
BlackArch is a complete Linux distribution for penetration testers and security researchers. It Is derived from ArchLinux and users can install BlackArch components individually or in groups directly on top of it. The toolset is distributed as an Arch Linux unofficial user repository so you can install BlackArch on top of an existing Arch Linux installation. Packages may be installed individually or by category. The constantly expanding repository currently includes over 1300 tools. All tools are thoroughly tested before being added to the codebase to maintain the quality of the repository. Here next tool in BlackArch :
nbnspoof | 1 | NBNSpoof – NetBIOS Name Service Spoofer | http://www.mcgrewsecurity.com/tools/nbnspoof/ |
nbtenum | 3.3 | A utility for Windows that can be used to enumerate NetBIOS information from one host or a range of hosts. | http://reedarvin.thearvins.com/ |
nbtool | 20131218 | Some tools for NetBIOS and DNS investigation, attacks, and communication. | http://wiki.skullsecurity.org/Nbtool |
netactview | 0.5.1 | A graphical network connections viewer for Linux similar in functionality with Netstat | http://netactview.sourceforge.net/index.html |
netcommander | 1.3 | An easy-to-use arp spoofing tool | https://github.com/evilsocket/netcommander |
netdiscover | 0.3 | An active/passive address reconnaissance tool, mainly developed for those wireless networks without dhcp server, when you are wardriving. It can be also used on hub/switched networks. | http://nixgeneration.com/~jaime/netdiscover/ |
netglub | 1 | The really open source information gathering tool | http://www.netglub.org |
netmap | 0.1.3 | Netmap can be used to make a graphical representation of the surounding network. | http://netmap.sourceforge.net |
netmask | 2.3.12 | Helps determine network masks | http://packages.qa.debian.org/n/netmask.html |
netsed | 1.2 | Small and handful utility design to alter the contents of packets forwarded thru network in real time. | http://silicone.homelinux.org/projects/netsed/ |
netsniff-ng | 0.5.7 | A high performance Linux network sniffer for packet inspection. | http://netsniff-ng.org/ |
nfcutils | 0.3.2 | Provides a simple ‘lsnfc’ command that list tags which are in your NFC device field | http://code.google.com/p/nfc-tools |
nfex | 2.5 | A tool for extracting files from the network in real-time or post-capture from an offline tcpdump pcap savefile. It is based off of the code-base from the apparently defunct project tcpxtract. | https://code.google.com/p/nfex/ |
nfspy | 1 | A Python library for automating the falsification of NFS credentials when mounting an NFS share | https://github.com/bonsaiviking/NfSpy |
nfsshell | 19980519 | Userland NFS command tool. | http://www.paramecium.org/~leendert/ |
nikto | 2.1.5 | A web server scanner which performs comprehensive tests against web servers for multiple items | http://www.cirt.net/nikto2 |
nipper | 0.11.7 | Network Infrastructure Parser | https://www.titania-security.com/ |
nishang | 0.3.0 | Using PowerShell for Penetration Testing | https://code.google.com/p/nishang/ |
nkiller2 | 2 | A TCP exhaustion/stressing tool. | http://sock-raw.org/projects.html |
nmbscan | 1.2.6 | Tool to scan the shares of a SMB/NetBIOS network, using the NMB/SMB/NetBIOS protocols. | http://nmbscan.gbarbier.org/ |
nomorexor | 0.1 | Tool to help guess a files 256 byte XOR key by using frequency analysis | https://github.com/hiddenillusion/NoMoreXOR |
notspikefile | 20131215 | A Linux based file format fuzzing tool | http://packetstormsecurity.com/files/39627/notSPIKEfile.tgz.html |
nsec3walker | 20101223 | Enumerates domain names using DNSSEC | http://dnscurve.org/nsec3walker.html |
oat | 1.3.1 | A toolkit that could be used to audit security within Oracle database servers. | http://www.cqure.net/wp/test/ |
obexstress | 0.1 | Script for testing remote OBEX service for some potential vulnerabilities | http://bluetooth-pentest.narod.ru/ |
oh-my-zsh-git | 2183.a38af27 | A community-driven framework for managing your zsh configuration. | https://github.com/robbyrussell/oh-my-zsh |
