Please send suggestions for new links and/or dead links to Webmaster@NetIP.com

Updated April 05

•     Tool Collections:

  •     ad hoc IP Tools - An impressive list of tools.

  •     Top 75 Security Tools - List compiled by insecure.org - maker of NMap (see below).

  •     Ben's Web Utilities - Several online utilities (i.e. investigate email address, nmap, reverse DNS, Etc.)

  •     CentralOps.net - Free online network utilities.

  •     Foundstone Free Tools - Several excellent free tools.

  •     Geek Tools - More online network utilities.

  •     Packet Storm - Quite possibly the most complete site for tools and information on hacking.

•     Information sites:

  •     Default Password List - Just as the name implies... default passwords for a number of products.

  •     HTTP Header Repository - Information to recognize HTTP headers from several HTTP servers.

  •     DNS Report - Generates a detailed HTTP report for any DNS record.

  •     NetCraft - Identify the server software on any web server.

  •     Neworder.box.sk - A ton of information on hacking, exploits, etc.

  •     Portsdb - Search for port numbers by number or by string.

  •     SecurityFocus Vulnerability List - A searchable index of vulnerabilities.  Search by vendor, application, and version.

  •     SecureRoot - A large repository of information on hacks and hackers.

•     Specific Tools (listed alphabetically):

  •     Achilles - A Windows web attack proxy allowing man-in-the-middle type attacks for both HTTP and HTTPS (SSL)

  •     AirSnort - 802.11 WEP Encryption Cracking Tool

  •     BrowserSpy - can tell you all kinds of detailed information about you and your browser.

  •     DSniff - A suite of powerful network auditing and penetration-testing tools

  •     Ettercap - In case you still thought switched LANs provide much extra security

  •     Fport - Foundstone's enhanced netstat

  •     Fragroute - IDS systems' worst nightmare - intercepts, modifies, and rewrites egress traffic, implementing most of the attacks described in the Secure Networks IDS Evasion paper

  •     GnuPG - Freeware to secure your files and communication w/advanced encryption

  •     Honeyd - Your own personal honeynet

  •     Hping2 - A network probing utility like ping on steroids

  •     Hunt - An advanced packet sniffing and connection intrusion tool for Linux - use this tool for telnet hijacking

  •     John the Ripper - The best & fastest password cracker on the Internet today

  •     Kismet - A powerful wireless sniffer

  •     L0pht Crack - A "password auditing and recovery tool" - in other words, a password cracker.  Not as good as John the Ripper (see above) - and it isn't even free - now works on both Windows and UNIX passwords

  •     NBTScan -  Gathers NetBIOS info from Windows networks

  •     Nemesis - Packet injection simplified

  •     Nessus - Devoted to providing a powerful, free network security scanner

  •     Newt - The Nessus scanner that runs on Windows

  •     NetCat (UNIX) - The hacker's Swiss-Army knife.  Craft any packet you can dream up

  •     NetCat (Windows) - Same as above, but runs on Windows

  •     Netfilter - The current Linux kernel packet filter/firewall

  •     NetStumbler - Great tool for finding wireless access points

  •     Nikto - A more comprehensive web scanner

  •     NMap - The best port scanner available today

  •     OpenSSH - A secure way to access remote computers

  •     Paketto Keiretsu - Extreme TCP/IP - An impressive set of tools to manipulate TCP/IP networks

  •     PGP - Commercial software to secure your files and communication w/advanced encryption

  •     Retina - Good commercial vulnerability assessment scanner by eEye

  •     Sam Spade - Online tools and a downloadable utility

  •     SolarWinds Toolsets -  A plethora of network discovery/monitoring/attack tools - NOT free, but for about $1,000 still a bargain!

  •     SuperScan - Foundstone's excellent Windows TCP port scanner

  •     THC-Amap - An application fingerprinting scanner - new but powerful scanner which probes each port to identify applications and services rather than relying on static port mapping

  •     THC-Hydra - Parallized network authentication cracker

  •     Whisker/Libwhisker - Rain.Forest.Puppy's CGI vulnerability scanner and library