Search the Community

Showing results for tags 'scanner'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • General doubts | News
    • General doubts
    • News
  • Hacking | Remote Administration | Bugs & Exploits
    • Hacking
    • Remote Administration
    • Bugs & Exploits
  • Programming | Web | SEO | Prefabricated applications
    • General Programming
    • Web Programming
    • Prefabricated Applications
    • SEO
  • Cracking Zone
    • Cracking Accounts
    • Reverse Engineering
  • Security & Anonymity
    • Security
    • Wireless Security
    • Web Security
    • Anonymity
  • Operating Systems | Hardware | Programs
    • Operating systems
    • Hardware
    • PC programs
    • iOS
    • Android
    • Windows Phone
  • Graphic Design
    • Graphic Design
  • vBCms Comments
  • live stream tv
    • live stream tv
  • Marketplace
    • Sell
    • Services
    • Request
  • Premium Accounts
    • Accounts
  • Modders Section
    • Source Codes
    • Manuals | Videos
    • Tools
    • Others
  • PRIV8-Section
    • Exploits
    • Accounts|Dumps
    • Crypter|Binder|Bots
    • Tutorials|Videos
    • Cracked Tools
    • Make Money
    • More Tools
    • Databeses
    • Ebooks
  • Cracking Zone PRIV8
    • Cracking Accounts
    • Reverse Engineering
    • Cracker Preview Area
  • Carding Zone PRIV8
    • Carding
    • Phishing
    • Defacing
    • Doxing
    • Special User Premium Preview Area

Blogs

There are no results to display.

There are no results to display.


Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


Location


Interests


Occupation


TeamViewer


Tox

Found 50 results

  1. WPScan is a black box WordPress vulnerability scanner. Changelog v3.6.3 Fixed unhandled error when performing password attack against wp-login.php and a 302 response only contained one cookie – Ref #1378 [HIDE][Hidden Content]]
  2. Sn1per Community Edition is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. Sn1per Professional is Xero Security’s premium reporting add-on for Professional Penetration Testers, Bug Bounty Researchers and Corporate Security teams to manage large environments and pentest scopes. FEATURES: Automatically collects basic recon (ie. whois, ping, DNS, etc.) Automatically launches Google hacking queries against a target domain Automatically enumerates open ports via Nmap port scanning Automatically brute forces sub-domains gathers DNS info and checks for zone transfers Automatically checks for sub-domain hijacking Automatically runs targeted Nmap scripts against open ports Automatically runs targeted Metasploit scan and exploit modules Automatically scans all web applications for common vulnerabilities Automatically brute forces ALL open services Automatically test for anonymous FTP access Automatically runs WPScan, Arachni and Nikto for all web services Automatically enumerates NFS shares Automatically test for anonymous LDAP access Automatically enumerate SSL/TLS cyphers, protocols and vulnerabilities Automatically enumerate SNMP community strings, services and users Automatically list SMB users and shares, check for NULL sessions and exploit MS08-067 Automatically exploit vulnerable JBoss, Java RMI and Tomcat servers Automatically tests for open X11 servers Auto-pwn added for Metasploitable, ShellShock, MS08-067, Default Tomcat Creds Performs high-level enumeration of multiple hosts and subnets Automatically integrates with Metasploit Pro, MSFConsole and Zenmap for reporting Automatically gathers screenshots of all websites Create individual workspaces to store all scan output Changelog v7.2 – Added experimental OpenVAS API integration v7.2 – Improved Burpsuite 2.x API integration with vuln reporting v7.2 – Added hunter.io API integration to recon mode scans v7.2 – Added Cisco IKE Key Disclosure MSF exploit v7.2 – Added JBoss MSF vuln scanner module v7.2 – Added Apache CouchDB RCE MSF exploit v7.2 – Added IBM Tivoli Endpoint Manager POST Query Buffer Overflow exploit v7.2 – Added Java RMI MSF scanner v7.2 – New scan mode “vulnscan” v7.2 – New scan mode “massportscan” v7.2 – New scan mode “massweb” v7.2 – New scan mode “masswebscan” v7.2 – New scan mode “massvulnscan” v7.2 – Added additional Slack API notification settings v7.2 – Improved NMap port detection and scan modes v7.2 – Fixed issue with Censys API being enabled by default v7.2 – Fixed verbose errors in subjack/subover tools v7.2 – Fixed issue with NMap http scripts not working [HIDE][Hidden Content]]
  3. Advanced Search / Dork / Mass Exploitation Scanner Description Search engine Google / Bing / Ask / Yandex / Sogou ● Mass Dork Search ● Multiple instant scans. ● Mass Exploitation ● Use proxy. ● Random user agent. ● Random engine. ● Extern commands execution. ● XSS / SQLI / LFI / AFD scanner. ● Filter wordpress and Joomla sites on the server. ● Find Admin page. ● Decode / Encode Base64 / MD5 ● Ports scan. ● Extract IPs ● Extract E-mails. ● Auto-detect errors. ● Auto-detect Cms. ● Post data. ● Auto sequence repeater. ● Validation. ● Post and Get method ● And more… CHANGES: v17.0.0 – Engine fix. – Some scans fix. [HIDE][Hidden Content]]
  4. itsMe