ohrwurm | 0.1 | A small and simple RTP fuzzer | http://mazzoo.de/ |
ollydbg | 201g | A 32-bit assembler-level analysing debugger | http://www.ollydbg.de |
onesixtyone | 0.7 | An SNMP scanner that sends multiple SNMP requests to multiple IP addresses | http://labs.portcullis.co.uk/application/onesixtyone/ |
openvas-administrator | 1.3.2 | OpenVAS scanner administration tool | http://www.openvas.org/ |
openvas-client | 3.0.3 | A lightweight client. Although it is deprecated by upstream, it is still preferred by some. Please do not mark this as out-dated. | http://www.openvas.org/ |
openvas-cli | 1.2.0 | The OpenVAS Command-Line Interface | http://www.openvas.org/ |
openvas-manager | 4.0.4 | The OpenVAS Manager is a layer between the OpenVAS Scanner and various client applications | http://www.openvas.org/ |
openvas-scanner | 3.4.0 | The OpenVAS scanning Daemon | http://www.openvas.org/ |
orakelcrackert | 1 | This tool can crack passwords which are encrypted using Oracle’s latest SHA1 based password protection algorithm. | http://freeworld.thc.org/thc-orakelcrackert11g/ |
origami | 1.0.0_beta1b | A ruby framework designed to parse, analyze, and forge PDF documents. | http://security-labs.org/origami/ |
oscanner | 1.0.6 | An Oracle assessment framework developed in Java. | http://www.cqure.net/wp/oscanner/ |
owabf | 1.3 | Outlook Web Access bruteforcer tool. | http://netsec.rs/70/tools.html |
owtf | 0.4 | The Offensive Web Testing Framework | https://www.owasp.org/index.php/OWASP_OWTF |
p0f | 3.06b | Purely passive TCP/IP traffic fingerprinting tool | http://lcamtuf.coredump.cx/p0f3/ |
packerid | 1.4 | Script which uses a PEiD database to identify which packer if any is being used by a binary. | http://handlers.sans.org/jclausing/packerid.py |
packet-o-matic | 351 | A real time packet processor. Reads the packet from an input module, match the packet using rules and connection tracking information and then send it to a target module. | http://www.packet-o-matic.org/ |
packit | 1 | A network auditing tool. Its value is derived from its ability to customize, inject, monitor, and manipulate IP traffic. | http://packit.sourceforge.net/ |
pack | 0.0.4 | Password Analysis and Cracking Kit | http://thesprawl.org/projects/pack/ |
padbuster | 0.3.3 | Automated script for performing Padding Oracle attacks | http://www.gdssecurity.com/l/t.php |
paketto | 1.1 | Advanced TCP/IP Toolkit. | http://www.doxpara.com/paketto |
panoptic | 0.r167.9e81e72 | A tool that automates the process of search and retrieval of content for common log and config files through LFI vulnerability | https://github.com/lightos/Panoptic |
paros | 3.2.13 | Java-based HTTP/HTTPS proxy for assessing web app vulnerabilities. Supports editing/viewing HTTP messages on-the-fly, spiders, client certificates, proxy-chaining, intelligent scanning for XSS and SQLi, etc. | http://www.parosproxy.org |
pasco | 20040505_1 | Examines the contents of Internet Explorer’s cache files for forensic purposes | http://www.jonesdykstra.com/ |
passcracking | 20131214 | A little python script for sending hashes to passcracking.com and milw0rm | http://github.com/jensp/passcracking |
passivedns | 1.1.3 | A network sniffer that logs all DNS server replies for use in a passive DNS setup. | https://github.com/gamelinux/passivedns |
pastenum | 0.4.1 | Search Pastebins for content, fork from nullthreat corelan pastenum2 | http://github.com/shadowbq/pastenum |
patator | 0.4 | A multi-purpose bruteforcer | http://code.google.com/p/patator/ |
pathod | 0.9.2 | Crafted malice for tormenting HTTP clients and servers | http://pathod.net/ |
paxtest | 0.9.11 | PaX regression test suite. | http://pax.grsecurity.net/ |
pblind | 1 | Little utility to help exploiting blind sql injection vulnerabilities. | http://www.edge-security.com/pblind.php |
pcapsipdump | 0.1.4 | pcapsipdump is a tool for dumping SIP sessions +RTP traffic, if available to disk in a fashion similar to ‘tcpdump -w’ format is exactly the same, but one file per sip session even if there is thousands of concurrect SIP sessions. | http://pcapsipdump.sourceforge.net/ |
