_Kali_repositories ==List== To g...") |
m (→List) |
||
| Line 50: | Line 50: | ||
Depends: veil-catapult |
Depends: veil-catapult |
||
</pre> |
</pre> |
||
| + | <pre> |
||
| − | apt-cache depends kali-linux-full|awk '/Depends:/{print $2}'|xargs -n 1 -I XX apt-cache search -n ^XX$|awk '{n=$1;$1="";printf ("%-30s%s\n",n,$0)}' |
||
| + | apt-cache depends kali-linux-full|awk '/Depends:/{print $2}'|xargs -n 1 -I XX apt-cache search -n ^XX$|awk '{n=$1;$1="";printf ("%-30s%s\n",n,$0)}' |
||
| + | kali-linux - Kali Linux base system |
||
| + | kali-linux-sdr - Kali Linux SDR tools |
||
| + | 0trace - A traceroute tool that can run within an existing TCP connection. |
||
| + | acccheck - Password dictionary attack tool for SMB |
||
| + | ace-voip - A simple VoIP corporate directory enumeration tool |
||
| + | afflib-tools - support for Advanced Forensics format (utilities) |
||
| + | aircrack-ng - wireless WEP/WPA cracking utilities |
||
| + | amap - next-generation scanning tool for pentesters |
||
| + | apache-users - Enumerate usernames on systems with Apache UserDir module |
||
| + | apktool - A tool for reverse engineering Android apk files |
||
| + | arduino - AVR development board IDE and built-in libraries |
||
| + | arping - sends IP and/or ARP pings (to the MAC address) |
||
| + | arpwatch - Ethernet/FDDI station activity monitor |
||
| + | arp-scan - arp scanning and fingerprinting tool |
||
| + | asleap - A tool for exploiting Cisco LEAP networks |
||
| + | automater - A IP and URL analysis tool. |
||
| + | autopsy - graphical interface to SleuthKit |
||
| + | bbqsql - SQL Injection Exploitation Tool |
||
| + | bed - A network protocol fuzzer |
||
| + | beef-xss - Browser Exploitation Framework (BeEF) |
||
| + | binwalk - tool for searching binary images for embedded files and executable code |
||
| + | blindelephant - A generic web application fingerprinter |
||
| + | bluelog - Bluetooth scanner and logger |
||
| + | bluemaho - GUI interface for testing Bluetooth devices |
||
| + | bluepot - Bluetooth honeypot |
||
| + | blueranger - Simple Bash script to locate Bluetooth devices |
||
| + | bluesnarfer - A Bluesnarfing Utility |
||
| + | bluez - Bluetooth tools and daemons |
||
| + | bluez-hcidump - Analyses Bluetooth HCI packets |
||
| + | braa - Mass SNMP scanner |
||
| + | btscanner - ncurses-based scanner for Bluetooth devices |
||
| + | bully - Bully is a new implementation of the WPS brute force attack, written in C. |
||
| + | bulk-extractor - Extracts information without parsing filesystem |
||
| + | burpsuite - platform for security testing of web applications |
||
| + | cabextract - Microsoft Cabinet file unpacker |
||
| + | cadaver - command-line WebDAV client |
||
| + | casefile - Offline intelligence tool |
||
| + | cdpsnarf - Network sniffer to extract CDP information |
||
| + | cewl - Custom wordlist generator |
||
| + | cgpt - GPT manipulation tool with support for Chromium OS extensions |
||
| + | chirp - Configuration tool for amateur radios |
||
| + | chkrootkit - rootkit detector |
||
| + | chntpw - NT SAM password recovery utility |
||
| + | cisco-auditing-tool - Scans Cisco routers for vulnerabilities |
||
| + | cisco-global-exploiter - Simple and fast Cisco exploitation tool |
||
| + | cisco-ocs - Mass Cisco scanner |
||
| + | cisco-torch - Cisco device scanner |
||
| + | clang - C, C++ and Objective-C compiler (LLVM based) |
||
| + | cmospwd - decrypt BIOS passwords from CMOS |
||
| + | copy-router-config - Copies Cisco configs via SNMP |
||
| + | cowpatty - Brute-force WPA dictionary attack |
||
| + | creddump - Extracts credentials from Windows registry hives |
||
| + | creepy - geolocation information aggregator |
||
| + | cryptsetup - disk encryption support - startup scripts |
||
| + | crunch - Password wordlist generator |
||
| + | cryptcat - A lightweight version netcat extended with twofish encryption |
||
| + | curlftpfs - filesystem to access FTP hosts based on FUSE and cURL |
||
| + | cutycapt - utility to capture WebKit's rendering of a web page |
||
| + | cymothoa - Stealth backdooring tool |
||
| + | darkstat - network traffic analyzer |
||
| + | davtest - Testing tool for WebDAV servers |
||
| + | dbd - Netcat clone with encryption |
||
| + | dbpwaudit - Does online password audits of DB engines |
||
| + | dc3dd - patched version of GNU dd with forensic features |
||
| + | dcfldd - enhanced version of dd for forensics and security |
||
| + | ddrescue - Copies data from one file or block device to another. |
||
| + | deblaze - Performs testing against flash remoting endpoints |
||
| + | dex2jar - Tools to work with android .dex and java .class files |
||
| + | dff - Powerful, efficient and modular digital forensic framework |
||
| + | dhcpig - DHCP exhaustion script |
||
| + | dirb - URL bruteforcing tool |
||
| + | dirbuster - Web server directory brute-forcer |
||
| + | dissy - graphical frontend for objdump |
||
| + | dmitry - Deepmagic Information Gathering Tool |
||
| + | dnmap - Distributed nmap framework |
||
| + | dns2tcp - TCP over DNS tunnel client and server |
||
| + | dnschef - DNS proxy for penetration testers |
||
| + | dnsenum - Tool to enumerate domain DNS information |
||
| + | dnsmap - DNS domain name brute forcing tool |
||
| + | dnsrecon - A powerful DNS enumeration script |
||
| + | dnstracer - trace DNS queries to the source |
||
| + | dnswalk - Checks dns zone information using nameserver lookups |