    ATSCAN SCANNER V17.0.0

    Advanced Search / Dork / Mass Exploitation Scanner Description: ● Engines: [Google apis cache] Bing Ask Yandex Sogou Exalead Shodan ● Mass Dork Search ● Multiple instant scans. ● Mass Exploitation ● Use proxy. ● Random user agent. ● Random engine. ● Mass Extern commands execution. ● Exploits and issues search. ● XSS / SQLI / LFI / AFD scanner. ● Filter wordpress & Joomla sites. ● Wordpress theme and plugin detection. ● Find Admin page. ● Decode / Encode Base64 / MD5 ● Ports scan. ● Collect IPs ● Collect E-mails. ● Auto detect errors. ● Auto detect forms. ● Auto detect Cms. ● Post data. ● Auto sequence repeater. ● Validation. ● Post and Get method ● IP Localisation ● Issues and Exploit search ● Interactive and Normal interface. ● And more... [HIDE][Hidden Content]]
  5. [HIDE][Hidden Content]] WARNING : 1. This application uses lot of CPU. ( in high threads ) WHAT IS THIS : 1. This application is for scanning ip ranges in spacified port with Accuracy system to get online ips for other works. LEARN : 1. Just you need to place your ip ranges in the textbox OR if you want to scan countries ips you can use IP Range Loader Section. 2. Results will save in -> {ApplicationDirectory}/result.txt SECTION LEARNING : 1. First section is about saving settings and method. a. With Port : Saves with this format : 192.168.1.1:8080. b. Without Port : Saves with this format : 192.168.1.1. c. Append to file : Application does NOT clear result file by starting progress. d. Clear and add : Application clears result file by starting progress. 2. Second section is hardest section to explain ... a. Accuracy : Sets accuracy of scan (between 20 and 100), 100 is best and without any skip, 20 is worst b. Accuracy Index : Sets index of accuracy (between 100 and 100000), so now we have question : -- WHAT IS Accuracy : -- Every where some ranges is spacified to some ports for example : This range -> (104.16.0.0-104.31.255.255) is for cloudflare, this site is a hosting, and for this range port 3389 (for VPS) is not working and you can't get lots of online IPs. -- So by this tool you can skip ranges thats NOT for your work. set accuracy to 100 while you do NOT need this tool. ( less Accuracy = skip more ) -- WHAT IS Accuracy Index : -- Accuracy Index ??? For example : when Accuracy Index is 1000 means when application scanned 1000 ips from current range, and we did NOT have any good or we have less goods ( It depends on Accuracy value ), progress wil skip the range :)).( DO NOT Change value if it is NOT needed. ) c. Port : Sets port (between 0 and 65535) d. Threads : Sets multithreading max thread value (between 1 and 5000), NOTE : More threads need stronger CPU, Application decrease Active Threads automatically when CPU Percentage is 100%. e. Timeout : Sets value of timeout in miliseconds, (between 100 and 10000), 5000 = 5 seconds 3. Third section is all application progress status and live values . Thats very simple SOURCES : 1. [Hidden Content] | IP Range Loader service source 2. IPAddressRange Nuget Package
  6. Sn1per Community Edition is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. Sn1per Professional is Xero Security’s premium reporting add-on for Professional Penetration Testers, Bug Bounty Researchers and Corporate Security teams to manage large environments and pentest scopes. For more information regarding Sn1per Professional. FEATURES: Automatically collects basic recon (ie. whois, ping, DNS, etc.) Automatically launches Google hacking queries against a target domain Automatically enumerates open ports via Nmap port scanning Automatically brute forces sub-domains gathers DNS info and checks for zone transfers Automatically checks for sub-domain hijacking Automatically runs targeted Nmap scripts against open ports Automatically runs targeted Metasploit scan and exploit modules Automatically scans all web applications for common vulnerabilities Automatically brute forces ALL open services Automatically test for anonymous FTP access Automatically runs WPScan, Arachni and Nikto for all web services Automatically enumerates NFS shares Automatically test for anonymous LDAP access Automatically enumerate SSL/TLS cyphers, protocols and vulnerabilities Automatically enumerate SNMP community strings, services and users Automatically list SMB users and shares, check for NULL sessions and exploit MS08-067 Automatically exploit vulnerable JBoss, Java RMI and Tomcat servers Automatically tests for open X11 servers Auto-pwn added for Metasploitable, ShellShock, MS08-067, Default Tomcat Creds Performs high-level enumeration of multiple hosts and subnets Automatically integrates with Metasploit Pro, MSFConsole and Zenmap for reporting Automatically gathers screenshots of all websites Create individual workspaces to store all scan output Changelog v7.1 – Added KeepBlue CVE-2019-0708 MSF scanner v7.1 – Added automatic workspace generation for single target scans v7.1 – Added new slack.sh API integration script v7.1 – Added differential Slack notifications for new domains, new URL’s and various scan outputs v7.1 – Added vulners and vulscan NMap scripts v7.1 – Added installer and support for Debian, Parrot and Ubuntu OS (install_debian.sh) (CC. @imhaxormad) v7.1 – Fixed various issues with the DockerFile v7.1 – Fixed/added Metasploit LHOST/LPORT values to all exploits based on sniper.conf settings v7.1 – Fixed issue with Amass/Golang 1.11 not installing correctly [HIDE][Hidden Content]]
  7. WPScan is a black box WordPress vulnerability scanner. Changelog v3.5.5 Secunia Reference URL updated (via CMSScanner 0.5.3) Fixes an issue with the Password Attack via XMLRPC, where the Interface could be found as active when it was disabled – #1365 [HIDE][Hidden Content]]
  8. vulnx v1.7 - CMS-Detector and Vulnerability Scanner & exec automatic exploit process Vulnx is An Intelligent Bot Auto Shell Injector that detects vulnerabilities in multiple types of Cms, fast cms detection, information gathering and vulnerabilities Scanning of the target like subdomains, IP addresses, country, org, timezone, region, and more … Instead of injecting each and every shell manually like all the other tools do, VulnX analyses the target website checking the presence of vulnerability if so the shell will be Injected.searching urls with dorks Tool. Features Detect cms (wordpress, joomla, prestashop, drupal, opencart, magento, lokomedia) Target informations gatherings Target Subdomains gathering Multi-threading on demand Checks for vulnerabilities Auto shell injector Exploit dork searcher Ports Scan High Level Dns-Servers Dump Input multiple targets to scan. Dorks Listing by Name& by ExploitName. Export multiple targets from Dorks into a log file. Changelog v1.7 Update Dockerfile [HIDE][Hidden Content]]
  9. R@zz@R-LightS

