Pentesting Tools

Question 1

Command to delete or clear all the entries from bash history

Answer 1

history -c

Question 2

A part of PowerShell used for monitoring Remote Window devices

Answer 2

WMI (Window Management Instrumentation)

Question 3

Utility provides a complete security auditing and attack framework designed exclusively for mobile devices running the Android operating system

Answer 3

Drozer

Question 4

hping flag for sending SYN traffic

Answer 4

-S

Question 5

Two tools used for performing fuzzing on an application

Answer 5

AFL and Peach

Question 6

• Used to conduct brute-force password attacks

- Can be used to compromise a variety of network services, such as FTP, SNMP, and SSH servers

Answer 6

Patator

Question 7

Python wrapper that can extract Java source code directly from an Android APK executable

Answer 7

Android APK Decompilation for the Lazy (APKX)

Question 8

Tool that can be used to perform static application security testing (SAST) or dynamic application security testing (DAST) as part of software assurance.

Answer 8

Findsecbugs

Question 9

nmap flag used to send scans from a spoofed IP address

Answer 9

-D

Question 10

nmap flag used to scan a specified number of random hosts

Answer 10

-iR

Question 11

nmap flag used to scan a host (or an entire subnet) without actually discovering hosts

Answer 11

-Pn

Question 12

nmap flag used to discover hosts, but not actually scan any of their ports.

Answer 12

-sn

Question 13

nmap flag used to scan the specified range of IP addresses for hosts. It then lists targets to scan

Answer 13

-sL