||
| + | dos2unix - convert text file line endings between CRLF and LF |
||
| + | dotdotpwn - DotDotPwn - The Directory Traversal Fuzzer. |
||
| + | dradis - Collaboration tools for penetration testing |
||
| + | driftnet - picks out and displays images from network traffic |
||
| + | dsniff - Various tools to sniff network traffic for cleartext insecurities |
||
| + | dumpzilla - Mozilla browser forensic tool |
||
| + | eapmd5pass - Tool for extracting and cracking EAP-MD5 |
||
| + | edb-debugger - Linux equivalent of OllyDbg |
||
| + | enum4linux - Enumerates info from Windows and Samba systems |
||
| + | enumiax - IAX protocol username enumerator |
||
| + | ethtool - display or change Ethernet device settings |
||
| + | ettercap-graphical - Ettercap GUI-enabled executable |
||
| + | ewf-tools - collection of tools for reading and writing EWF files |
||
| + | exiv2 - EXIF/IPTC metadata manipulation tool |
||
| + | exploitdb - Searchable Exploit Database archive |
||
| + | extundelete - utility to recover deleted files from ext3/ext4 partition |
||
| + | fcrackzip - password cracker for zip archives |
||
| + | fern-wifi-cracker - Automated wifi cracker |
||
| + | fierce - Domain DNS scanner |
||
| + | fiked - Cisco VPN attack tool |
||
| + | fimap - LFI and RFI exploitation tool |
||
| + | findmyhash - Crack hashes with online services |
||
| + | flasm - assembler and disassembler for Flash (SWF) bytecode |
||
| + | foremost - forensic program to recover lost files |
||
| + | fping - sends ICMP ECHO_REQUEST packets to network hosts |
||
| + | fragroute - Test a NIDS by attempting to evade using fragmented packets |
||
| + | fragrouter - IDS evasion toolkit |
||
| + | framework2 - Metasploit Framework 2 |
||
| + | ftester - The Firewall Tester (FTester) is a tool designed for testing firewall filtering policies and Intrusion Detection System (IDS) capabilities. |
||
| + | funkload - web testing tool |
||
| + | galleta - An Internet Explorer cookie forensic analysis tool |
||
| + | gdb - GNU Debugger |
||
| + | ghost-phisher - GUI suite for phishing and penetration attacks |
||
| + | giskismet - Wireless recon visualization tool |
||
| + | golismero - Web application mapper |
||
| + | goofile - Command line filetype search |
||
| + | gpp-decrypt - Group Policy Preferences decrypter |
||
| + | grabber - Web application vulnerability scanner |
||
| + | guymager - Forensic imaging tool based on Qt |
||
| + | hackrf-tools - Hardware driver and tools for HackRF Jawbreaker |
||
| + | hamster-sidejack - Sidejacking tool |
||
| + | hash-identifier - Tool to identify hash types |
||
| + | hashcat - World’s fastest CPU-based password recovery tool |
||
| + | hashcat-utils - Set of small utilities for advanced password cracking |
||
| + | hexinject - Versatile packet injector and sniffer |
||
| + | hexorbase - Multiple database management and audit application |
||
| + | hotpatch - Hot patches Linux executables with .so file injection |
||
| + | hping3 - Active Network Smashing Tool |
||
| + | hydra - very fast network logon cracker |
||
| + | hydra-gtk - very fast network logon cracker - GTK+ based GUI |
||
| + | i2c-tools - heterogeneous set of I2C tools for Linux |
||
| + | iaxflood - VoIP flooder tool |
||
| + | ifenslave - configure network interfaces for parallel routing (bonding) |
||
| + | ifenslave-2.6 - Attach and detach slave interfaces to a bonding device |
||
| + | ikat - Interactive Kiosk Attack Tool |
||
| + | ike-scan - discover and fingerprint IKE hosts (IPsec VPN Servers) |
||
| + | inetsim - Software suite for simulating common internet services |
||
| + | intersect - Post-exploitation framework |
||
| + | intrace - Traceroute-like application piggybacking on existing TCP connections |
||
| + | inundator - Multi-threaded IDS false positive generator |
||
| + | inviteflood - SIP/SDP INVITE message flooding over UDP/IP |
||
| + | iodine - tool for tunneling IPv4 data through a DNS server |
||
| + | irpas - Internetwork Routing Protocol Attack Suite |
||
| + | isr-evilgrade - Evilgrade framework |
||
| + | jad - Java decompiler |
||
| + | javasnoop - Intercept Java applications locally |
||
| + | jboss-autopwn - JBoss script for obtaining remote shell access |
||
| + | john - active password cracking tool |
||
| + | johnny - GUI for John the Ripper |
||
| + | joomscan - OWASP Joomla Vulnerability Scanner Project |
||
| + | jsql - Java tool for automatic database injection |
||
| + | keepnote - cross-platform note-taking and organization application |
||
| + | keimpx - Check for valid credentials across a network over SMB |
||
| + | killerbee - Framwork for ZigBee exploitation |
||
| + | kismet - wireless sniffer and monitor - core |
||
| + | laudanum - Collection of injectable web files |
||
| + | lbd - Load balancer detector |
||
| + | leafpad - GTK+ based simple text editor |
||
| + | libcrafter - Library to generate and sniff network packets |
||
| + | libewf1 - library with support for Expert Witness Compression Format |
||
| + | libfindrtp - Library required by multiple VoIP tools |
||
| + | libfreefare-bin - MIFARE card manipulations binaries |
||
| + | libhivex-bin - utilities for reading and writing Windows Registry hives |
||
| + | libnfc-bin - Near Field Communication (NFC) binaries |
||
| + | lynis - security auditing tool for Unix based systems |
||
| + | macchanger - utility for manipulating the MAC address of network interfaces |
||
