Tools & Utilities

This page provides links to some of our free testing tools shared with the security community.


CURRENT VERSION: 0.1a (Download)
AirJack is a device driver (or suit of device drivers) for 802.11(a/b/g) raw frame injection and reception. It is ment as a development tool for all manner of 802.11 applications that need to access the raw protocol.

This is a modified version of the original AirJack made to to work with 2.6.x version of linux kernels. The code is still raw and might have bugs. It has been tested to work with Fatajack, WepWedgie and File2Air. For installation please follow the instructions in README file.

Cisco torch

CURRENT VERSION: 0.4b (Download)

Cisco Torch mass scanning, fingerprinting, and exploitation tool was written while working on the next edition of the "Hacking Exposed Cisco Networks", since the tools availalbe on the market could not meet our needs.

The main feature that makes Cisco-torch different from similar tools is the extensive use of forking to launch multiple scanning processes on the background for maximum scanning efficiency. Also, it uses several methods of application layer fingerprinting simultaneously, if needed. We wanted something fast to discover remote Cisco hosts running Telnet, SSH, Web, NTP and SNMP services and launch dictionary attacks against the services discovered.

SNMP fuzzer

CURRENT VERSION: 0.1.1 (Download)
SNMP fuzzer uses Protos test cases with an entirely new engine written in Perl. It provides efficient methods of determining which test case has caused a fault, offers more testing granularity and a friendlier user interface. Happy vulnerability searching.

NTP fingerprinting utility

CURRENT VERSION: 0.1a (Download)
ntp-fingerptint is an active fingerprinting utility specifically designed to identify the OS the NTP server is running on.

TFTP bruteforcer

CURRENT VERSION: 0.1 (Download)

TFTP-bruteforcer is a fast multithreaded TFTP config filename bruteforcer.


CURRENT VERSION: 0.1 (Download)

This is a custom EIGRP packet generator and sniffer developed to test the security and overall operation quality of this brilliant Cisco routing protocol. Using this tool requires a decent level of knowledge of EIGRP operations, packets structure and types, as well as the Layer 3 topology of an audited network.


CURRENT VERSION: 0.1 (Download)

This is the IOS binary image packing and unpacking program capable of calculating a correct checksum for these images.

PIX Checksum DoS

CURRENT VERSION: 0.1 (Download)

This is a proof of concept program that demonstrates the vulnerability of Cisco PIX devices to a Denial of Service attack using a spoofed bad checksum packet.