pdfcrack | 0.11 | Password recovery tool for PDF-files. | http://pdfcrack.sourceforge.net/ |
pdfid | 0.1.2 | scan a file to look for certain PDF keywords | http://blog.didierstevens.com/programs/pdf-tools/ |
pdf-parser | 0.4.2 | Parses a PDF document to identify the fundamental elements used in the analyzed file | http://blog.didierstevens.com/programs/pdf-tools/ |
pdgmail | 1 | A password dictionary attack tool that targets windows authentication via the SMB protocol | http://www.jeffbryner.com/code/pdgmail |
peach | 3.0.202 | A SmartFuzzer that is capable of performing both generation and mutation based fuzzing | http://peachfuzzer.com/ |
peepdf | 0.2 | A Python tool to explore PDF files in order to find out if the file can be harmful or not | http://code.google.com/p/peepdf/ |
pentbox | 1.5 | A security suite that packs security and stability testing oriented tools for networks and systems | http://www.pentbox.net |
perl-tftp | 1.0b3 | TFTP – TFTP Client class for perl | http://search.cpan.org/~gsm/TFTP/TFTP.pm |
pev | 0.6 | Command line based tool for PE32/PE32+ file analysis | http://pev.sourceforge.net/ |
phoss | 0.1.13 | Sniffer designed to find HTTP, FTP, LDAP, Telnet, IMAP4, VNC and POP3 logins. | http://www.phenoelit.org/fr/tools.html |
php-mt-seed | 3.2 | PHP mt_rand seed cracker | http://www.openwall.com/php_mt_seed/ |
phrasendrescher | 1.2.2 | A modular and multi processing pass phrase cracking tool | http://www.leidecker.info/projects/phrasendrescher/ |
pipal | 1.1 | A password analyser | http://www.digininja.org/projects/pipal.php |
pirana | 0.3.1 | Exploitation framework that tests the security of a email content filter. | http://www.guay-leroux.com/projects.html |
plecost | 2 | WordPress finger printer tool search and retrieve information about the plugins versions installed in WordPress systems. | http://code.google.com/p/plecost/ |
pnscan | 1.11 | A parallel network scanner that can be used to survey TCP network services. | http://www.lysator.liu.se/~pen/pnscan/ |
powerfuzzer | 1_beta | Powerfuzzer is a highly automated web fuzzer based on many other Open Source fuzzers available incl. cfuzzer, fuzzled, fuzzer.pl, jbrofuzz, webscarab, wapiti, Socket Fuzzer. It can detect XSS, Injections SQL, LDAP, commands, code, XPATH and others. | http://www.powerfuzzer.com |
powersploit | 2.2 | A PowerShell Post-Exploitation Framework | https://github.com/mattifestation/PowerSploit |
propecia | 2 | A fast class scanner that scans for a specified open port with banner grabbing | http://www.redlevel.org |
pscan | 1.3 | A limited problem scanner for C source files | http://deployingradius.com/pscan/ |
pstoreview | 1 | Lists the contents of the Protected Storage. | http://www.ntsecurity.nu/toolbox/pstoreview/ |
ptunnel | 0.72 | A tool for reliably tunneling TCP connections over ICMP echo request and reply packets | http://www.cs.uit.no/~daniels/PingTunnel/#download |
pwdump | 7.1 | Extracts the binary SAM and SYSTEM file from the filesystem and then | http://www.tarasco.org/security/pwdump_7/index.html |
pwnat | 0.3 | A tool that allows any number of clients behind NATs to communicate with a server behind a separate NAT with *no* port forwarding and *no* DMZ setup on any routers in order to directly communicate with each other | http://samy.pl/pwnat/ |
pyinstaller | 2.1 | A program that converts packages Python programs into stand-alone executables, under Windows, Linux, Mac OS X, Solaris and AIX. | http://www.pyinstaller.org/ |
pyminifakedns | 0.1 | Minimal DNS server written in Python; it always replies with a 127.0.0.1 A-record | http://code.activestate.com/recipes/491264/ |
pyrit | 0.4.0 | WPA/WPA2-PSK attacking with gpu and cluster | http://code.google.com/p/pyrit |
pytacle | alpha2 | Automates the task of sniffing GSM frames | http://packetstormsecurity.com/files/124299/pytacle-alpha2.tar.gz |
python2-yara | 1.7.2 | A malware identification and classification tool | https://github.com/plusvic/yara |
python-utidylib | 0.2 | Python bindings for Tidy HTML parser/cleaner. | http://utidylib.berlios.de |