| + | magicrescue - recovers files by looking for magic bytes |
||
| + | magictree - Penetration tester productivity tool |
||
| + | maltego - Open source intelligence and forensics application |
||
| + | maltego-teeth - Set of offensive Maltego transforms |
||
| + | maskprocessor - High-performance word generator |
||
| + | mc - Midnight Commander - a powerful file manager |
||
| + | md5deep - Recursively compute hashsums or piecewise hashings |
||
| + | mdbtools - JET / MS Access database (MDB) tools |
||
| + | mdk3 - Wireless attack tool for IEEE 802.11 networks |
||
| + | medusa - fast, parallel, modular, login brute-forcer for network services |
||
| + | memdump - utility to dump memory contents to standard output |
||
| + | metagoofil - Tool designed for extracting metadata of public documents |
||
| + | metasploit - Penetration testing and exploit development tool with web-based interface |
||
| + | metasploit-framework - Framework for exploit development and vulnerability research |
||
| + | armitage - Cyber attack management for Metasploit |
||
| + | mfcuk - MFCUK - MiFare Classic Universal toolKit |
||
| + | mfoc - MIFARE Classic offline cracker |
||
| + | mfterm - Terminal for working with Mifare Classic 1-4k Tags |
||
| + | mimikatz - Uses admin rights on Windows to display passwords in plaintext |
||
| + | minicom - friendly menu driven serial communication program |
||
| + | miranda - UPNP administration tool |
||
| + | miredo - Teredo IPv6 tunneling through NATs |
||
| + | missidentify - a program to find win32 applications |
||
| + | mitmproxy - SSL-capable man-in-the-middle HTTP proxy |
||
| + | multiforcer - GPU accelerated password cracking tool |
||
| + | multimac - Create multiple MACs on an adapter |
||
| + | nasm - General-purpose x86 assembler |
||
| + | nbtscan - A program for scanning networks for NetBIOS name information |
||
| + | ncat-w32 - Netcat for the 21st century |
||
| + | ncrack - High-speed network authentication cracking tool |
||
| + | ncurses-hexedit - Edit files/disks in hex, ASCII and EBCDIC |
||
| + | netdiscover - active/passive network address scanner using arp requests |
||
| + | netmask - helps determine network masks |
||
| + | netsed - network packet-altering stream editor |
||
| + | netsniff-ng - packet sniffing beast |
||
| + | netwag - graphical frontend for netwox |
||
| + | nfspy - ID-spoofing NFS client |
||
| + | ngrep - grep for network traffic |
||
| + | nikto - web server security scanner |
||
| + | nipper-ng - Device security configuration review tool |
||
| + | nmap - The Network Mapper |
||
| + | ohrwurm - RTP fuzzer |
||
| + | ollydbg - 32-bit assembler level analysing debugger |
||
| + | onesixtyone - fast and simple SNMP scanner |
||
| + | openvas - Openvas dummy package. |
||
| + | ophcrack - Microsoft Windows password cracker using rainbow tables (gui) |
||
| + | ophcrack-cli - Microsoft Windows password cracker using rainbow tables (cmdline) |
||
| + | oscanner - Oracle assessment framework |
||
| + | p0f - Passive OS fingerprinting tool |
||
| + | pack - Password analysis and cracking kit |
||
| + | padbuster - Script for performing Padding Oracle attacks |
||
| + | paros - Web application proxy |
||
| + | pasco - An Internet Explorer cache forensic analysis tool |
||
| + | passing-the-hash - Patched tools to use password hashes as authentication input |
||
| + | patator - Multi-purpose brute-forcer |
||
| + | pdfid - Scans PDF files for certain PDF keywords |
||
| + | pdf-parser - Parses PDF files to identify fundamental elements |
||
| + | pdgmail - Extracts gmail artifacts from a pd dump |
||
| + | peepdf - PDF analysis tool |
||
| + | perl-cisco-copyconfig - Provides methods for manipulating Cisco devices |
||
| + | pev - text-based tool to analyze PE files |
||
| + | phrasendrescher - Passphrase cracking tool |
||
| + | pipal - Statistical analysis on password dumps |
||
| + | pjproject - A multimedia communication library for SIP |
||
| + | plecost - Wordpress fingerprinting tool |
||
| + | polenum - Extracts the password policy from a Windows system |
||
| + | powerfuzzer - Highly automated and fully customizable web fuzzer |
||
| + | powersploit - PowerShell Post-Exploitation Framework |
||
| + | protos-sip - SIP test suite |
||
| + | proxychains - proxy chains - redirect connections through proxy servers |
||
| + | proxystrike - Active web application proxy |
||
| + | proxytunnel - Create tcp tunnels trough HTTPS proxies, for using with SSH |
||
| + | ptunnel - Tunnel TCP connections over ICMP packets |
||
| + | pwnat - NAT to NAT client-server communication |
||
| + | pyrit - GPGPU-driven WPA/WPA2-PSK key cracker |
||
| + | python-impacket - Python module to easily build and dissect network protocols |
||
| + | python-impacket-doc - Python module to easily build and dissect network protocols |
||
| + | python-rfidiot - Python library to explore RFID devices |
||
| + | python-scapy - Packet generator/sniffer and network scanner/discovery |
||
| + | rainbowcrack - Rainbow table password cracker |
||
| + | radare2 - free and advanced command line hexadecimal editor |
||
| + | rake - ruby make-like utility |
||
| + | ratproxy - passive web application security assessment tool |
||
| + | rcracki-mt - Version of rcrack that supports hybrid and indexed tables |
||
| + | rdd - a forensic copy program |
||
| + | readpst - Converts Outlook PST files to mbox and others |
||
