Hi guys...
I am looking for tools to hack websites...
Of course, i'll use them to find out my webserver exploits.
and thanks beforehand.
Printable View
Hi guys...
I am looking for tools to hack websites...
Of course, i'll use them to find out my webserver exploits.
and thanks beforehand.
This post is going to be one I can see flammed because of it's content, but keep in mind future posters that he did say it was to test out his own security
I recommend checking out Nstealth, as it is BUILT primarily for web server checks and exploitation testing across 9 different web servers and their versions. A free version is avaliable, and I can say from experience it is a devestating program when it comes to showing you what holes you have in your own security.
http://www.nstalker.com/nstealth/
i just need to make a comment here. Sorry for any offences.
you cant predict anyone's intentions, but yes sometimes to stop exploits you need to learn about them too..
Quote:
Originally posted here by Wesam
Hi guys...
I am looking for tools to hack websites...
Of course, i'll use them to find out my webserver exploits.
and thanks beforehand.
MUCH better wording:
I am interested in checking my websites security from the outside. Does anyone recommend a tool I might use?
Now, you STARTED your statement with I am looking for tools to hack websites... then ADDED you want to find your servers exploits.
If you are looking to find server exploits simply read up on them. If you are looking to test your patches, thats a different matter altogether.
Sorry if I seem harsh, but I dont buy it.
not for a second.
and your signature... are you telling us to be wary of our computers signature or telling us to fear those who enforce security?
I fear avenger may be right...
however, giving you a tiny benefit of the doubt, check out Nikto
http://www.cirt.net/code/nikto.shtml
Its a fairly noisy tool so if you do not have good intentions there is a good chance you will be caught when you use it.
If you actually want to buy some tools then there are several good ones to use:
SPIdynamics Webinspect : http://www.spidynamics.com/
Sanctum Appscan: http://www.sanctuminc.com/
Kavado Scando : http://kavado.com/
I"m not going to even my APs on this one...but, giving you the benefit of a doubt too, although my instinct tells me to go with avenger...here's some more knowledge for you.
Check basic security first. I.E. look for any human error first before you get into tools. FTP to the website and see it if has an FTP folder, and see if there's a username/password to it and if you can connect anonymously. Check if you can figure out some of the folders of the website, I.E. http://www.hotmail.com might keep all its graphics on http://www.hotmail.com/graphics . NOW, I seriously dont think you're doing this with any good intentions so i'll just stop...and sit back and enjoy you getting flamed to death. I'm curioius how fast your little grey dot will turn into red.
PS. READ READ READ
cheers,
ROTFL, great way to put it :)Quote:
Its a fairly noisy tool so if you do not have good intentions there is a good chance you will be caught when you use it.
seriously, made me chuckle :)
:)
well, I thought that was the best way to warn him of the dangers if he has evil actions in mind...
Bah, nicer than me... since he claims, and would have us believe, he isnt going to use it for malicious intents, he shouldnt worry about it ;)
I say he wants to hack? let him. Just dont come crying when bubba is "hacking" him.
in his first post he asks how hackers hide their ip, in his second and third you can see hes followed advice given rather well and is now recommeding proxies that even "hide your identy from isps" which i guess is what he was looking for. Now hes asking for tools to hack a websites.
your a smart guy Wesam but i believe your up to no good. so smart or not your still a wanna be skript kiddie in my book and i for one WILL use you to even my points.