Tooloverzicht

De belangrijkste tools die in deze handboeken worden gebruikt, met installatie-instructies.

Kali Linux

De meeste tools zijn voorgeïnstalleerd op Kali Linux. Download de VM of installer image.

Web Tools

Tool	Doel	Installatie
Burp Suite	Web proxy, scanner, repeater	Voorgeïnstalleerd op Kali (Community Edition)
sqlmap	Automatische SQL injection	apt install sqlmap
ffuf	Web fuzzer (directories, parameters)	apt install ffuf
gobuster	Directory/DNS bruteforce	apt install gobuster
nikto	Webserver scanner	apt install nikto
jwt_tool	JWT testing toolkit	pip3 install jwt_tool
nuclei	Template-based vulnerability scanner	go install github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest

Netwerk & AD Tools

Tool	Doel	Installatie
Nmap	Port scanner, service detection	apt install nmap
Impacket	Python AD/SMB toolkit	pip3 install impacket
CrackMapExec	AD/SMB/WinRM exploitation	apt install crackmapexec
BloodHound	AD privilege path visualisatie	apt install bloodhound
Responder	LLMNR/NBT-NS poisoning	apt install responder
Evil-WinRM	Windows Remote Management shell	gem install evil-winrm
Chisel	TCP/UDP tunneling over HTTP	Download binary van GitHub releases
Rubeus	Kerberos abuse toolkit	Compileer vanuit source (.NET)

Cloud Tools

Tool	Doel	Installatie
AWS CLI	AWS management	pip3 install awscli
Pacu	AWS exploitation framework	pip3 install pacu
ScoutSuite	Multi-cloud security auditing	pip3 install scoutsuite
ROADtools	Azure AD enumeration	pip3 install roadtools
kubectl	Kubernetes management	Via package manager of snap
trivy	Container image scanner	apt install trivy
trufflehog	Git secrets scanning	pip3 install trufflehog

Lab Omgevingen

Platform	Type	Kosten
HackTheBox	CTF machines & labs	Gratis / VIP
TryHackMe	Guided learning paths	Gratis / Premium
PortSwigger Web Security Academy	Web labs	Gratis
DVWA	Damn Vulnerable Web App	Gratis (Docker)
GOAD	Game of Active Directory lab	Gratis (Vagrant)
crAPI	Completely Ridiculous API	Gratis (Docker)
CloudGoat	AWS vulnerable-by-design	Gratis (Terraform)