| + | reaver - brute force attack tool against Wifi Protected Setup PIN number |
||
| + | rebind - DNS rebinding tool |
||
| + | recon-ng - Web Reconnaissance framework written in Python |
||
| + | recordmydesktop - Captures audio-video data of a Linux desktop session |
||
| + | recoverjpeg - tool to recover JPEG images from a filesystem image |
||
| + | redfang - Locates non-discoverable bluetooth devices |
||
| + | redsocks - arbitrary TCP connection redirector to a SOCKS or HTTPS proxy server |
||
| + | reglookup - utility to read and query Windows NT/2000/XP registry |
||
| + | regripper - Windows registry forensics tool |
||
| + | responder - NBT-NS/LLMNR Responder |
||
| + | rifiuti - A MS Windows recycle bin analysis tool |
||
| + | rifiuti2 - A MS Windows recycle bin analysis tool |
||
| + | rsmangler - Wordlist mangling tool |
||
| + | rtpbreak - Detects, reconstructs, and analyzes RTP sessions |
||
| + | rtpflood - Tool to flood any RTP device |
||
| + | rtpinsertsound - Inserts audio into a specified stream |
||
| + | rtpmixsound - Mixes pre-recorded audio in real-time |
||
| + | safecopy - Copy utility ignoring errors |
||
| + | sakis3g - Tool for establishing 3G connections |
||
| + | samdump2 - Dump Windows 2k/NT/XP password hashes |
||
| + | sbd - Secure backdoor for linux and windows |
||
| + | scalpel - A Frugal, High Performance File Carver |
||
| + | scrounge-ntfs - Data recovery program for NTFS filesystems |
||
| + | sctpscan - SCTP network scanner for discovery and security |
||
| + | sendemail - lightweight, command line SMTP email client |
||
| + | set - Social-Engineer Toolkit |
||
| + | sfuzz - Black Box testing utilities |
||
| + | sidguesser - Guesses sids against an Oracle database |
||
| + | siege - HTTP regression testing and benchmarking utility |
||
| + | siparmyknife - SIP fuzzing tool |
||
| + | sipcrack - SIP login dumper/cracker |
||
| + | sipp - Traffic generator for the SIP protocol |
||
| + | sipvicious - Tools for auditing SIP based VoIP systems |
||
| + | skipfish - fully automated, active web application security reconnaissance tool |
||
| + | sleuthkit - collection of tools for forensics analysis on volume and file system data |
||
| + | smali - Assembler/disassembler for Android's dex format |
||
| + | smtp-user-enum - Username guessing tool primarily for the SMTP service. |
||
| + | sniffjoke - Transparent TCP connection scrambler |
||
| + | snmpcheck - SNMP service enumeration tool |
||
| + | socat - multipurpose relay for bidirectional data transfer |
||
| + | spectools - Utilities for using the Wi-Spy USB spectrum analyzer hardware |
||
| + | spidermonkey-bin - standalone JavaScript/ECMAScript (ECMA-262) interpreter |
||
| + | spike - Network protocol fuzzer |
||
| + | spooftooph - Automates spoofing or cloning Bluetooth devices |
||
| + | sqldict - Dictionary attack tool for SQL Server |
||
| + | sqlitebrowser - GUI editor for SQLite databases |
||
| + | sqlmap - automatic SQL injection tool |
||
| + | sqlninja - SQL server injection and takeover tool |
||
| + | sqlsus - MySQL injection tool |
||
| + | sslcaudit - Tests SSL/TLS clients susceptibility to MITM attacks |
||
| + | ssldump - An SSLv3/TLS network protocol analyzer |
||
| + | sslh - ssl/ssh multiplexer |
||
| + | sslscan - Fast SSL scanner |
||
| + | sslsniff - SSL/TLS man-in-the-middle attack tool |
||
| + | sslstrip - SSL/TLS man-in-the-middle attack tool |
||
| + | sslsplit - Transparent and scalable SSL/TLS interception |
||
| + | sslyze - Fast and full-featured SSL scanner |
||
| + | statsprocessor - High-performance word-generator |
||
| + | stunnel4 - Universal SSL tunnel for network daemons |
||
| + | suckless-tools - simple commands for minimalistic window managers |
||
| + | sucrack - multithreaded su bruteforcer |
||
| + | swaks - SMTP command-line test tool |
||
| + | t50 - Multi-protocol packet injector tool |
||
| + | tcpflow - TCP flow recorder |
||
| + | tcpick - TCP stream sniffer and connection tracker |
||
| + | tcpreplay - Tool to replay saved tcpdump files at arbitrary speeds |
||
| + | termineter - Smart meter testing framework |
||
| + | tftpd32 - Open source ipv6-ready TFTP server for Windows |
||
| + | thc-ipv6 - The Hacker Choice's IPv6 Attack Toolkit |
||
| + | thc-pptp-bruter - THC PPTP Brute Force |
||
| + | thc-ssl-dos - Stress tester for the SSL handshake |
||
| + | theharvester - theHarvester is a tool for gathering e-mail accounts and subdomain names from public sources. |
||
| + | tlssled - Evaluates the security of a target SSL/TLS (HTTPS) server |
||
| + | tnscmd10g - Tool to prod the oracle tnslsnr process |
||
| + | truecrack - Bruteforce password cracker for TrueCrypt volumes. |
||
| + | truecrypt - Cross-platform on-the-fly encryption |
||
| + | twofi - Twitter words of interest |
||
| + | u3-pwn - Injects executables onto U3 USB devices |
||
| + | ua-tester - User agent string tester |
||
| + | udptunnel - tunnel UDP packets over a TCP connection |
||
| + | unetbootin - installer of Linux/BSD distributions to a partition or USB drive |
||
| + | uniscan - LFI, RFI, and RCE vulnerability scanner |
||
| + | unicornscan - Userland distributed TCP/IP stack |
||
| + | unix-privesc-check - Script to check for simple privilege escalation vectors |
||
| + | urlcrazy - Domain typo generator |
||
| + | vboot-kernel-utils - Chrome OS verified boot utils required to sign kernels |
||
| + | vboot-utils - Chrome OS verified boot utils |
||
