networking.md

Networking

Concepts

HTTPS/SSL

• How to intercept and decode SSL traffic

Miscellaneous

• Martian Packet
• Bogon Filtering
• Learn with me: VLANs & pfSense
• Kerberos
• 59 Linux Networking Commands and Scripts
• Air-Gap Research Page

Tools

General

• bing-ip2hosts - Enumerate hostnames from Bing
• crackmapexec - A swiss army knife for pentesting networks
• datasploit - OSINT Framework to perform various recon techniques
• dnsenum - Perl script that enumerates DNS information
• dnsmap - Subdomain brute-forcing
• dnsrecon - DNS Enumeration Script
• dork-cli - Command-line Google dork tool
• dorks - Google hack database automation tool
• faraday - Collaborative Penetration Test and Vulnerability Management Platform
• fierce - DNS Analysis perl script
• FOCA - Fingerprinting Organizations with Collected Archives
• hping - Network tool able to send custom TCP/IP packets
• image-match - Quickly search over billions of images
• knock - Subdomain Scan
• masscan - Fast TCP port scanner
• metagoofil - Document and metadata reconnaissance (updated version)
• onioff - An onion url inspector for inspecting deep web links
• OSINT-SPY - Performs OSINT scan on email/domain/ip_address/organization
• pagodo - Automate Google Hacking Database scraping
• SimplyEmail - Email recon made fast and easy
• sniff-paste - Pastebin OSINT Harvester
• surfraw - a fast UNIX command line interface to a variety of popular WWW search engines
• TekDefense-Automater - IP URL and MD5 OSINT Analysis
• theHarvester - E-mails, subdomains and names Harvester - OSINT
• WhatWeb - Web scanner
• xray - A tool for recon, mapping and OSINT gathering from public networks
• zmap - Fast single packet network scanner

https://wigle.net/ - Map of networks

netcat

• Cheat Sheet

Sniffer/Spoofing

• bettercap - The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks
• macchanger - Utility that makes the manipulation of MAC addresses of network interfaces easier
• mitmproxy - Free and open source interactive HTTPS proxy
• mkcert - Make locally trusted development certificates with any names you'd like
• sslstrip - SSL/TLS man-in-the-middle attack tool
• Wireshark - The world’s foremost and widely-used network protocol analyzer

Wireless Attacks

• Aircrack-ng - A complete suite of tools to assess WiFi network security
• airgeddon - Multi-use bash script for Linux systems to audit wireless networks
• Bluelog - A highly configurable Linux Bluetooth scanner
• BoopSuite - A Suite of Tools written in Python for wireless auditing
• Bully - Implementation of the WPS brute force attack, written in C
• fluxion - Fluxion is a remake of linset by vk496 with less bugs and enhanced functionality
• infernal-twin - This is automated wireless hacking tool
• kismet - An 802.11 layer2 wireless network detector, sniffer, and intrusion detection system
• krackattacks-scripts - WPA2 Krack Attack Scripts
• KRACK Detector - Detect and prevent KRACK attacks in your network
• Pixiewps - An offline Wi-Fi Protected Setup brute-force utility
• RouterSploit - Exploitation Framework for Embedded Devices
• wifi-arsenal - Resources for WiFi Pentesting
• Wifiphisher - The Rogue Access Point Framework
• WiFi-Pumpkin - Framework for Rogue Wi-Fi Access Point Attack