天空极速

Packet Shaper:
Nemesis: a command line packet shaper
Packit: The Packet Toolkit - A network packet shaper.
Hping by Antirez: a command line TCP/IP packet shaper
Sing: stands for 'Send ICMP Nasty Garbage'; sends fully customizeable ICMP packets
Scapy: a new python-based packet generator

Password Cracker/Login Hacker:
John the Ripper: a well-known password cracker for Windows and *nix Systems
Djohn: a distributed password cracker based on "John the Ripper"
Cain & Abel: an advanced password recovery tool for windows systems. It sniffs the network packets an cracks authentication brute-force or with dictionary attacks.
Project RainbowCrack: Advanced instant NT password cracker
Rainbowtables: The shmoo group provides pre-generated rainbow tables for bittorrent download. The tables are generated with RainbowCrack (see above).
Windows NT password recovery tool by Peter Nordahl
THC-Dialup Login Hacker by THC. It tries to guess username and password against the modem carrier. As far as I know the only available dialup password guesser for *NIX.
Hydra by THC: a multi-protocol login hacker. Hydra is also integrated with Nessus.
Medusa: parallel network login auditor
THC imap bruter: a very fast imap password brute forcer
x25bru: a login/password bruteforcer for x25 pad
Crowbar: a generic web brute force tool (Windows only; requires .NET Framework)
MDCrack-NG: a very fast MD4/MD5/NTLMv1 hash cracker; works optionally with precomputed hash tables

Advanced Sniffers:
Wireshark (formerly known as Ethereal): an open source network protocol analyzer
Dsniff by Dug Song: a combination of very useful sniffer and man-in-the-middle attack tools
Ettercap: a multipurpose sniffer/interceptor/logger for switched LAN environments
aimsniffer: monitors AOL instant messager communication on the network
4G8: a tool ,similar to ettercap, to capture network traffic in switched environments
cdpsniffer: Cisco discovery protocol (CDP) decoding sniffer

Port Scanner / Information Gathering:
nmap: the currently most well-known port scanner. Since version 3.45 it supports version scans. Have a look at PBNJ for diffing different nmap scans.
ISECOM released their nmap wrapper NWRAP, which shows all known protocols for the discovered ports form the Open Protocol Resource Database
Nmap::Scanner: Perl output parser for nmap
Amap by THC: An advanced portscanner which determines the application behind a network port by its application handshake. Thus it detects well-known applications on non-standard ports or unknown applications on well-known ports.
vmap by THC: version mapper to determine the version (sic!) of scanned daemons
Unicornscan: a information gathering and correlation engine
DMitry (Deepmagic Information Gathering Tool): a host information gathering tool for *nix systems
Athena: a search engine query tool for passive information gathering

Security Scanner:
Nessus - In version 2 an OpenSource network scanner. Version 3 is only available in binary form and under a proprietary license.
OpenVAS: a fork of Nessus 2.2.5 (formerly known as GNessUs)
Nessj: a java based nessus (and compatibles) client (formerly known as Reason)
Paul Clip from @stake released AUSTIN, a security scanner for Palm OS 3.5+.

Webserver:
Nikto: a web server scanner with anti IDS features. Based on Rain Forest Puppies libwhisker library.
Wikto: a webserver assessment tool (Windows only; requires .NET framework)
WSDigger: a black box web pen testing tool from Foundstone (Windows based)
Metis: a java based information gathering tool for web sites

Fingerprinting:
SinFP: a fingerprinting tool which requires only an open tcp port and sends maximum 3 packets
Winfingerprint: much more than a simple fingerprinting tool.It scans for Windows shares, enumerates usernames, groups, sids and much more.
p0f 2: Michal Zalewski announced his new release of p0f 2, a passive OS fingerprinting tool. p0f 2 is a completely rewrite of the old p0f code.
xprobe2: a remote active operating system fingerprinting tool from Ofir Arkin and the xprobe2 team
Cron-OS: an active OS fingerprinting tool based on TCP timeout behavior. This project was formerly known as "RING" and is now published as a nmap addon.

Proxy Server:
Burp proxy: an interactive HTTP/S proxy server for attacking and debugging web-enabled applications
Screen-scraper: a http/https-proxy server with a scripting engine for data manipulation and searching
Paros: a man-in-the-middle proxy and application vulnerability scanner
WebScarab: a framework for analyzing web applications. One of it's basic functionality is the usage as intercepting proxy.

War Dialers:
IWar: a classic war dialer, now also with VOIP (IAX2) support. One of a few wardialers for *nix operation systems, and the only with VOIP functionality (to my knowledge)
THC-Scan: a war dialer for DOS, Windows and DOS emulators

Malware / Exploit Collections:
packetstormsecurity.org: Huge collections of tools and exploits
ElseNot Project: The project tries to publish an exploit for each MS Security Bulltin. A script kiddie dream come true.
Offensive Computing: Another malware collection site
Securityforest: try the ExploitTree to get a collection of exploit code; have a look at the ToolTree for a huge list of pentest stuff

Databases / SQL:
sqlninja: a tool to exploit sql injection vulnerabilities in web applications with MS SQL Servers (alpha stage)
CIS Oracle Database Scoring Tool: scans Oracle 8i for compliance with the CIS Oracle Database Benchmark
SQLRecon: an active and passive scanner for MSSQL server. Works on Windows 2000, XP and 2003.
absinthe: a gui-based tool that automates the process of downloading the schema & contents of a database that is vulnerable to Blind SQL Injection (see here and here).
SQL Power Injector: a GUI based SQL injector for web pages (Windows, .Net Framework 1.1 required, Internet Explorer 5.0+ required)

Voice over IP (VOIP):
vomit (voice over misconfigured internet telephones): converts Cisco IP phone conversations into wave files
SiVuS: a VOIP vulnerability scanner - SIP protocol (beta, Windows only)
Cain & Abel: mostly a password cracker, can also record VOIP conversations (Windows only)
sipsak (SIP swis army knife): a SIP packet generator
SIPp: a SIP test tool and packet generator
Nastysip: a SIP bogus message generator
voipong: dumps G711 encoded VOIP communications to wave files. Supports: SIP, H323, Cisco Skinny Client Protocol, RTP and RTCP
Perl based tools by Thomas Skora: sip-scan, sip-kill, sip-redirectrtp, rtpproxy and ipq_rules
rtptools: a toolset for rtp recording and playing

Networkbased Tools:
yersinia: a network tool designed to take advantage of some weakeness in different network protocols (STP, CDP, DTP, DHCP, HSRP, 802.1q, VTP)
Netsed: alters content of network packets while forwarding the packets
ip6sic: a IPv6 stack integrity tester