| + | vega - Platform to test the security of web applications |
||
| + | vim-gtk - Vi IMproved - enhanced vi editor - with GTK2 GUI |
||
| + | vinetto - A forensics tool to examine Thumbs.db files |
||
| + | vlan - user mode programs to enable VLANs on your ethernet devices |
||
| + | voiphopper - Runs a VLAN hop security test |
||
| + | volafox - Memory analyzer for Mac OS X & BSD |
||
| + | volatility - advanced memory forensics framework |
||
| + | vpnc - Cisco-compatible VPN client |
||
| + | w3af - framework to find and exploit web application vulnerabilities |
||
| + | waffit - WAF auditing tool |
||
| + | wapiti - web application vulnerability scanner |
||
| + | wce - Windows Credentials Editor |
||
| + | webacoo - Web backdoor cookie script kit |
||
| + | webscarab - Web application review tool |
||
| + | webshag - Multi-threaded web server audit tool |
||
| + | webshells - Collection of webshells |
||
| + | webslayer - Web application bruteforcer |
||
| + | websploit - Web exploitation framework |
||
| + | weevely - Stealth tiny web shell |
||
| + | winexe - Remote Windows-command executor |
||
| + | wfuzz - Web application bruteforcer |
||
| + | whatweb - Next generation web scanner |
||
| + | wifi-honey - Wi-Fi honeypot |
||
| + | wifitap - WiFi injection via a tun/tap device |
||
| + | wifite - Python script to automate wireless auditing using aircrack-ng tools |
||
| + | windows-binaries - Various pentesting Windows binaries |
||
| + | wireshark - network traffic analyzer - GTK+ version |
||
| + | wol-e - Wake on LAN Explorer |
||
| + | wordlists - Contains the rockyou wordlist |
||
| + | wpscan - Black box WordPress vulnerability scanner |
||
| + | wvdial - intelligent Point-to-Point Protocol dialer |
||
| + | xpdf - Portable Document Format (PDF) reader |
||
| + | xprobe - Remote OS identification |
||
| + | xspy - X server sniffer |
||
| + | xsser - XSS testing framework |
||
| + | xtightvncviewer - virtual network computing client software for X |
||
| + | yersinia - Network vulnerabilities check software |
||
| + | zaproxy - Testing tool for finding vulnerabilities in web applications. |
||
| + | zenmap - The Network Mapper Front End |
||
| + | zim - graphical text editor based on wiki technologies |
||
| + | </pre> |
||
Revision as of 00:35, 3 April 2014
Context
This page is about softwares provided in Kali distribution
Repositories
To add Kali repositories and pin them, see LMDE#Add_Kali_repositories
List
To get an overview of the available packages:
apt-cache search kali-linux kali-linux - Kali Linux base system kali-linux-all - Kali Linux - all packages kali-linux-forensic - Kali Linux forensic tools kali-linux-full - Kali Linux complete system kali-linux-gpu - Kali Linux GPU tools kali-linux-pwtools - Kali Linux password cracking tools kali-linux-rfid - Kali Linux RFID tools kali-linux-sdr - Kali Linux SDR tools kali-linux-top10 - Kali Linux Top 10 tools kali-linux-voip - Kali Linux VoIP tools kali-linux-web - Kali Linux webapp assessment tools kali-linux-wireless - Kali Linux wireless tools
apt-cache depends kali-linux-all kali-linux-all Depends: kali-linux-forensic Depends: kali-linux-full Depends: kali-linux-gpu Depends: kali-linux-pwtools Depends: kali-linux-rfid Depends: kali-linux-sdr Depends: kali-linux-top10 Depends: kali-linux-voip Depends: kali-linux-web Depends: kali-linux-wireless Depends: android-sdk Depends: backdoor-factory Depends: bing-ip2hosts Depends: device-pharmer Depends: doona Depends: freeradius Depends: hackersh Depends: htshells Depends: ismtp Depends: linux-exploit-suggester Depends: masscan Depends: sandi Depends: shellnoob Depends: teamsploit Depends: veil-evasion Depends: veil-catapult
apt-cache depends kali-linux-full|awk '/Depends:/{print $2}'|xargs -n 1 -I XX apt-cache search -n ^XX$|awk '{n=$1;$1="";printf ("%-30s%s\n",n,$0)}'
kali-linux - Kali Linux base system
kali-linux-sdr - Kali Linux SDR tools
0trace - A traceroute tool that can run within an existing TCP connection.
acccheck - Password dictionary attack tool for SMB
ace-voip - A simple VoIP corporate directory enumeration tool
afflib-tools - support for Advanced Forensics format (utilities)
aircrack-ng - wireless WEP/WPA cracking utilities
amap - next-generation scanning tool for pentesters
apache-users - Enumerate usernames on systems with Apache UserDir module
apktool - A tool for reverse engineering Android apk files
arduino - AVR development board IDE and built-in libraries
arping - sends IP and/or ARP pings (to the MAC address)
arpwatch - Ethernet/FDDI station activity monitor
arp-scan - arp scanning and fingerprinting tool
asleap - A tool for exploiting Cisco LEAP networks
automater - A IP and URL analysis tool.
autopsy - graphical interface to SleuthKit
bbqsql - SQL Injection Exploitation Tool
bed - A network protocol fuzzer
beef-xss - Browser Exploitation Framework (BeEF)
binwalk - tool for searching binary images for embedded files and executable code
blindelephant - A generic web application fingerprinter
bluelog - Bluetooth scanner and logger
bluemaho - GUI interface for testing Bluetooth devices
bluepot - Bluetooth honeypot
blueranger - Simple Bash script to locate Bluetooth devices
bluesnarfer - A Bluesnarfing Utility
bluez - Bluetooth tools and daemons
bluez-hcidump - Analyses Bluetooth HCI packets
braa - Mass SNMP scanner
btscanner - ncurses-based scanner for Bluetooth devices
bully - Bully is a new implementation of the WPS brute force attack, written in C.
