User:Kanonkas/Tools

From Wikimedia Commons, the free media repository
Jump to: navigation, search

Get Linux[edit]

Use a Linux distro such as Ubuntu, OpenSUSE, Knoppix (security distro). Unofficial distros: BackTrack (Best security distro available for the public), nUbuntu (security distro).

You can try FreeBSD too (which is a good OS for security). (Not linux)

Range block calculators[edit]

When doing rangeblocks, use these calculators: [1], [2], [3], [4], [5]
Check the range(s) using CIDR, you can try using /16 /27 or /32.
Get ip ranges for a country, this is really dangerous you can block a whole country with the information you get there.
Example below
CIDR
IP/CIDR Δ to last IP addr Mask Hosts (*) Class Notes
a.b.c.d/32 +0.0.0.0 255.255.255.255 1 1/256 C
a.b.c.d/31 +0.0.0.1 255.255.255.254 2 1/128 C d = 0 ... (2n) ... 254
a.b.c.d/30 +0.0.0.3 255.255.255.252 4 1/64 C d = 0 ... (4n) ... 252
a.b.c.d/29 +0.0.0.7 255.255.255.248 8 1/32 C d = 0 ... (8n) ... 248
a.b.c.d/28 +0.0.0.15 255.255.255.240 16 1/16 C d = 0 ... (16n) ... 240
a.b.c.d/27 +0.0.0.31 255.255.255.224 32 1/8 C d = 0 ... (32n) ... 224
a.b.c.d/26 +0.0.0.63 255.255.255.192 64 1/4 C d = 0, 64, 128, 192
a.b.c.d/25 +0.0.0.127 255.255.255.128 128 1/2 C d = 0, 128
a.b.c.0/24 +0.0.0.255 255.255.255.000 256 1 C
a.b.c.0/23 +0.0.1.255 255.255.254.000 512 2 C c = 0 ... (2n) ... 254
a.b.c.0/22 +0.0.3.255 255.255.252.000 1,024 4 C c = 0 ... (4n) ... 252
a.b.c.0/21 +0.0.7.255 255.255.248.000 2,048 8 C c = 0 ... (8n) ... 248
a.b.c.0/20 +0.0.15.255 255.255.240.000 4,096 16 C c = 0 ... (16n) ... 240
a.b.c.0/19 +0.0.31.255 255.255.224.000 8,192 32 C c = 0 ... (32n) ... 224
a.b.c.0/18 +0.0.63.255 255.255.192.000 16,384 64 C c = 0, 64, 128, 192
a.b.c.0/17 +0.0.127.255 255.255.128.000 32,768 128 C c = 0, 128
a.b.0.0/16 +0.0.255.255 255.255.000.000 65,536 256 C = 1 B
a.b.0.0/15 +0.1.255.255 255.254.000.000 131,072 2 B b = 0 ... (2n) ... 254
a.b.0.0/14 +0.3.255.255 255.252.000.000 262,144 4 B b = 0 ... (4n) ... 252
a.b.0.0/13 +0.7.255.255 255.248.000.000 524,288 8 B b = 0 ... (8n) ... 248
a.b.0.0/12 +0.15.255.255 255.240.000.000 1,048,576 16 B b = 0 ... (16n) ... 240
a.b.0.0/11 +0.31.255.255 255.224.000.000 2,097,152 32 B b = 0 ... (32n) ... 224
a.b.0.0/10 +0.63.255.255 255.192.000.000 4,194,304 64 B b = 0, 64, 128, 192
a.b.0.0/9 +0.127.255.255 255.128.000.000 8,388,608 128 B b = 0, 128
a.0.0.0/8 +0.255.255.255 255.000.000.000 16,777,216 256 B = 1 A
a.0.0.0/7 +1.255.255.255 254.000.000.000 33,554,432 2 A a = 0 ... (2n) ... 254
a.0.0.0/6 +3.255.255.255 252.000.000.000 67,108,864 4 A a = 0 ... (4n) ... 252
a.0.0.0/5 +7.255.255.255 248.000.000.000 134,217,728 8 A a = 0 ... (8n) ... 248
a.0.0.0/4 +15.255.255.255 240.000.000.000 268,435,456 16 A a = 0 ... (16n) ... 240
a.0.0.0/3 +31.255.255.255 224.000.000.000 536,870,912 32 A a = 0 ... (32n) ... 224
a.0.0.0/2 +63.255.255.255 192.000.000.000 1,073,741,824 64 A a = 0, 64, 128, 192
a.0.0.0/1 +127.255.255.255 128.000.000.000 2,147,483,648 128 A a = 0, 128
0.0.0.0/0 +255.255.255.255 000.000.000.000 4,294,967,296 256 A

Open proxies[edit]

When checking proxies, use nmap and try to connect through a specific port. Most of the time port 80 is enabled. You may want to use this script (only for unix systems, e.g. Ubuntu).
You can use this nmap command: nmap -PN -T Aggressive -A -v -sV target
WHOIS.
Check contribs on all wikis.
Open proxy detection
Wikipedia:Open proxy detection
w:Category:Open proxies blocked on Wikipedia -> Don't use this, the proxies there can be out of date, checking it yourself is better.
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html SSH client. Caution is advised when connecting to other hosts. Most of the time you connect through port 20.
Ports you can try out: 80, 200, 3128, 6588, 8000 and 8080.
  • Example below on how to catch one using your browser
This HTTP proxy can be used by changing your web browser settings. For Firefox, go to Tools > Options > Advanced > Network > Settings > Manual proxy configuration > Enter "170.210.215.253" next to "HTTP Proxy" and "3128" next to "Port" and save settings. If you can browse the net, you've got an open proxy.

Open proxy tools[edit]

http://ping.eu/proxy/
http://www.domaintools.com/reverse-ip/
http://www.whosonmyserver.com/
http://www.robtex.com/ip/ good info here.
http://www.stic-online.de/stic/html/open-proxy-check.html
http://www.senderbase.org/ can also be used for spam, also suppports CIDR ranges.
http://google.com/gwt/n Google web accelerator

Open proxy lists[edit]

http://proxy.org/proxies_sorted2.shtml
http://proksi.hash.es/
http://www.bjaodn.org/wiki/MediaWiki:Openproxylist proxy list to see, a lot of proxies there.
http://www.ip-adress.com/Proxy_Checker/ not very good as a tool but can be a good place to find a lot of proxies
http://www.aliveproxy.com/proxy-checker/ same with this tool, not very useful, the above one is better.

TOR[edit]

Zombie proxy[edit]

Spam[edit]

Packet sniffers[edit]

Port scanner[edit]

Vulnerability scanners[edit]

Vulnerability exploitation tools[edit]

Other tools[edit]