Hello, Today I’ll share some useful pentesting tools which are very useful for beginners.
Below are helpful tools and a note describing the project.
Layer 1:
-Nmap https://nmap.org/
-Rogue device detection https://lnkd.in/et_Actfn
Project: Use Nmap to investigate rogue devices.
Layer 2:
-Yersinia https://lnkd.in/e6C9eFSH
-Wireshark https://www.wireshark.org/
Project: Run Wireshark, capture, and attack with Yersinia.
Layer 3:
-Ettercap https://lnkd.in/eW3XSDxy
Project: Use Ettercap for MITM attacks.
Layer 4:
-Dsniff https://lnkd.in/eptT256D
Project: Try TCP spoofing or password sniffing.
Layer 5:
-Sslstrip https://lnkd.in/exmfjpWP
Project: Utilize session hijacking.
Layer 6:
-Scapy https://lnkd.in/eq-PkxsD
Project: Use Scapy to generate fake ICM and ARP packets.
Layer 7:
-BruteX https://lnkd.in/exkDCzjd
Project: Scan using Nmap and use BruteX to force open services.
NOTE: Document your findings, preferably in a quantifiable way. This will help when writing your CV.
This is a project idea to familiarize you with pentesting, this is NOT a comprehensive pentesting instructional.
The idea is to explore, have fun, and document your findings in a legal manner.
Any ideas or best practices are encouraged in the comments.
Thanks for reading more blogs Please click on the link: