Penetration Testing
SpiderFoot 2.0 released May 10 2013 06:28PM
Steve Micallef (steve binarypool com)
Hi everyone,

SpiderFoot is a free, open-source footprinting tool, enabling you to
perform various scans against a given domain name in order to obtain
information such as sub-domains, e-mail addresses, owned netblocks, web
server versions and so on. The main objective of SpiderFoot is to
automate the footprinting process to the greatest extent possible,
freeing up a penetration tester's time to focus their efforts on the
security testing itself.

Grab it from:

New in this release, which is actually a complete re-write of the
version from 2005(!):
- Now runs on Windows as well as Linux, Solaris, *BSD (basically
anything with Python should be fine)
- Scans are even more configurable than before
- All scan data stored locally in an SQLite database for querying,
reporting and analysis
- Many more scans/tests included (GeoIP, URL linkage, web
technology, port scans...)
- You can now easily extend functionality by writing your own
modules in Python
- Completely new user interface, which is now entirely web-based
- Configuration state is stored between runs
- Scanning can be remotely controlled

I hope you find it useful, and if you have any suggestions/complaints,
feel free to contact me.




This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus