1. Nessus:<\/h3>\n\n- Uses:<\/strong> Nessus is a complete vulnerability scanner used to become aware of and investigate vulnerabilities throughout networks, systems, and packages.<\/li>\n
- Details:<\/strong> Nessus offers a large vulnerability knowledge base, normal updates, and in-intensity reports.<\/li>\n
- Features:<\/strong> It supports each faraway and neighborhood vulnerability scanning, compliance auditing, and remediation steerage.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) nessus -q scan.xml –<\/strong> Runs Nessus in quiet mode and saves the scan results to a file named “scan.xml”.<\/p>\n2. OpenVAS:<\/h3>\n\n- Uses:<\/strong> OpenVAS is an open-source vulnerability scanner that detects and assesses safety vulnerabilities in network infrastructure.<\/li>\n
- Details:<\/strong> OpenVAS gives substantial vulnerability scanning capabilities at the side of an internet-based interface for the recording era.<\/li>\n
- Features:<\/strong> It gives deep scanning options, comprehensive vulnerability exams, and integration with other protection gear.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) openvas-start –<\/strong> Starts the OpenVAS vulnerability scanning service.
\nb) openvas-stop –<\/strong> Stops the OpenVAS vulnerability scanning service.
\nc) openvasmd -p –<\/strong> Generates a PDF report of the scan results.<\/p>\n3. Nikto:<\/h3>\n\n- Uses:<\/strong> Nikto is a web server scanner that identifies potential vulnerabilities in web applications.<\/li>\n
- Details:<\/strong> Nikto scans net servers for old software variations, misconfigurations, and regarded vulnerabilities.<\/li>\n
- Features:<\/strong> It supports various sorts of scans, along with SSL, proxy, and CGI vulnerabilities.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) nikto -h target.com -o scan_results.txt –<\/strong> Performs a scan on the target website and saves the results to a file named “scan_results.txt”.<\/p>\n4. Burp Suite:<\/h3>\n\n- Uses:<\/strong> Burp Suite is a comprehensive net utility safety testing platform.<\/li>\n
- Details:<\/strong> Burp Suite includes an effective scanner that detects vulnerabilities and generates specific reviews.<\/li>\n
- Features:<\/strong> It helps guide and automate trying out, consultation managing, and numerous assault payloads.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) burp –<\/strong> Launches the Burp Suite application.
\nb) burp-rest-api –<\/strong> Starts the Burp Suite REST API service.
\nc) burp -r target.com –<\/strong> Performs a scan on the target website.<\/p>\n![\"Burp](\"https:\/\/data-flair.training\/blogs\/wp-content\/uploads\/sites\/2\/2023\/11\/Burp-Suite-4.webp\")
<\/a><\/p>\n5. Wireshark:<\/h3>\n\n- Uses:<\/strong> Wireshark is a network protocol analyzer used to seize and analyze network traffic.<\/li>\n
- Details:<\/strong> Wireshark presents in-intensity insights into network protocols, facilitating the identification of security troubles.<\/li>\n
- Features:<\/strong> It helps live packet capturing, protocol decoding, and effective filtering competencies.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) wireshark –<\/strong> Launches the Wireshark graphical interface.
\nb) tshark –<\/strong> Captures and analyzes network traffic from the command line.
\nc) capinfos –<\/strong> Displays information about a captured network traffic file.<\/p>\n![\"Wireshark\"](\"https:\/\/data-flair.training\/blogs\/wp-content\/uploads\/sites\/2\/2023\/11\/Wireshark-6.webp\")
<\/a><\/p>\n6. Sqlmap:<\/h3>\n\n- Uses:<\/strong> Sqlmap is an automatic SQL injection and database takeover tool.<\/li>\n
- Details:<\/strong> Sqlmap detects and exploits SQL injection vulnerabilities to gain unauthorized get rights of entry to databases.<\/li>\n
- Features:<\/strong> It helps numerous database management systems, computerized detection of injection points, and data extraction.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) sqlmap -u “http:\/\/target.com\/vuln_page.php?id=1” –dump –<\/strong> Performs a SQL injection attack and dumps the database contents.<\/p>\n![\"Sqlmap\"](\"https:\/\/data-flair.training\/blogs\/wp-content\/uploads\/sites\/2\/2023\/11\/Sqlmap-3.webp\")
<\/a><\/p>\n7. Gobuster:<\/h3>\n\n- Uses:<\/strong> Gobuster is a directory and record brute-forcing tool used to discover hidden paths on web servers.<\/li>\n
- Details:<\/strong> Gobuster helps become aware of unprotected documents and directories that may contain touchy records.<\/li>\n
- Features:<\/strong> It helps numerous wordlists, multi-threading, and extensions for particular record kinds.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) gobuster dir -u “http:\/\/target.com” -w wordlist.txt –<\/strong> Performs a directory brute-force attack on the target website.<\/p>\n8. Aircrack-ng:<\/h3>\n\n- Uses:<\/strong> Aircrack-ng is a suite of Wi-Fi community safety tools used for taking pictures and analyzing Wi-Fi community visitors.<\/li>\n
- Details:<\/strong> Aircrack-ng allows checking the security of Wi-Fi networks through cracking WEP and WPA\/WPA2-PSK keys.<\/li>\n
- Features:<\/strong> It consists of packet capturing, attacking tools, and a whole lot of methods for password healing.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) airmon-ng –<\/strong> Lists available wireless network interfaces and puts them into monitor mode.
