Tools for penetration tests and network security for hackers and security professionals

The IT Security industry most often uses network security and penetration testing tools to test vulnerabilities in the network and applications. Here you can find the complete list of  "Network Penetration testing" tools that covers the operation of penetration tests in the whole environment.

Penetration testing tools and network security

Scanning / Pentesting

• OpenVAS
• Metasploit Framework
• Kali
• pig
• scapy
• Pompem
• Nmap

Monitoring / logging

• justniffer
• httpry
• ngrep
• passivedns
• sagan
• Node Security Platform
• ntopng
• Fibratus

IDS / IPS / Host IDS / Host IPS

• Snort
• Bro
• OSSEC
• Meerkat
• Security Onion
• sshwatch
• Stealth
• AIEngine
• Denyhosts
• Fail2Ban
• SSHGuard
• Lynis

Honey Pot /  Honey Net

• HoneyPy
• Conpot
• Amun
• Glastopf
• Kippo
• Kojoney
• HonSSH
• Bifrozt
• HoneyDrive
• Cuckoo Sandbox

Full package capture / Forensic

• tcpflow
• Xplico
• Moloch
• OpenFPC
• Dshell
• stenographer

Sniffer

• wireshark
• netsniff-ng
• Live HTTP headers

Security information and event management

• Prelude
• OSSIM
• FIR

VPN

• OpenVPN

Fast packet processing

• DPDK
• PFQ
• PF_RING
• PF_RING ZC (Zero Copy)
• PACKET_MMAP / TPACKET / AF_PACKET
• netmap

Firewall

• pfSense
• OPNsense
• fwknop

Anti-Spam

• SpamAssassin

Docker Images for  Penetration Testing and Security

• docker pull kalilinux/kali-linux-docker official Kali Linux
• docker pull owasp/zap2docker-stable -  official OWASP ZAP
• docker pull wpscanteam/wpscan -  official WPScan
• docker pull remnux/metasploit -  docker-metasploit
• docker pull citizenstig/dvwa -  Damn Vulnerable Web Application (DVWA)
• docker pull wpscanteam/vulnerablewordpress -  Vulnerable WordPress Installation
• docker pull hmlio/vaas-cve-2014-6271 -  Vulnerability as a service: Shellshock
• docker pull hmlio/vaas-cve-2014-0160 -  Vulnerability as a service: Heartbleed
• docker pull opendns/security-ninjas -  Security Ninjas
• docker pull diogomonica/docker-bench-security -  Docker Bench for Security
• docker pull ismisepaul/securityshepherd -  OWASP Security Shepherd
• docker pull danmx/docker-owasp-webgoat -  OWASP WebGoat Project docker image
• docker-compose build && docker-compose up -  OWASP NodeGoat
• docker pull citizenstig/nowasp -  OWASP Mutillidae II Web Pen-Test Practice Application