Henry Dalziel | Pentesting Tools, Product Reviews | May 12, 2013
At Concise Courses we are big fans of any tool that can make penetration testers or security professionals life easier, or perhaps better said – more efficient. There are hundreds of tools out there – all which are mostly bundled with Pentesting Distros, but we’d like to bring this to your attention: SpiderFoot.
From our understand SpiderFoot has been around since 2005 and remains free and open-sourced. SpiderFoot is a footprinting tool which will allow you to execute different types of scans against a target domain. By doing so, the user will obtain a plethora of information such as as sub-domain presence, e-mail addresses, web server versions etc. Invariably – having such vital information allows the researcher (pentester) to test for known vulnerabilities, flaws and holes. Having a one-stop shop to do all of this is a great thing. In the words of the creator:
“The main objective of SpiderFoot is to automate the footprinting process to the greatest extent possible, freeing up a penetration tester’s time to focus their efforts on the security testing itself.”
No one can argue with that or be appreciative of cutting down research time that is often deemed repetitive. Repetitive tasks is a bane to us all.
Here’s a quick overview of the key features of SpiderFoot:
All in all, this looks like a really great project. The creator is very responsive and helpful so hit up his site and let us know how you get on!
If your interested in security tools we have a bunch more here.