Use Cases For Tools

Question 1

Reconnaissance (Use Cases)

Answer 1

*Whois, Nslookup, Theharvester, Shodan, Recon-NG, Censys, Aircrack-NG, Kismet, WiFite(2), Wireshark, Hing, SET, Nmap, Metasploit framework

Question 2

Enumeration (Use Cases)

Answer 2

*Nslookup, wireshark, Hping, nmap

Question 3

Vulnerability Scanning (Use Cases)

Answer 3

• Nikto, OpenVas, Nessue, SQLmap, W3AF, OWASP, ZAP, nmap, metasploit framework

Question 4

Credential Attacks (Use Cases)

Answer 4

• Offline password cracking - john the ripper, mimikatz, cain and abel, hishcat, aircrack-ng
• Brute Forcing - SQLmap (databases), Medusa, Hydra, W3AF, miimkatz, cain and abel, patator, aircrack-ng

Question 5

Persistence (Use Cases)

Answer 5

• SET, BeEF, SSH, NCAT, NETCAT, Drozer, Powersploit, Empire, Metaploit Framework

Question 6

Configuration Compliance (Use Cases)

Answer 6

• Nikto, OpenVAS, nessus, SQLmap, nmap

Question 7

Evasion (Use Cases)

Answer 7

*proxychains, SET, metasploit, route

Question 8

Decompilation (Use Cases)

Answer 8

*IDA, hopper, immunity debugger, APK studio, APKX

Question 9

Forensics (Use Cases)

Answer 9

• foremost, FTK, EnCase, Tableau

Question 10

Debugging

Answer 10

*Ollydbg, Immunity Debugger, GDB, WinDBG, IDA Pro, APK Studio, APKX

Question 11

Software Assurance (Use Cases)

Answer 11

• Fuzzing - peach and AFL
• Security Testing - Static App Testing SAT, Dynamic App Testing DAT, findsecbugs, SonarQuba, YASCA (Yet another source code analyzer)