Packages that scan selected systems for vulnerabilities or information about the network

Tool count: 148

BlackArch networking
Name Version Description Homepage
afpfs-ng 0.8.1 A client for the Apple Filing Protocol (AFP)
aiengine 1.9.0 A packet inspection engine with capabilities of learning without any human intervention.
apacket 374.16e7036 Sniffer syn and backscatter packets.
argus Network monitoring tool with flow control.
argus-clients Network monitoring client for Argus.
arp-scan 1.9.5 A tool that uses ARP to discover and fingerprint IP hosts on the local network
arpalert 2.0.12 Monitor ARP changes in ethernet networks.
arptools 13.41cdb23 A simple tool about ARP broadcast, ARP attack, and data transmission.
arpwner 26.f300fdf GUI-based python tool for arp posioning and dns poisoning attacks.
atftp 0.7.2 Client/server implementation of the TFTP protocol that implements RFCs 1350, 2090, 2347, 2348, and 2349
bind-tools 9.14.5 The ISC DNS tools
bro 2.6.3 A powerful network analysis framework that is much different from the typical IDS you may know.
bro-aux 0.42 Handy auxiliary programs related to the use of the Bro Network Security Monitor (
buttinsky 138.1a2a1b2 Provide an open source framework for automated botnet monitoring.
bypass-firewall-dns-history 28.0fc9bbd Firewall bypass script based on DNS history records.
cadaver 0.23.3 Command-line WebDAV client for Unix
chameleon 14.01025b8 A tool for evading Proxy categorisation.
chaosreader 0.94 A freeware tool to trace tcp, udp etc. sessions and fetch application data from snoop or tcpdump logs.
chopshop 413.3dfb7be Protocol Analysis/Decoder Framework.
cidr2range 1.0 Script for listing the IP addresses contained in a CIDR netblock.
creak 40.52b0d74 Poison, reset, spoof, redirect MITM script.
cyberscan 75.ca85794 A Network Pentesting Tool
depdep 2.0 A merciless sentinel which will seek sensitive files containing critical info leaking through your network.
det 31.417cbce (extensible) Data Exfiltration Toolkit.
dhcpoptinj 123.58a12c6 DHCP option injector.
dinouml 0.9.5 A network simulation tool, based on UML (User Mode Linux) that can simulate big Linux networks on a single PC
dnsdiag 223.3ecc777 DNS Diagnostics and Performance Measurement Tools.
dnsfilexfer 24.126edcd File transfer via DNS.
dnsteal 26.8b5ed85 DNS Exfiltration tool for stealthily sending files over DNS requests..
dripcap 0.6.15 Caffeinated Packet Analyzer.
dtp-spoof 4.4b2df1b Python script/security tool to test Dynamic Trunking Protocol configuration on a switch.
dump1090 386.bff92c4 A simple Mode S decoder for RTLSDR devices.
etherape 0.9.18 Graphical network monitor for various OSI layers and protocols
evillimiter 20.177eb71 Tool that limits bandwidth of devices on the same network without access.
exabgp 4397.25ce4ff5 The BGP swiss army knife of networking.
filibuster 167.c54ac80 A Egress filter mapping application with additional functionality.
firecat 6.b5205c8 A penetration testing tool that allows you to punch reverse TCP tunnels out of a compromised network.
flowinspect 97.34759ed A network traffic inspection tool.
fping 4.2 Utility to ping multiple hosts at once
freeipmi 1.6.4 Sensor monitoring, system event monitoring, power control, and serial-over-LAN (SOL).
geoip 1.6.12 Non-DNS IP-to-country resolver C library & utils
gspoof 3.2 A simple GTK/command line TCP/IP packet generator.
gwcheck 0.1 A simple program that checks if a host in an ethernet network is a gateway to Internet.
haka 0.2.2 A collection of tool that allows capturing TCP/IP packets and filtering them based on Lua policy files.
hharp 1beta This tool can perform man-in-the-middle and switch flooding attacks. It has 4 major functions, 3 of which attempt to man-in-the-middle one or more computers on a network with a passive method or flood type method.
hping 3.0.0 A command-line oriented TCP/IP packet assembler/analyzer.
http-traceroute 0.5 This is a python script that uses the Max-Forwards header in HTTP and SIP to perform a traceroute-like scanning functionality.
httping 2.5 A ping-like tool for http-requests
hyde 11.ec09462 Just another tool in C to do DDoS (with spoofing).
