Skip to main content

My Life as Information security engineer Chapter 1: Tools

 



Hi folks, here I am going to share the tools list that I am using in my daily life cycle.

NMAP


 Nmap (“Network Mapper”) is a free and open-source (license) utility for network discovery and security auditing.

Basically, I will use it to discover the open ports and closed ports where I did Port Mapping in firewalls.

We can use this in the local network as well as in the WAN network.

Also with help of the NSE script, we do multiple things like vulnerability check, exploitation, etc.,

Ref: http://www.piratesshield.com/2017/11/nmap-network-mapper-securtiy-scanner.html


CURL and WGET

curl is a tool to transfer data from or to a server, using one of the supported protocols (HTTP, HTTPS, FTP, FTPS, SCP, SFTP, TFTP, DICT, TELNET, LDAP or FILE). Normally using this tool to analyze the website headers when my web security device blocking some dynamic content websites and to create the Application signature in IPS.

Wget using to download files directly instead of opening and surfing the browser.


AXEL

One of my favorite tool in the world, when I feel my download is very slow time I use AXEL to grab all the bandwidth of my office to download a large size file in some minutes.


APACHE GUACAMOLE

Apache-guacamole is an open-source  Remote Desktop software.

very much helpful to take multiple RDP, SSH, and VNC sessions at a time from my browser page.

Where we can perform multitasking without increasing CPU usage with a single app.

Ref: https://guacamole.apache.org/

Other Remote software I use Tail Scale, Boring Proxy


HTTP-PING and PPING

HTTP-Ping is used to check whether the HTTP port is alive or not through the command line also used to check latency and TTL.

But my hero is PPING. But using this utility you can ping any TCP /  UDP ports like ICMP ping.

Mostly I used to check whether the server port was allowed in the firewall or not and try to generate continuous traffic during firewall troubleshooting calls.


PEN-TEST TOOLS

The website called https://pentest-tools.com using to scan port, directory traversal, Sub-domain, and other information gathering and footprinting activities for my bug bounty programs.

It is a very easy tool where we can perform penetration testing Online.


IP SCANNERS

On the internet multiple IP scanners available but I am always using tools are Advanced IP Scanner and NMAP. I am using these tools when the time of cyber attacks like DDoS, Protocol-based attacks like EternalBlue. Very easy to find the Victim PC.

Other than I am using Metasploit, Ngrok, Nessus, Wireshark, VM-player, Fiddler OpenVAS in my day-to-day life as Information Security Engineer for a different purpose.

Are you using any different tools, let me share will discuss making some noise.




PIRATESSHIELD

Comments

Post a Comment

Popular posts from this blog

KARMA - Search for leaked Emails and Passwords

Hi Everyone, In this article we going to introduce the tool is KARMA.Its used to collect pwned Email address and passwords from pwndb. The tool is written in python3. So, you must need Python3 inside your machine . INSTALL sudo apt install tor python3 python3-pip git clone https :// github . com / decoxviii / karma . git ; cd karma sudo -H pip3 install -r requirements.txt python3 bin/karma.py --help TEST All the tests were done in  Debian/Ubuntu . Search emails with the password:  123456789 python3 bin/karma.py search '123456789' --password -o test1 Search emails with the local-part:  johndoe python3 bin/karma.py search 'johndoe' --local-part -o test2 Search emails with the domain:  hotmail . com python3 bin/karma.py search ' hotmail . com ' --domain -o test3 Search email password:  johndoe@unknown.com python3 bin/karma.py target 'johndoe@unknown.com' -o test4 DEMO VIDEO
Post a Comment
Read more