資安作業常用工具筆記

**資安作業常用工具筆記** --- 更新時間:2024/08/11 主機弱掃工具 -- Tenable Nessus (付費)(家用個人免費但只能掃16個IP) https://www.tenable.com/ Rapid7 Nexpose(付費) https://www.rapid7.com/products/nexpose/ OpenVAS (OpenSource)(付費) https://medium.com/@jieshiun/%E5%A6%82%E4%BD%95%E5%9C%A8-kali-linux-%E5%AE%89%E8%A3%9D-openvas-gvm-22-4-35848c9193d3 https://medium.com/@jieshiun/%E5%A6%82%E4%BD%95%E4%BD%BF%E7%94%A8-openvas-gvm-%E9%80%B2%E8%A1%8C%E5%BC%B1%E9%BB%9E%E6%8E%83%E6%8F%8F-3c518bc923c https://web.tn.edu.tw/wp-content/blogs.dir/15/files/2012/10/open_vas_class.pdf https://tprc.tanet.edu.tw/tpnet2020/training/10911.pdf NMAP/Zenmap https://nmap.org/ 待續.. 滲透測試工具 -- Kali Linux (OpenSource) https://www.kali.org/get-kali/#kali-platforms Parrot OS (OpenSource) https://www.parrotsec.org/ Burp Suite Community Edition (OpenSource) https://portswigger.net/burp/communitydownload HackerBar (Chrome) https://chromewebstore.google.com/detail/hackerbar/fplaffnjgbolllofijjpoebjgbilgkef HackerBar (Firefox) https://addons.mozilla.org/zh-TW/firefox/addon/hackbar-free/ SQLMap https://sqlmap.org/ THC Hydra https://github.com/vanhauser-thc/thc-hydra OWASP WebGoat 8.2.2 滲透測試學習平台 https://shaurong.blogspot.com/2022/05/owasp-webgoat-822-windows-10.html DVWA: Damn Vulnerable Web Application (DVWA) https://github.com/digininja/DVWA 待續.. 黑箱檢測工具 -- Micro Focus Fortify WebInspect (付費) https://www.microfocus.com/zh-tw/cyberres/application-security/appsec-platform Acunetix | Web Application Security Scanner (付費) https://www.acunetix.com/ HCL AppScan (付費) https://www.hcl-software.com/appscan VERACODE (付費) https://www.veracode.com/ OWASP ZAP (OpenSource) https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project OWASP-WebScarab https://github.com/OWASP/OWASP-WebScarab Nikto web server scanner https://github.com/sullo/nikto Wapiti(Open Source) https://github.com/wapiti-scanner/wapiti Ratproxy(Free) https://github.com/streamingrat/ratproxy 待續.. 白箱檢測工具 -- Micro Focus Fortify SCA (付費) https://www.microfocus.com/zh-tw/cyberres/application-security/appsec-platform Checkmarx (付費) https://checkmarx.com/ Lucent Sky AVM (付費) https://www.lucentsky.com/zh VERACODE (付費) https://www.veracode.com/ Puma Scan open source project(Mozilla Public License Version 2.0)(OpenSource) https://pumasecurity.io/pricing/ https://github.com/pumasecurity/puma-scan Error List Manager 2 (ELM2)(OpenSource) https://marketplace.visualstudio.com/items?itemName=ShemeerNS.ErrorListManager2ELM2 OWASP SonarQube (OpenSource) https://www.owasp.org/index.php/OWASP_SonarQube_Project 待續.. 套件弱點檢視 -- Sonatype Nexus IQ Server (付費) https://www.sonatype.com/ Black Duck (Previously Black Duck Hub) (付費) https://community.synopsys.com/s/black-duck Mend.io (formerly WhiteSource) (付費) https://www.mend.io/ VERACODE DB (免費) https://sca.analysiscenter.veracode.com/vulnerability-database/search 待續.. 封包側錄分析工具 -- Wireshark https://www.wireshark.org/download.html 待續.. 惡意程式分析工具 -- PE Studio (免費)(付費)(靜態) https://www.winitor.com/download Ghidra(免費) https://ghidra-sre.org/ IDA Pro(付費) https://hex-rays.com/ida-pro/ IDA Free(免費) https://hex-rays.com/ida-free/ x64dbg(免費) https://x64dbg.com/ WinDbg(免費) https://learn.microsoft.com/zh-tw/windows-hardware/drivers/debugger/ Immunity Debugger(免費) https://github.com/kbandla/ImmunityDebugger Microsoft Sysinternals(免費) https://learn.microsoft.com/zh-tw/sysinternals/ 待續.. Logger -- Micro foucs ArcSight Logger https://www.microfocus.com/zh-tw/support/ArcSight%20Logger Splunk (免費)(付費) https://www.splunk.com/zh_tw ELK https://logz.io/blog/elk-stack-windows/ Graylog https://graylog.org/ Logstash https://www.elastic.co/logstash Logz.io Log Management Community Edition https://logz.io/ SolarWinds Kiwi Syslog Server Free Edition https://www.solarwinds.com/free-tools/kiwi-free-syslog-server VMware Aria Operations for Logs(付費) https://www.vmware.com/products/cloud-infrastructure/aria-operations-for-logs 待續.. **SIEM** --- Micro foucs Arcsight ESM (付費) https://www.microfocus.com/zh-tw/cyberres/secops/arcsight-esm IBM QRadar (付費) https://www.ibm.com/products/qradar-siem IBM QRadar Community (免費) https://www.ibm.com/community/101/qradar/ce/ Splunk Enterprise (免費)(付費) https://www.splunk.com/en_us/products/splunk-enterprise.html AlienVault OSSIM (免費)(付費) https://cybersecurity.att.com/products/ossim Wazuh(免費)(付費) https://wazuh.com/ 待續.. **情資平台** -- AlienVault OTX https://otx.alienvault.com/browse/global/pulses?include_inactive=0&sort=-modified&page=1&limit=10 IBM X-Force Exchange https://exchange.xforce.ibmcloud.com/ Cisco Talos https://talosintelligence.com/reputation_center shodan.io https://www.shodan.io/ Zoomeye https://www.zoomeye.hk/ Censys https://search.censys.io/ Virustotal https://www.virustotal.com/gui/home/upload 待續.. **線上沙箱** --- virustotal https://www.virustotal.com/gui/home/upload falcon analysys https://www.hybrid-analysis.com/ ANY.RUN https://any.run/ Cuckoo Sandbox https://cuckoo.cert.ee/ JOeSandBOX https://www.joesandbox.com/#windows MOBSF (Android/ios app) https://mobsf.live/ Koodus(Android/ios app) https://koodous.com/ 待續.. **沙箱** --- FLARE-VM https://github.com/mandiant/flare-vm Cuckoo Sandbox https://github.com/cuckoosandbox 待續.. **防火牆** -- pfSense https://www.pfsense.org/download/ OPNsense https://opnsense.org/download/ **IPS/IDS/IDP** -- Suricata https://suricata.io/ Snort https://www.snort.org/ Security Onion https://securityonionsolutions.com/ **WAF** -- NAXSI https://github.com/nbs-system/naxsi ModSecurity https://owasp.org/blog/2024/01/09/ModSecurity.html AQTRONiX WebKnight https://www.aqtronix.com/?PageID=99 ESAPI Web Application Firewall (WAF) https://owasp.org/www-project-enterprise-security-api/ OpenWAF https://github.com/titansec/OpenWAF/tree/master Ironbee https://github.com/ironbee/ironbee BunkerWeb https://github.com/bunkerity/bunkerweb 網路監控工具 -- Zabbix(免費) https://www.zabbix.com/ Observium(免費)(付費) https://www.observium.org/ WhatsUp Gold(付費) https://www.whatsupgold.com/tw ManageEngine OpManager(付費) https://www.manageengine.com/tw/network-monitoring/ Cacti(免費)(付費) https://www.cacti.net/ Nagios(免費) https://www.nagios.org/