VPN:
ike-scan: an IPSec enumeration and fingerprinting tool
ikeprobe: ike scanning tool
ipsectrace: a tool for profiling ipsec traffic in a dump file. Initial alpha release
VPNMonitor: a Java application to observer network traffic. It graphically represents network connections and highlights all VPN connections. Nice for demonstrations, if somewhat of limited use in a real pen test.
IKECrack:an IKE/IPSec cracker for pre-shared keys (in aggressive mode authentication [RFC2409])
DNSA: DNS Auditing tool by Pierre Betouin
Hunt: a session hijacking tool with curses GUI
SMAC: a Windows MAC Address Modifying Utility. Supports Windows 2000 and XP.
The WebGoat Project: a web application written in Java with intentional vulnerabilities. Supports an interactive learning environment with individual lessons.
TSCrack: a Windows Terminal Server brute forcer
Ollie Whitehouse from @stake released some new cellular phone based pentesting tools for scanning (NetScan, MobilePenTester). All tools require a Sony Ericsson P800 mobile phone. Unfortunately, @stake seems no longer to support much of their free security tools. So, use instead the alternativ download links above.
THC-FuzzyFingerprint: generates fuzzy fingerprints that look almost nearly equal to a given fingerprint/hash-sum. Very useful for MITM attacks.
BeatLM, a password finder for LM/NTLM hashes. Currently, there is no support for NTLM2 hashes. In order to get the hashes from network traffic, try ScoopLM.
THC vlogger: a linux kernel based keylogger
The Metasploit Framework: an "advanced open-source platform for developing, testing, and using exploit code".
ATK (Attack Tool Kit): a comination of security scanner and exploit framework (Windows only)
Pirana: an exploitation framework to test the security of email content filters. See also the whitepaper
PassLoc: a tool which provides the means to locate keys within a buffer. Based on the article "Playing hide and seek with stored keys" by Adi Shamir.
Dl-Hell: identifies an executables dynamic link library (DLL) files
DHCPing: a security tool for testing dhcp security
ldapenum: a perl script for enumeration against ldap servers.
Checkpwd: a dictionary based password checker for oracle databases
NirCmd from NirSoft: a windows command line tool to manipulate the registry, initiate a dialup connection and much more
Windows Permission Identifier: a tools for auditing user permissions on a windows system
MSNPawn: a toolset for footprinting, profiling and assesment via the MSN Search. Windows-only, .NET required
snmpcheck:a tool to gather information via snmp. Works on Linux, *BSD and Windows systems.
pwdump6: extract NTLM and LanMan hashes from Windows targets.

snortrules-snapshot-2911.tar.gz done!

#Search
74.125.39.99    www.google.com
74.125.39.103   www.google.com
74.125.39.104   www.google.com
74.125.39.105   www.l.google.com

#Images
74.125.39.99    images.google.com
74.125.39.103   images.google.com
74.125.39.104   images.google.com
74.125.39.105   images.google.com
74.125.39.106   images.google.com
74.125.39.147   images.google.com
74.125.77.99    tbn0.google.com
74.125.77.99    tbn1.google.com
74.125.77.103   tbn2.google.com
74.125.77.104   tbn3.google.com
74.125.77.105   tbn4.google.com
74.125.77.106   tbn5.google.com
74.125.77.147   tbn6.google.com

#Shopping
74.125.39.99    base0.googlehosted.com
74.125.39.103   base1.googlehosted.com
74.125.39.104   base2.googlehosted.com
74.125.39.105   base3.googlehosted.com
74.125.39.106   base4.googlehosted.com
74.125.39.147   base5.googlehosted.com

#Books
74.125.39.100   books.google.com
74.125.39.101   books.google.com
74.125.39.102   books.google.com
74.125.39.113   books.google.com
74.125.39.138   books.google.com
74.125.39.139   books.google.com
74.125.39.100   bks0.books.google.com
74.125.39.100   bks1.books.google.com
74.125.39.101   bks2.books.google.com
74.125.39.102   bks3.books.google.com
74.125.39.113   bks4.books.google.com
74.125.39.138   bks5.books.google.com
74.125.39.139   bks6.books.google.com
74.125.39.113   bks7.books.google.com
74.125.39.138   bks8.books.google.com
74.125.39.139   bks9.books.google.com

#Video
74.125.39.100   video.google.com
74.125.39.101   video.google.com
74.125.39.102   video.google.com
74.125.39.113   video.google.com
74.125.39.138   video.google.com
74.125.39.139   video.google.com
74.125.39.100   0.gvt0.com
74.125.39.101   1.gvt0.com
74.125.39.102   2.gvt0.com
74.125.39.113   3.gvt0.com
74.125.39.138   4.gvt0.com
74.125.39.139   5.gvt0.com

#Mail(POP3/SMTP)
209.85.147.109  pop.gmail.com
209.85.147.109  smtp.gmail.com

#WebMail
64.233.189.18   mail.google.com
64.233.189.19   mail.google.com
64.233.189.83   mail.google.com
64.233.189.18   www.gmail.com
64.233.189.19   www.gmail.com
64.233.189.83   www.gmail.com
64.233.189.19   googlemail.l.google.com

#Docs
64.233.189.101  writely-china.l.google.com
64.233.189.101  writely.l.google.com
64.233.189.102  docs.google.com
64.233.189.101  docs.google.com
64.233.189.100  docs.google.com

#Map
64.233.189.104  map.google.com
64.233.189.99   map.google.com
64.233.189.147  map.google.com
64.233.189.104  maps.google.com
64.233.189.99   maps.google.com
64.233.189.147  maps.google.com
64.233.189.99   maps.gstatic.com
203.208.39.93   khm.google.com
203.208.39.91   mt0.google.com
203.208.39.93   mt1.google.com
203.208.39.91   mt2.google.com
203.208.39.91   mt.l.google.com
64.233.189.99   maps.l.google.com

#Scholar
64.233.189.99   scholar.google.com
64.233.189.104  scholar.google.com
64.233.189.147  scholar.google.com
64.233.189.104  scholar.l.google.com

#Group
64.233.189.102  groups.google.com
64.233.189.100  groups.google.com
64.233.189.101  groups.google.com
64.233.189.101  groups.l.google.com

#Picasa
74.125.39.147   picasa.google.com
74.125.39.91    photos.google.com
74.125.39.91    picasaweb.google.com
74.125.39.93    picasaweb.google.com
74.125.39.136   picasaweb.google.com
74.125.39.190   picasaweb.google.com
74.125.39.91    lh0.ggpht.com
74.125.39.93    lh1.ggpht.com
74.125.39.136   lh2.ggpht.com
74.125.39.190   lh3.ggpht.com
74.125.39.91    lh4.ggpht.com
74.125.39.93    lh5.ggpht.com
74.125.39.136   lh6.ggpht.com
74.125.39.190   lh7.ggpht.com

#Translate
74.125.39.100   translate.google.com
74.125.39.101   translate.google.com
74.125.39.102   translate.google.com
74.125.39.113   translate.google.com
74.125.39.138   translate.google.com
74.125.39.139   translate.google.com

#Reader
74.125.39.99    reader.google.com
74.125.39.103   reader.google.com
74.125.39.104   reader.google.com
74.125.39.105   reader.google.com
74.125.39.106   reader.google.com

#Sites
64.233.161.9    sites.google.com
74.125.53.9     sites.google.com
74.125.39.102   sites.google.com
74.125.39.139   sites.google.com
74.125.45.9     sites.google.com
74.125.39.139   sites.google.com

#Code
74.125.53.9     code.google.com
74.125.45.9     code.google.com
64.233.161.9    code.google.com
74.125.39.102   code.google.com
209.85.137.9    code.google.com
74.125.39.139   code.l.google.com

#Labs
74.125.39.141   www.googlelabs.com
74.125.39.141   appspot.l.google.com
74.125.39.100   labs.google.com
74.125.39.101   labs.google.com
74.125.39.102   labs.google.com
74.125.39.113   labs.google.com
74.125.39.138   labs.google.com
74.125.39.139   labs.google.com

#Knol
74.125.39.100   knol.google.com
74.125.39.101   knol.google.com
74.125.39.102   knol.google.com
74.125.39.113   knol.google.com
74.125.39.138   knol.google.com
74.125.39.139   knol.google.com

#Sketchup
74.125.39.99    sketchup.google.com
74.125.39.103   sketchup.google.com
74.125.39.104   sketchup.google.com
74.125.39.105   sketchup.google.com
74.125.39.106   sketchup.google.com

#Pack
74.125.39.99    pack.google.com
74.125.39.103   pack.google.com
74.125.39.104   pack.google.com
74.125.39.105   pack.google.com
74.125.39.106   pack.google.com