hyenae 0.36_1 flexible platform independent packet generator
hyperfox 66.3256937 A security tool for proxying and recording HTTP and HTTPs traffic.
interlace 256.8574e87 Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
ipaudit 1.1 Monitors network activity on a network.
ipdecap 96.45d2a7d Can decapsulate traffic encapsulated within GRE, IPIP, 6in4, ESP (ipsec) protocols, and can also remove IEEE 802.1Q (virtual lan) header.
ipmitool 1.8.18 Command-line interface to IPMI-enabled devices
iputils 20180629.f6aac8d Network monitoring tools, including ping
ipv4bypass 19.de6d2b7 Using IPv6 to Bypass Security.
jnetmap 0.5.3 A network monitor of sorts
kickthemout 207.9238b1b Kick devices off your network by performing an ARP Spoof attack.
latd 1.31 A LAT terminal daemon for Linux and BSD.
loic An open source network stress tool for Windows.
macchanger 1.7.0 A small utility to change your NIC's MAC address
maclookup 0.4 Lookup MAC addresses in the IEEE MA-L/OUI public listing.
maketh 0.2.0 A packet generator that supports forging ARP, IP, TCP, UDP, ICMP and the ethernet header as well.
malcom 708.02e55b9 Analyze a system's network communication using graphical representations of network traffic.
massdns 167.68482eb A high-performance DNS stub resolver in C.
middler 1.0 A Man in the Middle tool to demonstrate protocol middling attacks.
moloch 0.11.3 An open source large scale IPv4 full PCAP capturing, indexing and database system.
mptcp 1.9.0 A tool for manipulation of raw packets that allows a large number of options.
mptcp-abuse 6.b0eeb27 A collection of tools and resources to explore MPTCP on your network. Initially released at Black Hat USA 2014.
mtr 0.93 Combines the functionality of traceroute and ping into one tool (CLI version)
mylg 656.616fd53 Network Diagnostic Tool.
nacker 23.b67bb39 A tool to circumvent 802.1x Network Access Control on a wired LAN.
nbtool 2.bf90c76 Some tools for NetBIOS and DNS investigation, attacks, and communication.
ncpfs 2.2.6 Allows you to mount volumes of NetWare servers under Linux.
nemesis 231.f4d4e2f A command-line network packet crafting and injection utility.
netactview 0.6.4 A graphical network connections viewer similar in functionality to netstat.
netcon 0.1 A network connection establishment and management script.
netmap 0.1.3 Can be used to make a graphical representation of the surounding network.
netreconn 1.78 A collection of network scan/recon tools that are relatively small compared to their larger cousins.
netsed 1.3 Small and handful utility design to alter the contents of packets forwarded thru network in real time.
networkmap 58.f5faf17 Post-exploitation network mapper.
nextnet 3.c8dc7a6 Pivot point discovery tool.
nfdump 1.6.13 A set of tools to collect and process netflow data.
ngrep 1.47 A grep-like utility that allows you to search for network packets on an interface.
nield 38.0c0848d A tool to receive notifications from kernel through netlink socket, and generate logs related to interfaces, neighbor cache(ARP,NDP), IP address(IPv4,IPv6), routing, FIB rules, traffic control.
nipper 0.11.7 Network Infrastructure Parser
nsdtool 0.1 A netgear switch discovery tool. It contains some extra features like bruteoforce and setting a new password.
nsoq 1.9.5 A Network Security Tool for packet manipulation that allows a large number of options.
packet-o-matic 351 A real time packet processor. Reads the packet from an input module, match the packet using rules and connection tracking information and then send it to a target module.
packeth 2.1 Linux GUI packet generator tool for ethernet
packetq 216.e13ebf3 A tool that provides a basic SQL-frontend to PCAP-files.
packetsender 447.009d09b An open source utility to allow sending and receiving TCP and UDP packets.
packit 1.0 A network auditing tool. Its value is derived from its ability to customize, inject, monitor, and manipulate IP traffic.
pcapfex 58.f29e739 Packet CAPture Forensic Evidence eXtractor.
pcapfix 1.1.4 Tries to repair your broken pcap and pcapng files.
phantap 51.3e1cf09 An 'invisible' network tap aimed at red teams.
pivotsuite 18.6519486 A portable, platform independent and powerful network pivoting toolkit.
pkt2flow 69.868a2e8 A simple utility to classify packets into flows.
pmacct 2995.13dffff4 Small set of multi-purpose passive network monitoring tools [NetFlow IPFIX sFlow libpcap BGP BMP IGP Streaming Telemetry].
prometheus-firewall 176.a316d66 A Firewall analyzer written in ruby
pwnat 13.5de412c A tool that allows any number of clients behind NATs to communicate with a server behind a separate NAT with *no* port forwarding and *no* DMZ setup on any routers in order to directly communicate with each other.
pyersinia 49.73f4056 Network attack tool like yersinia but written in Python.
pyexfil 75.d3c822d A couple of beta stage tools for data exfiltration.
pyminifakedns 0.1 Minimal DNS server written in Python; it always replies with a A-record.
python-python-cymruwhois 30.022e16d Python client for the service
rinetd 0.62 internet redirection server
rtpbreak 1.3a Detects, reconstructs and analyzes any RTP session
samplicator 172.4230b82 Send copies of (UDP) datagrams to multiple receivers, with optional sampling and spoofing.
scapy 2.4.3 Powerful interactive packet manipulation program written in Python (tools)
sdn-toolkit 1.21 Discover, Identify, and Manipulate SDN-Based Networks
sessionlist 6.3efc3b2 Sniffer that intents to sniff HTTP packets and attempts to reconstruct interesting authentication data from websites that do not employ proper secure cookie auth.
seth 89.42fa326 Perform a MitM attack and extract clear text credentials from RDP connections.
silk 3.18.2 A collection of traffic analysis tools developed by the CERT NetSA to facilitate security analysis of large networks.
sniffer 4.688854e Packet Trace Parser for TCP, SMTP Emails, and HTTP Cookies.
sniffles 469.118e93f A Packet Capture Generator for IDS and Regular Expression Evaluation.
snmpattack 1.8 SNMP scanner and attacking tool.
snmpcheck 1.9 A free open source utility to get information via SNMP protocols.
socat Multipurpose relay
sockstat 0.4.0 A tool to let you view information about open connections. It is similar to the tool of the same name that is included in FreeBSD, trying to faithfully reproduce as much functionality as is possible.
spiped 1.5.0 A utility for creating symmetrically encrypted and authenticated pipes between socket addresses.
sps 4.3 A Linux packet crafting tool. Supports IPv4, IPv6 including extension headers, and tunneling IPv6 over IPv4.
sslh 1.20 SSL/SSH/OpenVPN/XMPP/tinc port multiplexer
stunnel 5.55 A program that allows you to encrypt arbitrary TCP connections inside SSL
swaks 20181104.0 Swiss Army Knife SMTP; Command line SMTP testing, including TLS and AUTH
tcpcopy 1242.18eb73c A TCP stream replay tool to support real testing of Internet server applications.
tcpdstat 4.be5bd28 Get protocol statistics from tcpdump pcap files.
tcpdump 4.9.2 Powerful command-line packet analyzer
tcpextract 1.1 Extracts files from captured TCP sessions. Support live streams and pcap files.
tcpflow 1.5.2 Captures data transmitted as part of TCP connections then stores the data conveniently
tcpreplay 4.3.2 Gives the ability to replay previously captured traffic in a libpcap format
tcptrace 6.6.7 A TCP dump file analysis tool
tcptraceroute 1.5beta7 A traceroute implementation using TCP packets.
tcpwatch 1.3.1 A utility written in Python that lets you monitor forwarded TCP connections or HTTP proxy connections.
tgcd 1.1.1 TCP/IP Gender Changer Daemon utility.
thc-ipv6 3.6 Complete tool set to attack the inherent protocol weaknesses of IPv6 and ICMP6
tinc 1.0.35 VPN (Virtual Private Network) daemon
tunna 40.47877a3 a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments.
udpastcp 29.683b5e3 This program hides UDP traffic as TCP traffic in order to bypass certain firewalls.
udptunnel 19 Tunnels TCP over UDP packets.
umit 1.0 A powerful nmap frontend.
uw-offish 0.1 Clear-text protocol simulator.
websockify 833.654cbac WebSocket to TCP proxy/bridge.
xerosploit 33.2a65f3d Efficient and advanced man in the middle framework.
yaf 2.11.0 Yet Another Flowmeter.
yersinia 0.8.2 A network tool designed to take advantage of some weakness in different network protocols.
zackattack 5.1f96c14 A new tool set to do NTLM Authentication relaying unlike any other tool currently out there.
zssh 1.5c SSH and Telnet client with ZMODEM file transfer capability