Social Engineer Toolkit The Social Engineer Toolkit (SET) is a Python-based penetration testing kit for creating believable social engineering attacks. It helps evaluate organizations' susceptibility to phishing, credential harvesting, and manipulation through various attack vectors like spear phishing and infectious media generation.
WP Scan WP Scan detects vulnerabilities in WordPress websites by checking an updated database of Wordpress vulnerabilities. It scans for outdated plugins, themes, weak passwords, exposed sensitive information, potential entry points and performs brute force attacks on login credentials.
Metasploit Framework Metasploit is a platform for creating security tools and exploits with features such as an extensive database of exploits/payloads/modules; support for remote code execution (RCE), privilege escalation; creation/testing/execution of custom exploits; post-exploitation modules for reconnaissance/data extraction/lateral movement.
Burp Suite Burp Suite automates web application vulnerability discovery/testing tasks while providing manual/semi-automated testing tools. Its functionality includes acting as a proxy server/scanner/intruder/repeater/decoder/comparer/spider/extender with smart automation/support HTTP 2based/OOST scanning/single page applications/pre-recording complex authentication sequences.
Aircrack-ng Aircrack-ng is a Wi-Fi security tool that discovers/captures/analyzes Wi-Fi network traffic including WPA/WPA2 key cracking/authentication attacks/packet sniffing/wireless card/server/virtual tunnel interface Creator/auto WPA handshake logging.