For the memo, here are some of the tools that I use often for analysis, penetration testing or forensics.
Discovery / Fingerprinting
- Nmap – THE active network and fingerprinting scanner.
- Halberd – Reveals if a server is behind a load balancer.
- Waf00f – Detect web application firewalls.
- Tcptraceroute – TCP based traceroute.
System penetration testing
Network penetration testing
Web penetration testing
Database penetration testing
- No more and 1=1 – SQL injection cheat sheet.