bulk-extractor - Extracts information without parsing filesystem
burpsuite - platform for security testing of web applications
cabextract - Microsoft Cabinet file unpacker
cadaver - command-line WebDAV client
casefile - Offline intelligence tool
cdpsnarf - Network sniffer to extract CDP information
cewl - Custom wordlist generator
cgpt - GPT manipulation tool with support for Chromium OS extensions
chirp - Configuration tool for amateur radios
chkrootkit - rootkit detector
chntpw - NT SAM password recovery utility
cisco-auditing-tool - Scans Cisco routers for vulnerabilities
cisco-global-exploiter - Simple and fast Cisco exploitation tool
cisco-ocs - Mass Cisco scanner
cisco-torch - Cisco device scanner
clang - C, C++ and Objective-C compiler (LLVM based)
cmospwd - decrypt BIOS passwords from CMOS
copy-router-config - Copies Cisco configs via SNMP
cowpatty - Brute-force WPA dictionary attack
creddump - Extracts credentials from Windows registry hives
creepy - geolocation information aggregator
cryptsetup - disk encryption support - startup scripts
crunch - Password wordlist generator
cryptcat - A lightweight version netcat extended with twofish encryption
curlftpfs - filesystem to access FTP hosts based on FUSE and cURL
cutycapt - utility to capture WebKit's rendering of a web page
cymothoa - Stealth backdooring tool
darkstat - network traffic analyzer
davtest - Testing tool for WebDAV servers
dbd - Netcat clone with encryption
dbpwaudit - Does online password audits of DB engines
dc3dd - patched version of GNU dd with forensic features
dcfldd - enhanced version of dd for forensics and security
ddrescue - Copies data from one file or block device to another.
deblaze - Performs testing against flash remoting endpoints
dex2jar - Tools to work with android .dex and java .class files
dff - Powerful, efficient and modular digital forensic framework
dhcpig - DHCP exhaustion script
dirb - URL bruteforcing tool
dirbuster - Web server directory brute-forcer
dissy - graphical frontend for objdump
dmitry - Deepmagic Information Gathering Tool
dnmap - Distributed nmap framework
dns2tcp - TCP over DNS tunnel client and server
dnschef - DNS proxy for penetration testers
dnsenum - Tool to enumerate domain DNS information
dnsmap - DNS domain name brute forcing tool
dnsrecon - A powerful DNS enumeration script
dnstracer - trace DNS queries to the source
dnswalk - Checks dns zone information using nameserver lookups
dos2unix - convert text file line endings between CRLF and LF
dotdotpwn - DotDotPwn - The Directory Traversal Fuzzer.
dradis - Collaboration tools for penetration testing
driftnet - picks out and displays images from network traffic
dsniff - Various tools to sniff network traffic for cleartext insecurities
dumpzilla - Mozilla browser forensic tool
eapmd5pass - Tool for extracting and cracking EAP-MD5
edb-debugger - Linux equivalent of OllyDbg
enum4linux - Enumerates info from Windows and Samba systems
enumiax - IAX protocol username enumerator
ethtool - display or change Ethernet device settings
ettercap-graphical - Ettercap GUI-enabled executable
ewf-tools - collection of tools for reading and writing EWF files
exiv2 - EXIF/IPTC metadata manipulation tool
exploitdb - Searchable Exploit Database archive
extundelete - utility to recover deleted files from ext3/ext4 partition
fcrackzip - password cracker for zip archives
fern-wifi-cracker - Automated wifi cracker
fierce - Domain DNS scanner
fiked - Cisco VPN attack tool
fimap - LFI and RFI exploitation tool
findmyhash - Crack hashes with online services
flasm - assembler and disassembler for Flash (SWF) bytecode
foremost - forensic program to recover lost files
fping - sends ICMP ECHO_REQUEST packets to network hosts
fragroute - Test a NIDS by attempting to evade using fragmented packets
fragrouter - IDS evasion toolkit
framework2 - Metasploit Framework 2
ftester - The Firewall Tester (FTester) is a tool designed for testing firewall filtering policies and Intrusion Detection System (IDS) capabilities.
funkload - web testing tool
galleta - An Internet Explorer cookie forensic analysis tool
gdb - GNU Debugger
ghost-phisher - GUI suite for phishing and penetration attacks
giskismet - Wireless recon visualization tool
golismero - Web application mapper
goofile - Command line filetype search
gpp-decrypt - Group Policy Preferences decrypter
grabber - Web application vulnerability scanner
guymager - Forensic imaging tool based on Qt
hackrf-tools - Hardware driver and tools for HackRF Jawbreaker
hamster-sidejack - Sidejacking tool
hash-identifier - Tool to identify hash types
hashcat - World’s fastest CPU-based password recovery tool
hashcat-utils - Set of small utilities for advanced password cracking
hexinject - Versatile packet injector and sniffer
hexorbase - Multiple database management and audit application
hotpatch - Hot patches Linux executables with .so file injection
hping3 - Active Network Smashing Tool
hydra - very fast network logon cracker
hydra-gtk - very fast network logon cracker - GTK+ based GUI
i2c-tools - heterogeneous set of I2C tools for Linux
iaxflood - VoIP flooder tool
ifenslave - configure network interfaces for parallel routing (bonding)
ifenslave-2.6 - Attach and detach slave interfaces to a bonding device
ikat - Interactive Kiosk Attack Tool
ike-scan - discover and fingerprint IKE hosts (IPsec VPN Servers)
inetsim - Software suite for simulating common internet services
intersect - Post-exploitation framework
intrace - Traceroute-like application piggybacking on existing TCP connections
inundator - Multi-threaded IDS false positive generator
inviteflood - SIP/SDP INVITE message flooding over UDP/IP
iodine - tool for tunneling IPv4 data through a DNS server
irpas - Internetwork Routing Protocol Attack Suite
isr-evilgrade - Evilgrade framework
jad - Java decompiler
javasnoop - Intercept Java applications locally
jboss-autopwn - JBoss script for obtaining remote shell access
john - active password cracking tool
johnny - GUI for John the Ripper
joomscan - OWASP Joomla Vulnerability Scanner Project
jsql - Java tool for automatic database injection
keepnote - cross-platform note-taking and organization application
keimpx - Check for valid credentials across a network over SMB
killerbee - Framwork for ZigBee exploitation
kismet - wireless sniffer and monitor - core
laudanum - Collection of injectable web files
lbd - Load balancer detector
leafpad - GTK+ based simple text editor
libcrafter - Library to generate and sniff network packets
libewf1 - library with support for Expert Witness Compression Format
libfindrtp - Library required by multiple VoIP tools
libfreefare-bin - MIFARE card manipulations binaries
