Browser Exploitation Framework (BeEF) - pentesting tool for exploiting web vulnerabilities.
Debian-derived Linux distro designed for digital forensics and pentesting.
Preinstalled with numerous pentesting programs.
Can be run from HD, Live CD, or Live USB.
Supported platform of the Metasploit Framework.
Social Engineering Toolkit (SET)
Searchable info resource for Social Engineering.
Gather info about WiFi networks.
Detect access points (rogue or valid).
Break encryption keys.
Microsoft Baseline Security Analyzer (MBSA): A software vulnerability scanner to analyze targeted Microsoft systems, to detect whether software security patches or baseline config settings are missing.
Center for Internet Security (CIS)
A technique to ID operating systems, apps, and services on a system.
Narrows vuln searches.
Free download for Windows & Linux
Read/Write TCP & UDP network connections.
Run from the command line.
Used to disclose passwords and assess password strength.
Online password-cracking tools enable you to type in the hash and get the password returned in plain text.
Cain & Able
John the Ripper
Honeypots / Honeynets
Systems or networks exposed to capture malicious activity.