We have talked about GoogleDiggity in detail here
New GoogleDiggity input dictionary file SharePoint containing 109 queries that allow users to uncover SharePoint specific vulnerabilities exposed via the Google search engine. This dictionary helps assessors locate exposures of common SharePoint administrative pages, web services, and site galleries that an organization typically would not want to be [...]
Dictionary attack
Our previous post regarding Cain & Abel can be found here. Now, oxid.it has released an updated version 4.9.36!
“Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP [...]
Yesterday we talked about PenTestIT.Com’s WAPT FireFox Add-ons! This one, we think needs a special mention.
Fireforce is a Firefox extension designed to perform attacks like brute force on forms sent by GET or POST.
You can use dictionaries and then generate passwords based on several types of characters. The attack can be done simultaneously [...]
What started with a simple application to grab passwords from Windows .pwl files grew up to become a suite of applications that lets you do the following:
* WEP cracking
* Speeding up packet capture speed by wireless packet injection
* Ability to record VoIP conversations
* Decoding scrambled passwords
* Calculating hashes
* Traceroute
* Revealing password boxes
* Uncovering cached passwords
* [...]
By ‘digging’, you are querying DNS name servers for information about host addresses, mail exchanges, name servers, and related information. You might think where can I use DNS digging and the information gained thereafter. Here are the possible uses for the same-
Fill the reconnaissance gap left due to DNS [...]
Page 1 of 1
1