Versus71 Posted February 2, 2012 Share Posted February 2, 2012 Sandcat Browser - Pen-Test Oriented Web Browser This is the hidden content, please Sign In or Sign Up The fastest web browser combined with the fastest scripting language packed with features for pen-testers. Sandcat Browser is a freeware portable pen-test oriented multi-tabbed web browser with extensions support developed by the Syhunt team, the same creators of the This is the hidden content, please Sign In or Sign Up web application security scanner. The Sandcat Browser is built on top of This is the hidden content, please Sign In or Sign Up , the same engine that powers the Google Chrome browser, and uses the This is the hidden content, please Sign In or Sign Up language to provide extensions and scripting support. This first Sandcat Browser release includes the following pen-test oriented features: Live HTTP Headers Request Editor extension Fuzzer extension with multiple modes and support for filters JavaScript Executor extension -- allows you to load and run external JavaScript files Lua Executor extension -- allows you to load and run external Lua scripts This is the hidden content, please Sign In or Sign Up HTTP Brute Force, CGI Scanner scripts and more Limitations In comparison with the full-featured Sandcat Browser application included with Sandcat Pro Hybrid, this Sandcat Browser edition doesn't come with: the This is the hidden content, please Sign In or Sign Up Scanner integration -- allows you to perform manual crawling Spider cache integration Request replay capabilities CatSense™ -- which offers instant page analysis information Site: This is the hidden content, please Sign In or Sign Up Hcon Security Testing Framework (HconSTF) v0.4 [Fire Base] - codename 'Freedom' This is the hidden content, please Sign In or Sign Up As its always has observed "Anything can be a weapon, If you use it right". Hcon believes the same, so i experimented and by taking advantage of all the web browser capabilities and using it as a base for a security testing framework.I created the framework named 'Hcon Security Testing Framework' in short 'HconSTF'. Now after its first public release of fire base HconSTF version 0.3. We now present the new and much improved and tested HconSTF v0.4 codenamed 'Freedom'. Working 6 months on this version we have made it in a true way a portable penetration testing environment, capable of assisting in all tasks of any penetration testing or vulnerability assessments. This version is a first step towards our roadmap of making HconSTF into a hacker's ultimate assistant. What it can do ? : Most of the part of HconSTF is semi-automated but you still need your brain to work it out. It can be use in all kind of security testing stages, it has tools for conducting tasks like: Information gathering Enumeration & Reconnaissance Vulnerability assessment Exploitation Privilege escalation Reporting Also can be used for web debugging Is it useful for me ? : HconSTF is very flexible and good enough for any: IT Security Professionals Web Developers IT students Or any one interested in IT security Categories of tools : Information gathering / Analysis Editors / Debuggers Exploitation / Auditing Anonymity Passwords Cryptography Database Scripting / Automation Network Utilities Reporting Site: This is the hidden content, please Sign In or Sign Up Hcon Security Testing Framework (HconSTF) [Aqua base] This is the hidden content, please Sign In or Sign Up Introduction : After the first demo on my Hfox in a presentation , many of them asked about Chromium based framework for pentesting / Ethical Hacking. So after 3 months of work & research and some input from AJ ,i developed this tool in the arsenal of Hcon's tools. Specification : Based on Chromium Source (iron build) version 14 More secure and Tracking free from Google & Stable then other Chromium based builds Over 100 tools integration with very easy use interface Tested and heavily modified tools suggestions contributed by professional pentesters , web developers , Security researchers Free and open source Totally Portable (no need to install) , you can carry it around in your usb , memory card etc. Runs on all windows including windows - XP , VISTA , 7 Site: This is the hidden content, please Sign In or Sign Up FireCAT This is the hidden content, please Sign In or Sign Up FireCAT (Firefox Catalog of Auditing exTensions) is a mindmap collection of the most efficient and useful Firefox extensions oriented application security auditing and assessment. FireCAT is not a replacement of other security utilities and software as well as fuzzers, proxies and application vulnerabilities scanners. Extensions add new functionality to Mozilla applications such as Firefox, SeaMonkey and Thunderbird. They can add anything from a toolbar button to a completely new feature. They allow the application to be customized to fit the personal needs of each user if they need additional features, while keeping the applications small to download. (Mozilla) This is the hidden content, please Sign In or Sign Up Site: This is the hidden content, please Sign In or Sign Up KromCAT This is the hidden content, please Sign In or Sign Up KromCAT (Google Chrome Catalog of Auditing exTensions) is a mindmap collection of the most efficient and useful Chrome extensions oriented application security auditing and assessment. KromCAT is not a replacement of other security utilities and software as well as fuzzers, proxies and application vulnerabilities scanners. This is the hidden content, please Sign In or Sign Up Site: This is the hidden content, please Sign In or Sign Up OWASP Mantra Security Framework This is the hidden content, please Sign In or Sign Up Link: This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
sQuo Posted February 3, 2012 Share Posted February 3, 2012 nice collection, txns versus Link to comment Share on other sites More sharing options...
Versus71 Posted March 10, 2012 Author Share Posted March 10, 2012 Firefox Portable WEBTOOLS This is the hidden content, please Sign In or Sign Up This is a Portable version of Mozilla Firefox with several add-ons that are useful for Web Application Security. The purpose of this package is to have the best available addons to manually test XSS, SQL, siXSS, CSRF, Trace XSS, RFI, LFI, etc. Download: This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Versus71 Posted May 20, 2012 Author Share Posted May 20, 2012 Browzar This is the hidden content, please Sign In or Sign Up This is the hidden content, please Sign In or Sign Up Doesn't save Cookies, History, Temp files, Passwords, Cache Secure delete Great for Banking and Cloud applications Automatically cleans up when you've finished This is the hidden content, please Sign In or Sign Up Takes seconds to download No installation No registration One of the smallest, fastest browsers in the world Just download and go Download: This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Recommended Posts