Hacking Tools Archives | Insecure Lab

theHarvester – Information Gathering Tool

27-January-20122-February-2012Prasanna Sherekar

theHarvester is a tool for gathering e-mail accounts, user names and hostnames/subdomains from different public sources like search engines and PGP key servers. This tools is intended to help Penetration testers in the early stages of the project It’s a really simple tool, but very effective. The sources supported are: – Google – emails,subdomains/hostnames – […]

Patator – Multi-Purpose Brute Forcing Tool

20-January-201222-January-2012Prasanna Sherekar

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage. Currently it supports the following modules: ftp_login : Brute-force FTP ssh_login : Brute-force SSH telnet_login : Brute-force Telnet smtp_login : Brute-force SMTP smtp_vrfy : Enumerate valid users using the SMTP VRFY command smtp_rcpt : Enumerate valid users using the SMTP RCPT TO […]

Fully Automated MySQL 5 Boolean Enumeration Script

3-January-201215-January-2012Prasanna Sherekar

This script uses blind SQL injection and boolean enumeration to perform INFORMATION_SCHEMA Mapping. Syntax: perl mysql5enum.pl -h [hostname] -u [url] [-q [query]] Example: perl mysql5enum.pl -h www.target.tld -u http://www.target.tld/vuln.ext?input=24 -q “select system_user()” Description: – By default, this script will first determine username, version and database name before enumerating the information_schema information. – When the -q […]

Reaver – WiFi Protected Setup Brute Force Attack Tool

29-December-20118-January-2012Prasanna Sherekar

Reaver implements a brute force attack against Wifi Protected Setup (WPS) registrar PINs in order to recover WPA/WPA2 passphrases, as described in http://sviehb.files.wordpress.com/2011/12/viehboeck_wps.pdf. Reaver has been designed to be a robust and practical attack against WPS, and has been tested against a wide variety of access points and WPS implementations. On average Reaver will recover […]

DeSopa – DNS Evasion to Stop Oppressive Policy in America

20-December-201125-December-2011Prasanna Sherekar

Powerful special interests are attempting to force legislation for tighter control of the Internet, because they believe such legislation will preserve their power. The bill they have sponsored, SOPA (Stop Online Piracy Act), not only has severe consequences for the Internet, it doesn’t even achieve their objectives. The internet creates market efficiencies that forces industries […]

BozoCrack – MD5 Password Hash Cracker

30-November-20113-December-2011Prasanna Sherekar

BozoCrack is a depressingly effective MD5 password hash cracker with almost zero CPU/GPU load. Instead of rainbow tables, dictionaries, or brute force, BozoCrack simply finds the plaintext password. Specifically, it googles the MD5 hash and hopes the plaintext appears somewhere on the first page of results. It works way better than it ever should. How? […]