    scanner pyRangeScanner + vuln checker

    pyRangeScanner + vuln checker With this Tool you can scan a range for (multiple) open port(s) It can handle a single range or a file with multiple ranges and it supports threads. :: HELP :: .py -r range_start range_end ports threads [timeout] .py -rf range_file ports threads [timeout] ports = 80 or for multiple ports 80,8080,81... Default Timeout = %s :: EXAMPLE :: .py -r 127.0.0.0 127.0.1.0 80,8080,22 20 10 .py -rf xyz.txt 80,8080,22 20 10 : EXAMPLE RANGE FILE :: 127.0.0.0 127.0.1.0 125.1.1.0 125.2.0.0 ... How To: python 1.portscannen.py -rf range.txt 80,81,82,83,90,91,92,93,8080,8081,8082,8083,8090,8091,8092,8093,8180,8181,8182,8183,8190,8191,8192,8193,8280,8281,8282,8283,8380,8381,8382,8383,9090,9091,9092,9093,9190,9191,9192,9193 500 10 python 2.checken.py result.txt 500 Checken... die result.txt wird jetzt auf "jboos, jenkins, msd, pma, sqlite, tomcat, webdav, joomla, drupal, magento, prestashop, wordpress" gecheckt und er spuckt die results als .txt raus :: GREETS :: Greets fly out to: Team DDR, Team WTC, BWC, Inferno-Load, B2R, Datenreiter, Burnz, Gil, LeChuck, R@zz@R-LightS, Bebop, Fr0sty, Gnu, Airy, FaKe, Generation, Shizuko, leety and all i forget! from stuff and hacker board - www.FXP-Terminal.info Download [Hidden Content]
  10. This is a quick-and-dirty scanner for the CVE-2019-0708 vulnerability in Microsoft Remote Desktop. Right now, there are about 900,000 machines on the public Internet vulnerable to this vulnerability, so many are to expect a worm soon like WannaCry and notPetya. Therefore, scan your networks and patch (or at least, enable NLA) on vulnerable systems. This is a command-line tool. You can download the source and compile it yourself, or you can download one of the pre-compiled binaries for Windows or macOS from the link above. [HIDE][Hidden Content]]
  11. Konan is an advanced open source tool designed to brute force directories and files names on web/application servers. Support Platforms Linux Windows MacOSX [HIDE][Hidden Content]]
  12. Yaazhini is a free vulnerability scanner for android APK and API. It is a user-friendly tool that you can easily scan any APK and API of android application and fin the vulnerabilities. Yaazhini includes vulnerability scan of API, the vulnerability of APK and reporting section to generate a report. System Requirements Operating Systems Mac OSX(64bit), Windows(64bit & 32bit) RAM Minimum Usage 4GB of available memory. 16GB required for larger Android Apps Storage 10GB of available disk space Dependancy Software Java 1.8+ Advantages of Yaazhini Scan Android APK by just one click Scan Android Application REST API (emulator, device) Generate report Free to use Easy to use How to use Yaazhini Android Application APK Scanner [HIDE][Hidden Content]]
  13. RecScanSec made for reconnaisance Scanner and information gathering with an emphasis on simplicity. It will do everything from. Features Information Security Headers WAF Analyzer Information Disclosure Banner Grabbing Url Crawl HTML Form Detector Port Scanner Get SSL Information Subdomain Enumeration Host Mapper Url Fuzzing & sensitive dir all results scanned will be saved in the output directory Requirements asyncio click requests colorlog bs4 tldextract [HIDE][Hidden Content]]
  14. Evolution: It is quite a fuss for a pentester to perform binge-tool-scanning (running security scanning tools one after the other) sans automation. Unless you are a pro at automating stuff, it is a herculean task to perform binge-scan for each and every engagement. The ultimate goal of this program is to solve this problem through automation; viz. running multiple scanning tools to discover vulnerabilities, effectively judge false-positives, collectively correlate results and saves precious time; all these under one roof. Enter RapidScan. Features one-step installation. executes a multitude of security scanning tools, does other custom coded checks and prints the results spontaneously. some of the tools include nmap, dnsrecon, wafw00f, uniscan, sslyze, fierce, lbd, theharvester, dnswalk, golismero etc executes under one entity. saves a lot of time, indeed a lot time!. checks for same vulnerabilities with multiple tools to help you zero-in on false positives effectively. legends to help you understand which tests may take longer time, so you can Ctrl+C to skip if needed. association with OWASP Top 10 2017 on the list of vulnerabilities discovered. (under development) critical, high, medium, low and informational classification of vulnerabilities. vulnerability definitions guides you what the vulnerability actually is and the threat it can pose. (under development) remediations tells you how to plug/fix the found vulnerability. (under development) executive summary gives you an overall context of the scan performed with critical, high, low and informational issues discovered. (under development) artificial intelligence to deploy tools automatically depending upon the issues found. for eg; automates the launch of wpscan and plecost tools when a wordpress installation is found. (under development) detailed comprehensive report in a portable document format (*.pdf) with complete details of the scans and tools used. (under development) FYI: program is still under development, works and currently supports 80 vulnerability tests. parallel processing is not yet implemented, may be coded as more tests gets introduced. Vulnerability Checks DNS/HTTP Load Balancers & Web Application Firewalls. Checks for Joomla, WordPress and Drupal SSL related Vulnerabilities (HEARTBLEED, FREAK, POODLE, CCS Injection, LOGJAM, OCSP Stapling). Commonly Opened Ports. DNS Zone Transfers using multiple tools (Fierce, DNSWalk, DNSRecon, DNSEnum). Sub-Domains Brute Forcing. Open Directory/File Brute Forcing. Shallow XSS, SQLi and BSQLi Banners. Slow-Loris DoS Attack, LFI (Local File Inclusion), RFI (Remote File Inclusion) & RCE (Remote Code Execution). & more coming up... Requirements Python 2.7 Kali OS (Preferred, as it is shipped with almost all the tools) For other OS flavours, working on a docker support. Hang on. [Hidden Content]
  15. About WhatWeb WhatWeb identifies websites. Its goal is to answer the question, "What is that Website?". WhatWeb recognises web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices. WhatWeb has over 1800 plugins, each to recognise something different. WhatWeb also identifies version numbers, email addresses, account IDs, web framework modules, SQL errors, and more. WhatWeb can be stealthy and fast, or thorough but slow. WhatWeb supports an aggression level to control the trade off between speed and reliability. When you visit a website in your browser, the transaction includes many hints of what web technologies are powering that website. Sometimes a single webpage visit contains enough information to identify a website but when it does not, WhatWeb can interrogate the website further. The default level of aggression, called 'stealthy', is the fastest and requires only one HTTP request of a website. This is suitable for scanning public websites. More aggressive modes were developed for use in penetration tests. Most WhatWeb plugins are thorough and recognise a range of cues from subtle to obvious. For example, most WordPress websites can be identified by the meta HTML tag, e.g. '', but a minority of WordPress websites remove this identifying tag but this does not thwart WhatWeb. The WordPress WhatWeb plugin has over 15 tests, which include checking the favicon, default installation files, login pages, and checking for "/wp-content/" within relative links. Features Over 1800 plugins Control the trade off between speed/stealth and reliability Performance tuning. Control how many websites to scan concurrently. Multiple log formats: Brief (greppable), Verbose (human readable), XML, JSON, MagicTree, RubyObject, MongoDB, ElasticSearch, SQL. Proxy support including TOR Custom HTTP headers Basic HTTP authentication Control over webpage redirection IP address ranges Fuzzy matching Result certainty awareness Custom plugins defined on the command line IDN (International Domain Name) support [HIDE][Hidden Content]]
  16. Level23HackTool

    Mega Bot Scanner & Auto Exploiter

    [Hidden Content]
  17. OnePlus 7 Pro Fingerprint Scanner Hacked In a Minutes Using a Fake Fingerprint [Hidden Content]
  18. Versionscan - A PHP Version Scanner For Reporting Possible Vulnerabilities Versionscan is a tool for evaluating your currently installed PHP version and checking it against known CVEs and the versions they were fixed in to report back potential issues. PLEASE NOTE: Work is still in progress to adapt the tool to linux distributions that backport security fixes. As of right now, this only reports back for the straight up version reported. [HIDE][Hidden Content]]
  19. Powerfull Simple XSS Scanner made with python 3.7 [HIDE][Hidden Content]] Roadmap v0.3B: Added custom options ( --proxy, --user-agent etc... ) v0.3B Patch: Added support for ( form method GET ) v0.4B: Improved Error handling Now Multiple parameters for GET method is Supported
  20. Speed SMTP Scanner is a fast SMTP scanner that scans a specified range of IP addresses and looks for SMTP, which allows you to send email without authorization. ]
  21. Web Crawler, Scanner, and Analyzer Framework (Shell-Script based) Bashter is a tool for scanning a Web-based Application. Bashter is very suitable for doing Bug Bounty or Penentration Testing. It is designed like a framework so you can easily add a script for detect vulnerability. [HIDE][Hidden Content]]
  22. ScanQLi is a simple SQL injection scanner with somes additionals features. This tool can't exploit the SQLi, it just detect them. Tested on Debian 9 Features Classic Blind Time based GBK (soon) Recursive scan (follow all hrefs of the scanned web site) Cookies integration Adjustable wait delay between requests Ignore given URLs [HIDE][Hidden Content]]
  23. OAMbuster is a multi-threaded exploit for CVE-2018-2879. View the full article
  24. zeebsploit is a tool for hacking searching for web information and scanning vulnerabilities of a web [HIDE][Hidden Content]]
  25. Level23HackTool

    IIS Scanner with Auto Uploading Shell

    [Hidden Content]