Hacking tools | Basic | Cheat sheet | Linux Command Library

Information gathering

Map the target: discover hosts, open ports, subdomains, and services.

$ nmap

$ zenmap

$ masscan

$ amass

$ dmitry

$ smbmap

Vulnerability analysis

Scan discovered services for known weaknesses and misconfigurations.

$ nikto

$ nuclei

$ lynis

$ nmap

Web application analysis

Probe web applications: intercept requests, brute-force paths, and test for injection.

$ burpsuite

$ sqlmap

$ gobuster

$ feroxbuster

$ dirb

$ ffuf

$ wfuzz

$ wpscan

$ whatweb

$ wafw00f

$ skipfish

$ httrack

Password attacks

Generate wordlists and recover or test credentials, offline (hash cracking) and online (login brute-forcing).

$ hashcat

$ john

$ hydra

$ medusa

$ ncrack

$ ophcrack

$ pyrit

$ rcrack

$ cewl

$ crunch

Wireless attacks

Audit Wi-Fi networks and RFID/NFC cards.

$ aircrack-ng

$ wifite

$ reaver

$ kismet

$ giskismet

$ mfoc

$ mfterm

$ chirpw

Exploitation tools

Frameworks and tools for exploiting confirmed vulnerabilities and moving through a network.

$ msfconsole

$ msfpc

$ searchsploit

$ sqlmap

$ netexec

Sniffing & Spoofing

Capture, inspect, and manipulate network traffic.

$ tcpdump

Forensics

Analyze disks, memory dumps, and file artifacts after an incident.

$ autopsy

$ binwalk

$ galleta

$ mdb-sql

$ sqlitebrowser

Reporting tools

Capture evidence and organize findings for the report.

$ cutycapt

$ keepnote

$ recordmydesktop