#News
74.125.39.99    news.google.com
74.125.39.103   news.google.com
74.125.39.104   news.google.com
74.125.39.105   news.google.com
74.125.39.106   news.google.com
74.125.39.147   news.google.com
74.125.39.99    nt0.ggpht.com
74.125.39.103   nt1.ggpht.com
74.125.39.104   nt2.ggpht.com
74.125.39.105   nt3.ggpht.com
74.125.39.106   nt4.ggpht.com
74.125.39.147   nt5.ggpht.com

#Calendar
74.125.39.100   calendar.google.com
74.125.39.101   calendar.google.com
74.125.39.102   calendar.google.com
74.125.39.113   calendar.google.com
74.125.39.138   calendar.google.com
74.125.39.139   calendar.google.com

#Blogger
74.125.39.191   www.blogger.com
74.125.39.191   blogger.l.google.com
74.125.39.191   blogger.google.com

#Orkut
74.125.47.85    www.orkut.com
74.125.47.86    www.orkut.com
74.125.47.85    orkut.google.com
74.125.47.86    orkut.l.google.com

#Youtube
74.125.39.100   www.youtube.com
74.125.39.101   www.youtube.com
74.125.39.102   www.youtube.com
74.125.39.113   www.youtube.com

#Toolbar
74.125.39.100   toolbar.google.com
74.125.39.101   toolbar.google.com
74.125.39.102   toolbar.google.com
74.125.39.113   toolbar.google.com

#Apps
74.125.39.99    apps.google.com
74.125.39.103   apps.google.com
74.125.39.104   apps.google.com
74.125.39.115   apps.google.com

#Chrome
74.125.39.99    chrome.google.com
74.125.39.103   chrome.google.com
74.125.39.104   chrome.google.com
74.125.39.115   chrome.google.com

#Finance
74.125.39.99    finance.google.com
74.125.39.103   finance.google.com
74.125.39.104   finance.google.com
74.125.39.115   finance.google.com

#Desktop
74.125.39.99    desktop.google.com
74.125.39.103   desktop.google.com
74.125.39.104   desktop.google.com
74.125.39.115   desktop.google.com

#Ajax
74.125.53.9     ajax.googleapis.com
74.125.45.9     ajax.googleapis.com
64.233.161.9    ajax.googleapis.com
209.85.137.9    ajax.googleapis.com
72.14.203.9     googleapis-ajax.l.google.com

#Modules
74.125.39.132   1.ig.gmodules.com
74.125.39.132   2.ig.gmodules.com
74.125.39.132   3.ig.gmodules.com
74.125.39.132   4.ig.gmodules.com
74.125.39.132   5.ig.gmodules.com
74.125.39.132   6.ig.gmodules.com

#Misc
64.233.189.101  id.google.com
64.233.189.102  id.google.com
64.233.189.100  id.google.com
64.233.189.100  id.l.google.com
74.125.39.132   skins.gmodules.com
74.125.39.132   googlehosted.l.google.com
74.125.39.132   img0.gmodules.com
74.125.39.99    blogsearch.google.com
74.125.39.99    www2.l.google.com
74.125.39.99    www.gstatic.com
74.125.39.100   www3.l.google.com
74.125.39.99    buttons.googlesyndication.com

    近期要用crontab执行一些命令：定期让系统时间和硬件时间同步。因为我总是发现我的linux服务器时间会变慢，最后想到同步这个办法。

    一开始，我将命令：*/1 * * * * root hwclock --hctosys 写到 /root/spool/cron/root文件（直接敲入命令crontab -u root -e 可对其进行编辑），但是总是在执行后root用户收到一封邮件关于cron的，提示错误信息：

/bin/sh: root: command not found 表明crontab默认使用的shell是/bin/sh
并且在上面列出了crontab的默认环境变量：

解决方法1：
root的crontab文件中加入：

解决方法2（这是我选择的）：
写到 /etc/crontab文件，在最后一行假如以下代码：
代表每隔1分钟执行。

If you get error:

dd: /dev/adN: Operation not permitted
(wherei N is drive number)

this is happening because you are blocked by GEOM's protection for the MBR of the disk drive.

To solve this turn the protection off with a sysctl variable change from console: