Packages that scan selected systems for vulnerabilities or information about the network


Tool count: 136

BlackArch networking
Name Version Description Homepage
afpfs-ng 0.8.1 A client for the Apple Filing Protocol (AFP)
aiengine 767.7af84e97 A packet inspection engine with capabilities of learning without any human intervention.
apacket 285.2e0b273 Sniffer syn and backscatter packets.
argus 3.0.8.2 Network monitoring tool with flow control.
argus-clients 3.0.8.2 Network monitoring client for Argus.
arp-scan 1.9 A tool that uses ARP to discover and fingerprint IP hosts on the local network
arpalert 2.0.12 Monitor ARP changes in ethernet networks.
arptools 13.41cdb23 A simple tool about ARP broadcast, ARP attack, and data transmission.
arpwner 26.f300fdf GUI-based python tool for arp posioning and dns poisoning attacks.
atftp 0.7.1 Client/server implementation of the TFTP protocol that implements RFCs 1350, 2090, 2347, 2348, and 2349
bind-tools 9.13.0 The ISC DNS tools
bro 2.5.4 A powerful network analysis framework that is much different from the typical IDS you may know.
bro-aux 0.39 Handy auxiliary programs related to the use of the Bro Network Security Monitor (https://www.bro.org/).
buttinsky 138.1a2a1b2 Provide an open source framework for automated botnet monitoring.
cadaver 0.23.3 Command-line WebDAV client for Unix
chaosreader 0.94 A freeware tool to trace tcp, udp etc. sessions and fetch application data from snoop or tcpdump logs.
chopshop 406.82ce7b6 Protocol Analysis/Decoder Framework.
cidr2range 0.9 Script for listing the IP addresses contained in a CIDR netblock
creak 40.52b0d74 Poison, reset, spoof, redirect MITM script.
cyberscan 72.7da9ba4 A Network Pentesting Tool
depdep 2.0 A merciless sentinel which will seek sensitive files containing critical info leaking through your network.
det 31.417cbce (extensible) Data Exfiltration Toolkit.
dhcpoptinj 45.ec80d98 DHCP option injector.
dinouml 0.9.5 A network simulation tool, based on UML (User Mode Linux) that can simulate big Linux networks on a single PC
dnsdiag 209.d3a1fd2 DNS Diagnostics and Performance Measurement Tools.
dnsfilexfer 24.126edcd File transfer via DNS.
dnsteal 23.9b3b929 DNS Exfiltration tool for stealthily sending files over DNS requests..
dripcap 0.6.15 Caffeinated Packet Analyzer.
dtp-spoof 4.4b2df1b Python script/security tool to test Dynamic Trunking Protocol configuration on a switch.
dump1090 386.bff92c4 A simple Mode S decoder for RTLSDR devices.
etherape 0.9.18 Graphical network monitor for various OSI layers and protocols
exabgp 4193.793a2931 The BGP swiss army knife of networking.
filibuster 167.c54ac80 A Egress filter mapping application with additional functionality.
firecat 6.b5205c8 A penetration testing tool that allows you to punch reverse TCP tunnels out of a compromised network.
flowinspect 97.34759ed A network traffic inspection tool.
fping 4.0 A utility to ping multiple hosts at once
freeipmi 1.5.7 Sensor monitoring, system event monitoring, power control, and serial-over-LAN (SOL).
geoip 1.6.11 Non-DNS IP-to-country resolver C library & utils
gwcheck 0.1 A simple program that checks if a host in an ethernet network is a gateway to Internet.
haka 0.2.2 A collection of tool that allows capturing TCP/IP packets and filtering them based on Lua policy files.
hharp 1beta This tool can perform man-in-the-middle and switch flooding attacks. It has 4 major functions, 3 of which attempt to man-in-the-middle one or more computers on a network with a passive method or flood type method.
hping 3.0.0 A command-line oriented TCP/IP packet assembler/analyzer.
http-traceroute 0.5 This is a python script that uses the Max-Forwards header in HTTP and SIP to perform a traceroute-like scanning functionality.
httping 2.5 A ping-like tool for http-requests
hyde 11.ec09462 Just another tool in C to do DDoS (with spoofing).
hyenae 0.36_1 flexible platform independent packet generator
hyperfox 66.3256937 A security tool for proxying and recording HTTP and HTTPs traffic.
ipaudit 1.1 Monitors network activity on a network.
ipdecap 92.2d6642a Can decapsulate traffic encapsulated within GRE, IPIP, 6in4, ESP (ipsec) protocols, and can also remove IEEE 802.1Q (virtual lan) header.
ipmitool 1.8.18 Command-line interface to IPMI-enabled devices
iputils 20161105.1f2bb12 Network monitoring tools, including ping
jnetmap 0.5.3 A network monitor of sorts
kickthemout 199.7930fef Kick devices off your network by performing an ARP Spoof attack.
latd 1.31 A LAT terminal daemon for Linux and BSD.
loic 2.9.9.99 An open source network stress tool for Windows.
macchanger 1.7.0 A small utility to change your NIC's MAC address
maclookup 0.4 Lookup MAC addresses in the IEEE MA-L/OUI public listing.
maketh 0.2.0 A packet generator that supports forging ARP, IP, TCP, UDP, ICMP and the ethernet header as well.
malcom 708.02e55b9 Analyze a system's network communication using graphical representations of network traffic.
mdns-scan 0.5 Scan mDNS/DNS-SD published services on the local network.
middler 1.0 A Man in the Middle tool to demonstrate protocol middling attacks.
moloch 0.11.3 An open source large scale IPv4 full PCAP capturing, indexing and database system.
mptcp 1.9.0 A tool for manipulation of raw packets that allows a large number of options.
mptcp-abuse 6.b0eeb27 A collection of tools and resources to explore MPTCP on your network. Initially released at Black Hat USA 2014.
mtr 0.92 Combines the functionality of traceroute and ping into one tool (CLI version)
mylg 656.616fd53 Network Diagnostic Tool.
nacker 23.b67bb39 A tool to circumvent 802.1x Network Access Control on a wired LAN.
nbtool 2.bf90c76 Some tools for NetBIOS and DNS investigation, attacks, and communication.
ncpfs 2.2.6 Allows you to mount volumes of NetWare servers under Linux.
nemesis 190.b355ad5 A command-line network packet crafting and injection utility.
netcon 0.1 A network connection establishment and management script.
netmap 0.1.3 Can be used to make a graphical representation of the surounding network.
netreconn 1.78 A collection of network scan/recon tools that are relatively small compared to their larger cousins.
netsed 1.2 Small and handful utility design to alter the contents of packets forwarded thru network in real time.
networkmap 58.f5faf17 Post-exploitation network mapper.
nextnet 3.c8dc7a6 Pivot point discovery tool.
nfdump 1.6.13 A set of tools to collect and process netflow data.
ngrep 1.47 A grep-like utility that allows you to search for network packets on an interface.
nield 0.6.1 A tool to receive notifications from kernel through netlink socket, and generate logs related to interfaces, neighbor cache(ARP,NDP), IP address(IPv4,IPv6), routing, FIB rules, traffic control.
nsdtool 0.1 A netgear switch discovery tool. It contains some extra features like bruteoforce and setting a new password.
nsoq 1.9.5 A Network Security Tool for packet manipulation that allows a large number of options.
packet-o-matic 351 A real time packet processor. Reads the packet from an input module, match the packet using rules and connection tracking information and then send it to a target module.
packeth 1.8.1 A Linux GUI packet generator tool for ethernet.
packetq 206.8fba027 A tool that provides a basic SQL-frontend to PCAP-files.
packetsender 344.81f7111 An open source utility to allow sending and receiving TCP and UDP packets.
packit 1.0 A network auditing tool. Its value is derived from its ability to customize, inject, monitor, and manipulate IP traffic.
pcapfex 1.0 Packet CAPture Forensic Evidence eXtractor.
pcapfix 1.1.1 Tries to repair your broken pcap and pcapng files.
pkt2flow 1.3 A simple utility to classify packets into flows.
pmacct 2364.b96f8aa6 Small set of multi-purpose passive network monitoring tools [NetFlow IPFIX sFlow libpcap BGP BMP IGP Streaming Telemetry].
prometheus 176.a316d66 A Firewall analyzer written in ruby
pwnat 13.5de412c A tool that allows any number of clients behind NATs to communicate with a server behind a separate NAT with *no* port forwarding and *no* DMZ setup on any routers in order to directly communicate with each other.
pyersinia 49.73f4056 Network attack tool like yersinia but written in Python.
pyexfil 71.03a91a4 A couple of beta stage tools for data exfiltration.
pyminifakedns 0.1 Minimal DNS server written in Python; it always replies with a 127.0.0.1 A-record.
python-python-cymruwhois 30.022e16d Python client for the whois.cymru.com service
rinetd 0.62 internet redirection server
rtpbreak 1.3a Detects, reconstructs and analyzes any RTP session
samplicator 170.37e0e90 Send copies of (UDP) datagrams to multiple receivers, with optional sampling and spoofing.
scapy 2.4.0 Powerful interactive packet manipulation program written in Python (tools)
sdn-toolkit 1.21 Discover, Identify, and Manipulate SDN-Based Networks
sessionlist 1.0 Sniffer that intents to sniff HTTP packets and attempts to reconstruct interesting authentication data from websites that do not employ proper secure cookie auth.
silk 3.17.2 A collection of traffic analysis tools developed by the CERT NetSA to facilitate security analysis of large networks.
sniffer 4.688854e Packet Trace Parser for TCP, SMTP Emails, and HTTP Cookies.
sniffles 3.4.0 A Packet Capture Generator for IDS and Regular Expression Evaluation.
snmpattack 1.8 SNMP scanner and attacking tool.
snmpcheck 1.8 A free open source utility to get information via SNMP protocols.
socat 1.7.3.2 Multipurpose relay
sockstat 0.3 A tool to let you view information about open connections. It is similar to the tool of the same name that is included in FreeBSD, trying to faithfully reproduce as much functionality as is possible.
spiped 1.5.0 A utility for creating symmetrically encrypted and authenticated pipes between socket addresses.
sps 4.3 A Linux packet crafting tool. Supports IPv4, IPv6 including extension headers, and tunneling IPv6 over IPv4.
sslh 1.19c SSL/SSH/OpenVPN/XMPP/tinc port multiplexer
stunnel 5.48 A program that allows you to encrypt arbitrary TCP connections inside SSL
swaks 20170101.0 Swiss Army Knife SMTP; Command line SMTP testing, including TLS and AUTH
tcpcopy 1235.304dc4e A TCP stream replay tool to support real testing of Internet server applications.
tcpdstat 4.be5bd28 Get protocol statistics from tcpdump pcap files.
tcpdump 4.9.2 Powerful command-line packet analyzer
tcpextract 1.1 Extracts files from captured TCP sessions. Support live streams and pcap files.
tcpflow 1.4.5 Captures data transmitted as part of TCP connections then stores the data conveniently
tcpreplay 4.2.6 Gives the ability to replay previously captured traffic in a libpcap format
tcptraceroute 1.5beta7 A traceroute implementation using TCP packets.
tcpwatch 1.3.1 A utility written in Python that lets you monitor forwarded TCP connections or HTTP proxy connections.
tgcd 1.1.1 TCP/IP Gender Changer Daemon utility.
thc-ipv6 3.4 Complete tool set to attack the inherent protocol weaknesses of IPv6 and ICMP6
tinc 1.0.33 VPN (Virtual Private Network) daemon
tunna 36.fce0488 a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments.
udp2raw-tunnel 606.16de522 An Encrpyted, Anti-Replay, Multiplexed Udp Tunnel, tunnels udp traffic through fake-tcp or icmp by using raw socket.
udpastcp 28.86479c0 This program hides UDP traffic as TCP traffic in order to bypass certain firewalls.
udptunnel 19 Tunnels TCP over UDP packets.
umit 1.0 A powerful nmap frontend.
uw-offish 0.1 Clear-text protocol simulator.
websockify 0.8.0 WebSocket to TCP proxy/bridge.
xerosploit 28.b5dad87 Efficient and advanced man in the middle framework.
yaf 2.9.3 Yet Another Flowmeter.
yersinia 0.8.2 A network tool designed to take advantage of some weakness in different network protocols.
zackattack 5.1f96c14 A new tool set to do NTLM Authentication relaying unlike any other tool currently out there.