Oct 23, 2015

Howto: Install bkhive in Kali 2.0

1. Download bkhive from Debian Repository
# wget "http://downloads.sourceforge.net/project/ophcrack/samdump2/1.1.1/bkhive-1.1.1.tar.gz?r=http%3A%2F%2Fsourceforge.net%2Fprojects%2Fophcrack%2Ffiles%2Fsamdump2%2F1.1.1%2F&ts=1445596285&use_mirror=jaist" -O bkhive-1.1.1.tar.gz

3. Extract
# tar xzvf bkhive-1.1.1.tar.gz

4. Install libssl-dev
# apt-get install libssl-dev

5. Install it
# make
# make install

Howto: Install latest Recon-ng in Kali 2.0

1. Purge old recon-ng
# apt-get purge recon-ng

2. Got new one from source
# git clone https://LaNMaSteR53@bitbucket.org/LaNMaSteR53/recon-ng.git

Oct 20, 2015

Tools: Gping - Ping, but with a graph

Ping, but with a graph

Source:: https://github.com/orf/gping

Tools: XVWA - Xtreme Vulnerable Web Application

XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.

XVWA is designed to understand following security issues.
  • SQL Injection – Error Based
  • SQL Injection – Blind
  • OS Command Injection
  • XPATH Injection
  • Unrestricted File Upload
  • Reflected Cross Site Scripting
  • Stored Cross Site Scripting
  • DOM Based Cross Site Scripting
  • Server Side Request Forgery (Cross Site Port Attacks)
  • File Inclusion
  • Session Issues
  • Insecure Direct Object Reference
  • Missing Functional Level Access Control
  • Cross Site Request Forgery (CSRF)
  • Cryptography
  • Unvalidated Redirect & Forwards
  • Server Side Template Injection


Source:: https://github.com/s4n7h0/xvwa

Tools: LogScape - Centralize Log and Log Searcher


Search, visualize and analyze log files and operational data



Source:: http://www.logscape.com/index.html#header