diff --git a/README.md b/README.md index c1af9a1..0dc8a05 100644 --- a/README.md +++ b/README.md @@ -66,6 +66,8 @@ A collection of awesome penetration testing resources * [NST](http://networksecuritytoolkit.org/) - Network Security Toolkit distribution * [Pentoo](http://www.pentoo.ch/) - security-focused livecd based on Gentoo * [BackBox](http://www.backbox.org/) - Ubuntu-based distribution for penetration tests and security assessments +* [Lion Linux](http://lionsec.net/linux/) - Ubuntu-based with XFCE, very clean +* [ParrotSec](https://www.parrotsec.org/) - Debian-based, livecd too #### Basic Penetration Testing Tools * [Metasploit Framework](http://www.metasploit.com/) - World's most used penetration testing software @@ -83,6 +85,8 @@ A collection of awesome penetration testing resources * [w3af](https://github.com/andresriancho/w3af) - Web application attack and audit framework * [Wapiti](http://wapiti.sourceforge.net/) - Web application vulnerability scanner * [WebReaver](http://www.webreaver.com/) - Web application vulnerability scanner for Mac OS X +* [WPScan](http://wpscan.org/) - Focused to scan on WordPress CMS +* [JoomScan](http://sourceforge.net/projects/joomscan/) - Focused to scan on Joomla CMS #### Network Tools * [nmap](http://nmap.org/) - Free Security Scanner For Network Exploration & Security Audits @@ -97,6 +101,7 @@ A collection of awesome penetration testing resources * [Aircrack-ng](http://www.aircrack-ng.org/) - a set of tools for auditing wireless network * [Kismet](https://kismetwireless.net/) - Wireless network detector, sniffer, and IDS * [Reaver](https://code.google.com/p/reaver-wps/) - Brute force attack against Wifi Protected Setup + * [Wifite](https://github.com/derv82/wifite) - Automated wireless attack tool #### SSL Analysis Tools * [SSLyze](https://github.com/nabla-c0d3/sslyze) - SSL configuration scanner @@ -108,6 +113,7 @@ A collection of awesome penetration testing resources #### Crackers * [John the Ripper](http://www.openwall.com/john/) - Fast password cracker * [Online MD5 cracker](http://www.md5crack.com/) - Online MD5 hash Cracker +* [Hashcat](http://hashcat.net/oclhashcat/) - The more fast hash cracker #### Windows Utils * [Sysinternals Suite](http://technet.microsoft.com/en-us/sysinternals/bb842062) - The Sysinternals Troubleshooting Utilities @@ -117,6 +123,7 @@ A collection of awesome penetration testing resources #### DDoS Tools * [LOIC](https://github.com/NewEraCracker/LOIC/) - An open source network stress tool for Windows * [JS LOIC](http://metacortexsecurity.com/tools/anon/LOIC/LOICv1.html) - JavaScript in-browser version of LOIC +* [T50](http://sourceforge.net/projects/t50/) - The more fast network stress tool #### Social Engineering Tools * [SET](https://github.com/trustedsec/social-engineer-toolkit) - The Social-Engineer Toolkit from TrustedSec @@ -246,11 +253,14 @@ A collection of awesome penetration testing resources * [SkyDogCon](http://www.skydogcon.com/) - A technology conference in Nashville * [SECUINSIDE](http://secuinside.com) - Security Conference in [Seoul](http://en.wikipedia.org/wiki/Seoul) * [DefCamp](http://defcamp.ro) - Largest Security Conference in Eastern Europe, held anually in Bucharest, Romania +* [H2HC](https://www.h2hc.com.br) - Hackers to hackers conference, focused on techinical themes ### Information Security Magazines * [2600: The Hacker Quarterly](http://www.2600.com/Magazine/DigitalEditions) - An American publication about technology and computer "underground" * [Phrack Magazine](http://www.phrack.org/) - By far the longest running hacker zine +* [H2HC Magazine](https://www.h2hc.com.br/revista/) - Make by team of H2HC and others good people +* [Cogubin](http://www.mentebinaria.com.br/zine/) - E-zine mainly about low level ### Awesome Lists