Pentest tools from Nmap online to Subdomain Finder
theHarvester

Identify and fingerprint Web Application Firewall (WAF) products protecting a website.

HostWAF detected

Nmap scan options

HostProtocolPortStateServiceVersion
How many packets
CipherProtocolsSigalgTrusted
Release DateTitleTypePlatformAuthor
2020-07-30"Online Shopping Alphaware 1.0 - Authentication Bypass"webappsphp"Ahmed Abbas"
2020-07-29"Cisco Adaptive Security Appliance Software 9.7 - Unauthenticated Arbitrary File Deletion"webappshardware0xmmnbassel
2020-07-29"Wordpress Plugin Maintenance Mode by SeedProd 5.1.1 - Persistent Cross-Site Scripting"webappsphp"Jinson Varghese Behanan"
2020-07-28"Cisco Adaptive Security Appliance Software 9.11 - Local File Inclusion"webappshardware0xmmnbassel
2020-07-27"eGroupWare 1.14 - 'spellchecker.php' Remote Command Execution"webappsphp"Berk KIRAS"
2020-07-26"WordPress Plugin Email Subscribers & Newsletters 4.2.2 - 'hash' SQL Injection (Unauthenticated)"webappsphpKBA@SOGETI_ESEC
2020-07-26"Webtareas 2.1p - Arbitrary File Upload (Authenticated)"webappsphpAppleBois
2020-07-26"pfSense 2.4.4-p3 - Cross-Site Request Forgery"webappsphpghost_fh
2020-07-26"LibreHealth 2.0.0 - Authenticated Remote Code Execution"webappsphpboku
2020-07-26"Koken CMS 0.22.24 - Arbitrary File Upload (Authenticated)"webappsphpV1n1v131r4
2020-07-26"Bio Star 2.8.2 - Local File Inclusion"webappsmultiple"SITE Team"
2020-07-26"elaniin CMS - Authentication Bypass"webappsphpBKpatron
2020-07-26"WordPress Plugin Email Subscribers & Newsletters 4.2.2 - Unauthenticated File Download"webappsphpKBA@SOGETI_ESEC
2020-07-26"Calavera UpLoader 3.5 - 'FTP Logi' Denial of Service (PoC + SEH Overwrite)"doswindows"Felipe Winsnes"
2020-07-26"F5 Big-IP 13.1.3 Build 0.0.6 - Local File Inclusion"webappshardware"Carlos E. Vieira"
2020-07-26"docPrint Pro 8.0 - 'Add URL' Buffer Overflow (SEH Egghunter)"localwindowsMasterVlad
2020-07-26"GOautodial 4.0 - Persistent Cross-Site Scripting (Authenticated)"webappsphpBalzabu
2020-07-26"Online Course Registration 1.0 - Unauthenticated Remote Code Execution"webappsphpboku
2020-07-26"DiskBoss 7.7.14 - 'Reports and Data Directory' Buffer Overflow (SEH Egghunter)"localwindowsMasterVlad
2020-07-26"Port Forwarding Wizard 4.8.0 - Buffer Overflow (SEH)"localwindows"Sarang Tumne"
2020-07-26"INNEO Startup TOOLS 2018 M040 13.0.70.3804 - Remote Code Execution"webappsmultiple"Patrick Hener"
2020-07-26"ManageEngine Applications Manager 13 - 'MenuHandlerServlet' SQL Injection"webappsjavaaldorm
2020-07-26"Bludit 3.9.2 - Directory Traversal"webappsmultiple"James Green"
2020-07-26"Socusoft Photo to Video Converter Professional 8.07 - 'Output Folder' Buffer Overflow (SEH Egghunter)"localwindowsMasterVlad
2020-07-26"Frigate Professional 3.36.0.9 - 'Pack File' Buffer Overflow (SEH Egghunter)"localwindowsMasterVlad
2020-07-26"Free MP3 CD Ripper 2.8 - Stack Buffer Overflow (SEH + Egghunter)"localwindows"Eduard Palisek"
2020-07-26"Nidesoft DVD Ripper 5.2.18 - Local Buffer Overflow (SEH)"localwindows"Felipe Winsnes"
2020-07-26"UBICOD Medivision Digital Signage 1.5.1 - Cross-Site Request Forgery (Add Admin)"webappshardwareLiquidWorm
2020-07-26"Sickbeard 0.1 - Cross-Site Request Forgery (Disable Authentication)"webappsmultiplebdrake
2020-07-26"PandoraFMS 7.0 NG 746 - Persistent Cross-Site Scripting"webappsphpAppleBois
IpIs toxicProxySpam report

DNS records to SSL Trustchecker

Tools for system administrator

Reconnaissance tools freely hosted online

Cms detection to information gathering

CMS Detection and Exploitation suite

CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and 150 other CMSs

Offensive features

  • Admin page finder
  • User Enumeration
  • Core vulnerability detection
  • Modular bruteforce system
  • Advanced Joomla Scans
  • Advanced Wordpress Scans
  • Drupal version detection
  • Basic CMS Detection of over 155 CMS

Raccoon tool

Offensive Security Tool for Reconnaissance and Information Gathering

Offensive features

  • DNS details
  • DNS visual mapping using DNS dumpster
  • WHOIS information
  • TLS Data - supported ciphers
  • Port Scan
  • Subdomain enumeration
  • Web application data retrieval
  • Detects known WAFs

WhatWeb

WhatWeb recognises web technologies including content management systems (CMS).

Offensive features

  • Over 1800 plugins
  • Control the trade off between speed/stealth and reliability
  • Performance tuning. Control how many websites to scan concurrently.
  • Proxy support including TOR
  • Custom HTTP headers
  • Basic HTTP authentication
  • Control over webpage redirection

Exploit searching and discovery

Searching for exploits has been made easy.