Tools

This page is where I list a collection of useful tools which I’ve used before (and some which I still use) to help diagnose and monitor issues.

System utilities

WindowsLinux
Microsoft Sysinternals
A suite of tools for monitoring processes in real-time (registry reads/writes, TCP/IP port usage, etc), dumping memory of processes, removing NTFS ADS, controlling startup services, and much more!

This suite of tools is essential for administering Microsoft Windows.

https://docs.microsoft.com/en-us/sysinternals/downloads/sysinternals-suite
Y

Disk utilities

WindowsLinux
CrystalDiskInfo
Hard drive diagnostic program.

https://crystalmark.info/en/software/crystaldiskinfo/
Y
GSmartControl
Hard drive diagnostic program. Shows information such as: number of reallocated sectors, CRC error count, hard drive temperature, temperature history, power-on hours, physical shock count.

https://gsmartcontrol.sourceforge.io/home/
YY
Linux File Systems for Windows (Paragon Software)
Allows you to mount, read, write and verify linux file systems.

Supports:
– Read/write: Ext2, Ext3, Ext4
– Read-only: Btrfs, XFS
https://www.paragon-software.com/home/linuxfs-windows/
Y
APFS for Windows (Paragon Software)
Allows you to mount, read, write and verify Apple file systems.

Supports:
– Read/write: APFS

https://www.paragon-software.com/home/apfs-windows/
Y

Networking

WindowsLinux
AnalogX Proxy
Lightweight proxy server for Windows.

Supports:
– HTTP, FTP, SMTP, POP3, NNTP, SOCKS.

http://www.analogx.com/contents/download/Network/proxy/Freeware.htm
Y
AnalogX PortMapper
Redirect local TCP or UDP ports to other IP addresses.

http://www.analogx.com/contents/download/Network/pmapper/Freeware.htm
Y
EVE-NG
Virtualise networking gear from popular vendors and use them to create network topologies.

https://www.eve-ng.net/
YY
GNS3
Virtualise networking gear from popular vendors and use them to create network topologies.

Supports:
– Arista, Aruba, Big Cloud, BIRD, Brocade, Checkpoint, Cisco, CloudRouter, Extreme Network, F5, Fortinet, HPE, Juniper, MikroTik, Onos, OpenvSwitch, OpenWRT, OPNsense, Proxmox, Sophos, Trend Micro, Untangle.

https://www.gns3.com/
YY
Nmap
Port scanner. CLI only, but you can find many third-party GUI interfaces for it.

https://nmap.org/
YY
OpenSSH
Official Microsoft repository for their ported Windows version of the BSD OpenSSH daemon.

https://github.com/PowerShell/openssh-portable
Y
Putty
SSH/SCP/FTP/Telnet client. Comes as both GUI and command-line.

https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html
YY
stunnel
SSL proxy server for IPv4 and IPv6. Enables non-SSL capable programs to communicate with SSL/TLS services. FIPS-compliant.

Supports:
– CIFS
– CONNECT
– IMAP
– NNTP
– PGSQL
– POP3
– PROXY
– SMTP
– SOCKS v4, v4a, v5

https://www.stunnel.org/
YY
Technitium MAC Address Changer
As the name suggests, it’s a MAC address changer.

Supports:
– Wired, WiFi, Virtual adaptors

https://technitium.com/tmac/
Y
TFTPD32/TFTPD64
TFTP server & client for Windows, but also runs a very basic DHCP server and an even more basic SYSLOG server.

https://tftpd32.jounin.net/
Y
Wireshark
Packet sniffer.

https://www.wireshark.org/
YY

Security/Hacking tools

WindowsLinux
dnscat2
Utility to tunnel via the DNS protocol. Can also be used for data exfiltration.

https://github.com/iagox86/dnscat2
Y
knockknock
A port knocker for linux which doesn’t use a daemon. It reads the kern.log file to monitor port knock sequences.

https://github.com/moxie0/knockknock
Y
mimikatz
Common hacking tool used to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. Can also be used to perform pass-the-hash (PTH) attacks, pass-the-ticket, and create Golden tickets.

https://github.com/gentilkiwi/mimikatz
Y
sslstrip
A tool to demonstrate that the SSL protocol which was commonly used for encrypted website communications, was insecure.

https://github.com/moxie0/sslstrip
Y
WiFi-Pumpkin

https://github.com/P0cL4bs/WiFi-Pumpkin
Y

Leave a Reply

Your email address will not be published. Required fields are marked *

Scroll to top