Hostscan - PHP tool for scanning specific range of hosts

Hostscan is a php tool which allows you to scan specific range of hosts, mostly for information gathering and testing for weak passwords. I guess it's a pentest tool, i'd created it to automate some tests that i often do. Since it's PHP, it works quite slowly compared to client-side soft.

How it works?

• You need to provide range of ip's (e.g. 127.0.0.1 - 127.0.0.10); program will perform operations on each address separately, basing on selected options, then it will print out the response.
• By default, program will only check open ports, print http response headers, test for HTTP methods and check FTP for anonymous login.
• If 'SSH/IMAP/DB's' are checked, program will try to bruteforce SSH,IMAP,MySQL,PostgreSQL & MsSQL using array of passwords and users defined on the beggining of script. Notice, that it will try to login as user with grand permissions (e.g. root, postgres), although you're able to edit it.
• If 'FTP User' is set, program will also try to bruteforce FTP with specific user using mentioned passwords array. By default it's not, and it will only test for anonymous login.
• If 'Deep Scan' is set, program will perform all aforementioned operations. Further, it will use nmap with specific parameters you're able to edit, also, the traceroute scan will be performed and displayed - just like nmap. Deep Scan also gather some useful informations about a website (if it's running), such as interesting files/folders and www title.
• ?url=website.com for quick IP address of specific website.
  ...so - what it does it do? Nmap, traceroute, port scan, ftp anonymous login, ftp/ssh/imap/mysql/pgsql/mssql bruteforce, http (website) info gathering, 
  Crawler accepts as a parameter array of files and folders that you can manually edit, just like others options.

Download Hostscan

Read More

Simple 8-bit Assembler Simulator

A simulator which provides a simplified assembler syntax (based on NASM) and is simulating a x86 like cpu. Press Help inside the simulator to see an overview about the supported instructions.

Features

• 8-bit CPU
• 4 general purpose registers
• 256 bytes of memory
• Console output

Simple 8-bit Assembler Simulator

Read More

[ODA] Online Web Based Disassembler

ODA stands for Online DisAssembler. ODA is a general purpose machine code disassembler that supports a myriad of machine architectures. Built on the shoulders of libbfd and libopcodes (part of binutils), ODA allows you to explore an executable by dissecting its sections, strings, symbols, raw hex, and machine level instructions.

ODA is an online Web Based Disassembler for when you don’t have time or space for a thick client.

You can use it for a variety of purposes such as:

• Malware analysis
• Vulnerability research
• Visualizing the control flow of a group of instructions
• Disassembling a few bytes of an exception handler that is going off into the weeds
• Reversing the first few bytes of a Master Boot Record (MBR) that may be corrupt
• Debugging an embedded systems device driver

Online DisAssembler

Read More

[Comodo Instant Malware Analysis] Online Automated Analysis System

If you have a suspicious file, please submit it online by using the form below. Once the file is submitted, COMODO Automated Analysis System will scan it and report back its findings.

Comodo Instant Malware Analysis

Read More

[Anubis] Online Analyzing Unknown Binaries

Anubis is a service for analyzing malware.

Submit your Windows executable or Android APK and receive an analysis report telling you what it does. Alternatively, submit a suspicious URL and receive a report that shows you all the activities of the Internet Explorer process when visiting this URL. 

Anubis

Read More

[ByteScanner] Check your file that dangerous or not

This website is web service for checking file that you're uploaded is the malicious file or not. It's similar Virustotal.com, try it by yourself.

ByteScanner

Read More

[Spoon] Ejecutar aplicaciones en Sandbox Online

El proyecto Spoon.net Browser Sandbox permite ejecutar cualquier navegador en una Sandbox y realizar pruebas de compatibilidad con versiones anteriores de los mismos... así como abrir páginas web que podrían ser peligrosas.

Los navegadores se ejecutan dentro de un entorno virtual aislado, lo que elimina la necesidad de instalaciones. Los navegadores virtualizados se comportan exactamente igual que los navegadores instalados y, debido a que se ejecutan localmente, se puede probar aplicaciones web alojadas en servidores internos. Simplemente basta con abrir el navegador de Spoon y escribir la dirección en la barra de navegación de prueba.

Spoon es compatible con componentes estándar como Applets de Java, controles ActiveX, y Flash, así como con plugins populares como Firebug, Developer Toolbar IE y consolas de depuración de CSS y JavaScript.

Adicionalmente Spoon permite ejecutar una lista muy grande de aplicaciones de escritorio virtualizadas y se puede instalar en modo servidor.

Spoon.net Browser Sandbox

[Fuente]

Read More

[ScanPlanner] Scanner Nmap Online

ScanPlanner is the easiest, fastest way to run NMAP scans and tests from the web. Schedule and track your network scans and vulnerability tests with our intuitive online interface.

WEB: http://scanplanner.com/

Read More