The best tools for a ethical hacker.

Before we begin I want to clarify that no tool is the ultimate solution to hack all pages.
To illustrate this I will mention a statistic which estimates that 40% of the pages in internet can be hacked with automated tools. Impressive in itself, but the same study estimated that 90% of the pages you can be hacked manualy.
This indicates that automated tools can be very effective but in many cases you have to use manual techniques. If you are a web security professional you have to know how to execute these attacks manually.

Depending on the phase of the pentest you use different tools. I'm just going to mention the king of each of the categories, there are many more tools.

Recognition phase (Fingerprinting)

Whois
This tool comes by default on Linux and Mac computers, there are also websites that offer this service.
We used it to know who is the owner of a website, the contact information and DNS.

Nmap
A very powerful and versatile port scanner, lets us know which ports are open on a website, what software it uses, if they use firewalls and countless other things.

Google
As we mentioned in previous articles you can also use Google to uncover confidential information of web pages. In a technique known as Google Dorks.

Burp Suite
Undoubtedly one of the most important tools, this tool allows you to do almost anything. It is often used to get a map of the website, find hidden content. In the attack phase is also used to intercept requests between your computer and the website letting you perform all kinds of injection attacks and modification of content.

WireShark
Although most commonly used in attacks on wifi connections it also helps us in attacks on web pages as you can intercept information at a packet level.


Attack Phase


SqlMaps
This tool is very effective and versatile for SQL injection attacks on all platforms, MySQL, MSSQL, Oracle ...

Brutus
Somewhat outdated but even so is still widely used methods to crack passwords with brute-force, dictionary attacks and rainbow attacks.

Metaspoit
Super powerful tool to attack websites at a network level not at a application level. Even has a brother tool called Armitage that makes the use of Metaspoits even easier.


Control maintenance phase


c99
The most comfortable method and the one that gives you the most control over the server is installing a Shell. c99 is one of the best.


Completely automated programs.
There are a number of tools, which are mainly of vulnerability scanner that are
able to do all these checks automatically.


Acunetix
Just put in the URL you want and click play. Accunetix tries thousands of attacks fully automatically. So many that if your site is large it can cause a denial of service so we recommend using it with caution.
Another drawback is the price, 3.750 Euros.


There are many more tools for testing the security of web pages but this is definitely the ones a ethical hacker must have. What is much more important to have them know how to use it effectively.
Do not use these tools against a page that is not yours or that you don't have written permission to attack, as it would be a crime.


Contact us