Top Penetration Testing Tools

What Are Some of the Best Penetration Testing Tools You Should be Using?

Alec Auer, Falanx Cyber, conducts various types of penetration and compliance testing, including web application, internal infrastructure, email phishing, and Cyber Essentials. He has also achieved the Offensive Security Certified Professional (OSCP) qualification and is a CREST Registered Tester. Alec shares some of his top penetration testing tools.

The number of penetration testing tools, both open-source and commercial, is vast. However, over the years I have narrowed them down to the necessary essentials which can be used for almost any penetration test.

Each tool can serve multiple purposes and have a variety of uses; however, they stand out in certain categories and are my first option for penetration tests as a result. While other options are available, these are the ones I’ve personally found effective and easy-to-use.

Port Scanning

The first stage of a penetration test is to determine the attack surface and for this I like to use the Nmap port scanner.

Not only can it perform different port scans, it has an added scripting engine that gives a significant amount of information about open services.

The output of scans is also in several useful formats that can be manipulated and combined with other tools, and since it’s quite popular there are lots of additional plugins that have been developed for increased functionality.

Vulnerability Scanning

To help make penetration tests more time-efficient, a vulnerability scanner is essential. I tend to choose Nessus as it is straightforward to use and has different vulnerability scans for an added level of flexibility, depending on the test.

The scan is quick, provides an easy-to-read output and also has a good coverage of vulnerability plugins. This, plus Nmap, will be my first stage of a penetration test to find some juicy targets ripe for exploitation.

Read the full article

Click to view all articles for the EPIC: FLX
Or click to view the full company profile:
Falanx Group Ltd

Exploring Vanadium Flow Batteries for energy storage solutions

26th February 2024

Solar power only works during the day, and wind turbines only produce electricity when they are spinning, so energy storage is necessary to provide a reliable renewable power grid that eliminates the greenhouse gas (GHG) emissions

How to develop a data infraction response plan

4th July 2023

A dating breach response plan outlines how an economy be respond to a breach. Follow these five steps, both use our free template to develop your organization’s plan. Data breaches happen at all organizations. Even the

Cyber security: An insight into the business of keeping people safe

14th April 2023

Cyber security, surveillance and data storage are all sectors seeing spectacular growth. But in an increasingly tense and complex world – how secure should CEOs really feel? Life in our internet-enabled, hyper-connected world can feel scary

Thwarting the most advanced cyber threats

6th January 2023

Cyber security is no longer what it used to be. That’s because cyber threats have become more persistent, sophisticated and voluminous, and the switch to hybrid working has only accelerated this trend. Rob Shapland from Falanx

Inspecs has eyes-on Security 24/7/365

13th December 2022

Background Inspecs Group Plc is global leader producing large volumes of high quality eyewear for fashion, sports, lifestyle brands and patented concept eyewear. The Inspecs group of companies produce in-house for a global network of distribution to

Don’t let hackers ruin your holidays

9th December 2022

Holidays are approaching and now is the time of year when IT staff and business owners start to wind down. But this is the busy season for ‘holiday hackers’. The week prior to and during Christmas

Falanx Group further progress in sales with good order growth

8th December 2022

Falanx Group Ltd (LON:FLX), the AIM listed provider of cyber security services, has announced its interim results for the six months ended 30 September 2022. Financial Highlights for six months to 30 September 2022 • Orders for our core

Hospitals are at a high risk of cyberattacks

2nd December 2022

Are Hospitals at a High Risk of cyberattacks? Yes, they are! Since they store sensitive data and usually have weak cyber defences. Thus, putting Digital Health at stake. Even the pandemic has raised the increase in the rate of cyberattacks on Hospitals

How to avoid the $1 million bill of a ransomware attack

29th November 2022

Your business will be targeted by a cybercriminal this year. That’s not an exaggeration, or even a scare tactic. Unfortunately, it is the harsh reality: 61% of mid-sized businesses (the most popular target for hackers) experienced a cyberattack last

Finalists at the Cyber Security Awards 2022

22nd November 2022

Falanx Group are delighted to have 2 finalists at the Cyber Security Awards, 2022 being held at One Moorgate Place, London! Nicola Hartland, Chief Revenue Officer, is finalist in the category Woman of the Year. Rob Shapland,

Car retail sector must bolster cyber defences as attack threat ramps-up

18th November 2022

RSM has urged car dealers across the UK to prioritise enhanced cyber security in response to increasing concern around the number of cyber-attacks across the sector. Its advice comes just weeks after AM100 PLC Pendragon revealed that

Charities Cyber Essentials fortnight 7-18th November

15th November 2022

Cyber criminals are attracted to money. And that makes charities – and the information they hold – a target. Data on beneficiaries, supporters and volunteers as well as information on invoice and payment details can be

Most Inspiring Women in Cyber awards 2022

8th November 2022

The nominations for the Most Inspiring Women in Cyber awards are out! It’s always wonderful to read about the incredible women in our industry, who are making fantastic contributions and paving the way for others. In

Almost half of Irish SMEs hit by multiple cyber attacks

3rd November 2022

Almost half of Irish small and medium businesses have experienced multiple cyber attacks in the last three years, according to a new study. The study from Microsoft and Vodafone states that the average financial loss per

Falanx Group’s William Kilmer on the importance of cybersecurity (LON:FLX)

31st October 2022

Falanx Group’s William Kilmer discusses his background, the importance of cybersecurity, how he sees the industry evolving and how his knowledge and background will benefit the company in this exclusive interview with DirectorsTalk.

Falanx Group appoints veteran cyber entrepreneur and VC investor to Board of Directors

26th October 2022

Falanx Group, an AIM-listed cyber provider of market-leading cybersecurity services, has appointed veteran cyber entrepreneur and established venture capital investor. William Kilmer, as an independent Non-Executive Director. The appointment is a major statement of intent for

Falanx Group William Kilmer says “its a bright future for managed security” (VIDEO)

19th October 2022

Falanx Group plc (LON:FLX) new independent Non-Executive Director William Kilmer joins DirectorsTalk Interviews to discuss his new role in the company. William provides us with some details around his knowledge and extensive background in the sector, the importance and need

Falanx Group strengthens Board with new appointments

18th October 2022

Falanx Group Ltd (LON:FLX), the AIM listed provider of cyber security services, has announced the appointment of William Kilmer as an independent Non-Executive Director and Richard “Rick” Flood as an Executive Director and with immediate effect.

Be sure to check our sister interview main ratings news website