libhivex-bin - utilities for reading and writing Windows Registry hives
libnfc-bin - Near Field Communication (NFC) binaries
lynis - security auditing tool for Unix based systems
macchanger - utility for manipulating the MAC address of network interfaces
magicrescue - recovers files by looking for magic bytes
magictree - Penetration tester productivity tool
maltego - Open source intelligence and forensics application
maltego-teeth - Set of offensive Maltego transforms
maskprocessor - High-performance word generator
mc - Midnight Commander - a powerful file manager
md5deep - Recursively compute hashsums or piecewise hashings
mdbtools - JET / MS Access database (MDB) tools
mdk3 - Wireless attack tool for IEEE 802.11 networks
medusa - fast, parallel, modular, login brute-forcer for network services
memdump - utility to dump memory contents to standard output
metagoofil - Tool designed for extracting metadata of public documents
metasploit - Penetration testing and exploit development tool with web-based interface
metasploit-framework - Framework for exploit development and vulnerability research
armitage - Cyber attack management for Metasploit
mfcuk - MFCUK - MiFare Classic Universal toolKit
mfoc - MIFARE Classic offline cracker
mfterm - Terminal for working with Mifare Classic 1-4k Tags
mimikatz - Uses admin rights on Windows to display passwords in plaintext
minicom - friendly menu driven serial communication program
miranda - UPNP administration tool
miredo - Teredo IPv6 tunneling through NATs
missidentify - a program to find win32 applications
mitmproxy - SSL-capable man-in-the-middle HTTP proxy
multiforcer - GPU accelerated password cracking tool
multimac - Create multiple MACs on an adapter
nasm - General-purpose x86 assembler
nbtscan - A program for scanning networks for NetBIOS name information
ncat-w32 - Netcat for the 21st century
ncrack - High-speed network authentication cracking tool
ncurses-hexedit - Edit files/disks in hex, ASCII and EBCDIC
netdiscover - active/passive network address scanner using arp requests
netmask - helps determine network masks
netsed - network packet-altering stream editor
netsniff-ng - packet sniffing beast
netwag - graphical frontend for netwox
nfspy - ID-spoofing NFS client
ngrep - grep for network traffic
nikto - web server security scanner
nipper-ng - Device security configuration review tool
nmap - The Network Mapper
ohrwurm - RTP fuzzer
ollydbg - 32-bit assembler level analysing debugger
onesixtyone - fast and simple SNMP scanner
openvas - Openvas dummy package.
ophcrack - Microsoft Windows password cracker using rainbow tables (gui)
ophcrack-cli - Microsoft Windows password cracker using rainbow tables (cmdline)
oscanner - Oracle assessment framework
p0f - Passive OS fingerprinting tool
pack - Password analysis and cracking kit
padbuster - Script for performing Padding Oracle attacks
paros - Web application proxy
pasco - An Internet Explorer cache forensic analysis tool
passing-the-hash - Patched tools to use password hashes as authentication input
patator - Multi-purpose brute-forcer
pdfid - Scans PDF files for certain PDF keywords
pdf-parser - Parses PDF files to identify fundamental elements
pdgmail - Extracts gmail artifacts from a pd dump
peepdf - PDF analysis tool
perl-cisco-copyconfig - Provides methods for manipulating Cisco devices
pev - text-based tool to analyze PE files
phrasendrescher - Passphrase cracking tool
pipal - Statistical analysis on password dumps
pjproject - A multimedia communication library for SIP
plecost - Wordpress fingerprinting tool
polenum - Extracts the password policy from a Windows system
powerfuzzer - Highly automated and fully customizable web fuzzer
powersploit - PowerShell Post-Exploitation Framework
protos-sip - SIP test suite
proxychains - proxy chains - redirect connections through proxy servers
proxystrike - Active web application proxy
proxytunnel - Create tcp tunnels trough HTTPS proxies, for using with SSH
ptunnel - Tunnel TCP connections over ICMP packets
pwnat - NAT to NAT client-server communication
pyrit - GPGPU-driven WPA/WPA2-PSK key cracker
python-impacket - Python module to easily build and dissect network protocols
python-impacket-doc - Python module to easily build and dissect network protocols
python-rfidiot - Python library to explore RFID devices
python-scapy - Packet generator/sniffer and network scanner/discovery
rainbowcrack - Rainbow table password cracker
radare2 - free and advanced command line hexadecimal editor
rake - ruby make-like utility
ratproxy - passive web application security assessment tool
rcracki-mt - Version of rcrack that supports hybrid and indexed tables
rdd - a forensic copy program
readpst - Converts Outlook PST files to mbox and others
reaver - brute force attack tool against Wifi Protected Setup PIN number
rebind - DNS rebinding tool
recon-ng - Web Reconnaissance framework written in Python
recordmydesktop - Captures audio-video data of a Linux desktop session
recoverjpeg - tool to recover JPEG images from a filesystem image
redfang - Locates non-discoverable bluetooth devices
redsocks - arbitrary TCP connection redirector to a SOCKS or HTTPS proxy server
reglookup - utility to read and query Windows NT/2000/XP registry
regripper - Windows registry forensics tool
responder - NBT-NS/LLMNR Responder
rifiuti - A MS Windows recycle bin analysis tool
rifiuti2 - A MS Windows recycle bin analysis tool
rsmangler - Wordlist mangling tool
rtpbreak - Detects, reconstructs, and analyzes RTP sessions
rtpflood - Tool to flood any RTP device
rtpinsertsound - Inserts audio into a specified stream
rtpmixsound - Mixes pre-recorded audio in real-time
safecopy - Copy utility ignoring errors
sakis3g - Tool for establishing 3G connections
samdump2 - Dump Windows 2k/NT/XP password hashes
sbd - Secure backdoor for linux and windows
scalpel - A Frugal, High Performance File Carver
scrounge-ntfs - Data recovery program for NTFS filesystems
sctpscan - SCTP network scanner for discovery and security
sendemail - lightweight, command line SMTP email client
set - Social-Engineer Toolkit
sfuzz - Black Box testing utilities
sidguesser - Guesses sids against an Oracle database
siege - HTTP regression testing and benchmarking utility
siparmyknife - SIP fuzzing tool
sipcrack - SIP login dumper/cracker
sipp - Traffic generator for the SIP protocol
sipvicious - Tools for auditing SIP based VoIP systems
skipfish - fully automated, active web application security reconnaissance tool
sleuthkit - collection of tools for forensics analysis on volume and file system data
smali - Assembler/disassembler for Android's dex format
smtp-user-enum - Username guessing tool primarily for the SMTP service.
sniffjoke - Transparent TCP connection scrambler
snmpcheck - SNMP service enumeration tool
socat - multipurpose relay for bidirectional data transfer
spectools - Utilities for using the Wi-Spy USB spectrum analyzer hardware
spidermonkey-bin - standalone JavaScript/ECMAScript (ECMA-262) interpreter
spike - Network protocol fuzzer
spooftooph - Automates spoofing or cloning Bluetooth devices
sqldict - Dictionary attack tool for SQL Server
sqlitebrowser - GUI editor for SQLite databases
sqlmap - automatic SQL injection tool
sqlninja - SQL server injection and takeover tool
sqlsus - MySQL injection tool
sslcaudit - Tests SSL/TLS clients susceptibility to MITM attacks
ssldump - An SSLv3/TLS network protocol analyzer
sslh - ssl/ssh multiplexer
sslscan - Fast SSL scanner
sslsniff - SSL/TLS man-in-the-middle attack tool
sslstrip - SSL/TLS man-in-the-middle attack tool
sslsplit - Transparent and scalable SSL/TLS interception
sslyze - Fast and full-featured SSL scanner
statsprocessor - High-performance word-generator
stunnel4 - Universal SSL tunnel for network daemons
suckless-tools - simple commands for minimalistic window managers
sucrack - multithreaded su bruteforcer
swaks - SMTP command-line test tool
t50 - Multi-protocol packet injector tool
tcpflow - TCP flow recorder
tcpick - TCP stream sniffer and connection tracker
tcpreplay - Tool to replay saved tcpdump files at arbitrary speeds
termineter - Smart meter testing framework
tftpd32 - Open source ipv6-ready TFTP server for Windows
thc-ipv6 - The Hacker Choice's IPv6 Attack Toolkit
thc-pptp-bruter - THC PPTP Brute Force
thc-ssl-dos - Stress tester for the SSL handshake
theharvester - theHarvester is a tool for gathering e-mail accounts and subdomain names from public sources.
tlssled - Evaluates the security of a target SSL/TLS (HTTPS) server
tnscmd10g - Tool to prod the oracle tnslsnr process
truecrack - Bruteforce password cracker for TrueCrypt volumes.
truecrypt - Cross-platform on-the-fly encryption
twofi - Twitter words of interest
u3-pwn - Injects executables onto U3 USB devices
ua-tester - User agent string tester
udptunnel - tunnel UDP packets over a TCP connection
unetbootin - installer of Linux/BSD distributions to a partition or USB drive
uniscan - LFI, RFI, and RCE vulnerability scanner
unicornscan - Userland distributed TCP/IP stack
unix-privesc-check - Script to check for simple privilege escalation vectors
urlcrazy - Domain typo generator
vboot-kernel-utils - Chrome OS verified boot utils required to sign kernels
vboot-utils - Chrome OS verified boot utils
vega - Platform to test the security of web applications
vim-gtk - Vi IMproved - enhanced vi editor - with GTK2 GUI
vinetto - A forensics tool to examine Thumbs.db files
vlan - user mode programs to enable VLANs on your ethernet devices
voiphopper - Runs a VLAN hop security test
volafox - Memory analyzer for Mac OS X & BSD
volatility - advanced memory forensics framework
vpnc - Cisco-compatible VPN client
w3af - framework to find and exploit web application vulnerabilities
waffit - WAF auditing tool
wapiti - web application vulnerability scanner
wce - Windows Credentials Editor
webacoo - Web backdoor cookie script kit
webscarab - Web application review tool
webshag - Multi-threaded web server audit tool
webshells - Collection of webshells
webslayer - Web application bruteforcer
websploit - Web exploitation framework
weevely - Stealth tiny web shell
winexe - Remote Windows-command executor
wfuzz - Web application bruteforcer
whatweb - Next generation web scanner
wifi-honey - Wi-Fi honeypot
wifitap - WiFi injection via a tun/tap device
wifite - Python script to automate wireless auditing using aircrack-ng tools
windows-binaries - Various pentesting Windows binaries
wireshark - network traffic analyzer - GTK+ version
wol-e - Wake on LAN Explorer
wordlists - Contains the rockyou wordlist
wpscan - Black box WordPress vulnerability scanner
wvdial - intelligent Point-to-Point Protocol dialer
xpdf - Portable Document Format (PDF) reader
xprobe - Remote OS identification
xspy - X server sniffer
xsser - XSS testing framework
xtightvncviewer - virtual network computing client software for X
yersinia - Network vulnerabilities check software
zaproxy - Testing tool for finding vulnerabilities in web applications.
zenmap - The Network Mapper Front End
zim - graphical text editor based on wiki technologies