\nb) airodump-ng wlan0 –<\/strong> Captures wireless network traffic on the specified interface.<\/p>\n![\"Aircrack](\"https:\/\/data-flair.training\/blogs\/wp-content\/uploads\/sites\/2\/2023\/11\/Aircrack-ng-4.webp\")
<\/a><\/p>\n9. Nmap:<\/h3>\n\n- Uses:<\/strong> Nmap is a powerful community exploration and protection auditing device.<\/li>\n
- Details:<\/strong> Nmap scans networks and hosts to discover open ports, going for walks services, and capacity vulnerabilities.<\/li>\n
- Features:<\/strong> It helps one-of-a-kind test types, OS detection, scriptable interactions, and big port scanning options.<\/li>\n
- Basic Commands:<\/strong><\/li>\n<\/ul>\n
a) nmap –<\/strong> Performs a basic scan on the target host.
\nb) nmap -sS –<\/strong> Performs a TCP SYN scan to identify open ports.
\nc) nmap -A –<\/strong> Enables aggressive scanning, including OS detection and version detection.<\/p>\n
a) nessus -q scan.xml –<\/strong> Runs Nessus in quiet mode and saves the scan results to a file named “scan.xml”.<\/p>\n a) openvas-start –<\/strong> Starts the OpenVAS vulnerability scanning service. a) nikto -h target.com -o scan_results.txt –<\/strong> Performs a scan on the target website and saves the results to a file named “scan_results.txt”.<\/p>\n a) burp –<\/strong> Launches the Burp Suite application. a) wireshark –<\/strong> Launches the Wireshark graphical interface. a) sqlmap -u “http:\/\/target.com\/vuln_page.php?id=1” –dump –<\/strong> Performs a SQL injection attack and dumps the database contents.<\/p>\n a) gobuster dir -u “http:\/\/target.com” -w wordlist.txt –<\/strong> Performs a directory brute-force attack on the target website.<\/p>\n a) airmon-ng –<\/strong> Lists available wireless network interfaces and puts them into monitor mode. a) nmap –<\/strong> Performs a basic scan on the target host.2. OpenVAS:<\/h3>\n
\n
\nb) openvas-stop –<\/strong> Stops the OpenVAS vulnerability scanning service.
\nc) openvasmd -p –<\/strong> Generates a PDF report of the scan results.<\/p>\n3. Nikto:<\/h3>\n
\n
4. Burp Suite:<\/h3>\n
\n
\nb) burp-rest-api –<\/strong> Starts the Burp Suite REST API service.
\nc) burp -r target.com –<\/strong> Performs a scan on the target website.<\/p>\n<\/a><\/p>\n5. Wireshark:<\/h3>\n
\n
\nb) tshark –<\/strong> Captures and analyzes network traffic from the command line.
\nc) capinfos –<\/strong> Displays information about a captured network traffic file.<\/p>\n<\/a><\/p>\n6. Sqlmap:<\/h3>\n
\n
<\/a><\/p>\n7. Gobuster:<\/h3>\n
\n
8. Aircrack-ng:<\/h3>\n
\n
\nb) airodump-ng wlan0 –<\/strong> Captures wireless network traffic on the specified interface.<\/p>\n<\/a><\/p>\n9. Nmap:<\/h3>\n
\n
\nb) nmap -sS –<\/strong> Performs a TCP SYN scan to identify open ports.
\nc) nmap -A –<\/strong> Enables aggressive scanning, including OS detection and version detection.<\/p>\n