Scanners to test security


CMS Explorer is designed to reveal the the specific modules, plugins, components and themes that various CMS driven web sites are running.
Additionally, CMS Explorer can be used to aid in security testing.
While it performs no direct security checks, the "explore" option can be used to reveal hidden/library files which are not typically accessed by web clients but are nonetheless accessible.
This is done by retrieving the module's current source tree and then requesting those file names from the target system.
These requests can be sent through a distinct proxy to help "bootstrap" security testing tools like Burp, Paros, Webinspect, etc.
CMS Explorer can also search OSVDB for vulnerabilities with the installed components.

CMS Explorer currently supports module/theme discovery with the following products:
* Drupal
* Wordpress
* Joomla!
* Mambo

And exploration of the following products:
* Drupal
* Wordpress

backbox@backbox:~$ cms-explorer
WARNING: No API key defined, searches will be disabled.

ERROR: Missing -url

backbox@backbox:~$ cms-explorer -url url -type type [options]

-bsproxy+       Proxy to route findings through (fmt: host:port)
-explore Look for files in the theme/plugin dir
-help           This screen
-osvdb   Do OSVDB check for finds
-plugins Look for plugins (default: on)
-pluginfile+    Plugin file list
-proxy+  Proxy for requests (fmt: host:port)
-themes  Look for themes (default: on)
-themefile+     Theme file list (default: themes.txt)
-type+*  CMS type: Drupal, Wordpress, Joomla, Mambo
-update  Update lists from Wordpress/Drupal (over-writes text files)
-url+*   Full url to app's base directory
-verbosity+     1-3

*Requires value
* Required option


Cisco Auditing Tool

Cisco Auditing Tool - Perl script which scans cisco routers for common vulnerabilities. Checks for default passwords, easily guessable community names, and the IOS history bug. Includes support for plugins and scanning multiple hosts.


Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications. It contains several options to try to bypass certain filters, and various special techniques of code injection.


SnmpWalk is a part of the Net-Snmp toolkit, these tools are used to enumerate and perform other information gathering related to snmp.

One Sixty One

Onesixtyone is an SNMP scanner that sends multiple SNMP requests to multiple IP addresses, trying different community strings and waiting for replies. This version fixes a number of bugs in other publically available versions of the software, such as allowing for very large dictionary files and reading target IP addresses from a file.


Sandcat is a set of powerful security tools designed to help organizations find and fix web application security vulnerabilities. Built and maintained by security experts at Syhunt, Sandcat is also the tool of choice of cyber security companies all around the globe for performing their remote web application security assessments and security code reviews.


A semi-automated, largely passive web application security audit tool, optimized for an accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex web 2.0 environments.

Detects and prioritizes broad classes of security problems, such as dynamic cross-site trust model considerations, script inclusion issues, content serving problems, insufficient XSRF and XSS defenses, and much more.


SpiderFoot is a free, open-source, domain footprinting tool. Given one or multiple domain names (and when I say domains, I'm referring to the DNS kind, not Windows domains), it will scrape the websites on that domain, as well as search Google, Netcraft, Whois and DNS to build up information


NsAuditor is a network security and vulnerability scanner that allows auditing and monitoring network computers for possible vulnerabilities, checking network for all potential methods that a hacker might use to attack it and create a report of potential problems that were found. Nsauditor is a complete networking software package that includes more than 45 network tools and utilities for network auditing, scanning,network connections monitoring and more.


httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database.

Syndicate content