
Parrot is intended to provide a suite of penetration testing tools to be used for attack mitigation, security research, forensics, and vulnerability assessment. It is designed for penetration testing, vulnerability assessment and mitigation, computer forensics and anonymous web browsing.
OS family: POSIX based on Debian GNU/Linux
Developer: Parrot Project Team
Default user interface: MATE Desktop Environment
Source model: Open source
Parrot OS is a GNU/Linux distribution based on Debian with a focus on security, privacy, and development.
Parrot is a worldwide community of developers and security specialists that work together to build a shared framework of tools to make their job easier, standardized and more reliable and secure.
Parrot OS, the flagship product of Parrot Security is a GNU/Linux distribution based on Debian and designed with Security and Privacy in mind.
Universal USB Installer is a Live Linux Bootable USB Creator that allows you to choose from a selection of Linux Distributions to put on your USB Flash Drive.
VirtualBox is a powerful x86 and AMD64/Intel64 virtualization product for enterprise as well as home use.
htop is a useful command line tool in Linux environment to determine the cause of load by each process. It is similar to Task Manager in Windows OS environment. It can be used to troubleshoot and kill a process which is utilizing excessive server resources.
In some situations you need to fake / change / spoof a MAC address of your network interface. macchanger Linux command does this job in no time. With this tool you can change your mac address of any Ethernet network device wired or wireless.
The Tor Browser is a web broswer that anonymizes your web traffic using the Tor network, making it easy to protect your identity online.
If you're investigating a competitor, researching an opposing litigant in a legal dispute, or just think it's creepy for your ISP or the government to know what websites you visit, then the Tor Browser might be the right solution for you.
Anon Surf allows you to root all online traffic through the TOR network. You probably have heard of TOR before, you might even use the TOR Browser for surfing the Web anonymous already. The difference in the Anon Surf mode is that all traffic, not only Web Traffic, is routed through the TOR Network.
Nmap Free Security Scanner, Port Scanner, & Network Exploration Tool. Download open source software for Linux, Windows, UNIX, FreeBSD, etc.
EtherApe is a graphical network monitor for Unix modeled after etherman. Featuring link layer, IP and TCP modes, it displays network activity graphically.
ScreenFetch is a System Information Tool designed primarily for Bash Shell but function with other shell environment as well. The tool is smart enough to auto-detect the Linux distribution you are using and generate the ASCII logo of the distribution with certain valuable information to the right of logo.
URLCrazy is an OSINT tool to generate and test domain typos or variations to detect or perform typo squatting, URL hijacking, phishing,
MATE Disk Usage Analyzer as shipped with the MATE utilities. mate-disk-usage-analyzer is able to scan either specific directories or the wholefilesystem, in order to give the user a graphical tree representation including each directory size or percentage in the branch.
theHarvester is a very simple, yet effective tool designed to be used in the early. stages of a penetration test. Use it for open source intelligence gathering and helping. to determine a company's external threat landscape on the internet.
The mate-system-monitor allows you to view and control the processes running on your system. You can access detailed memory maps, send signals, and terminate the processes. ... It also allows you to view file system information such as Device, Type, Mountpoints, and Disk Usage.
(Hardware Lister) is a small tool to provide detailed information on the hardware configuration of the machine.
CutyCapt is a small cross-platform command-line utility to capture WebKit's rendering of a web page into a variety of vector and bitmap formats, including SVG
dnsenum Package Description. Multithreaded perl script to enumerate DNS information of a domain and to discover non-contiguous ip blocks.
This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.
Check the current IP of your domain name or hostname from multiple DNS nameservers and resolvers from all around the world.
This tool is used to find all the sub-domains of a website or web server.
SimpleScreenRecorder is a Linux program that I've created to record programs and games.
CMatrix is based on the screensaver from The Matrix website. It shows text flying in and out in a terminal like as seen in "The Matrix" movie.
cowsay is a program that generates ASCII pictures of a cow with a message. It can also generate pictures using pre-made images of other animals, such as Tux the Penguin, the Linux mascot. It is written in Perl.
FIGlet is a simple command-line utility for creating ASCII text banners or large letters out of ordinary text.
The Social-Engineer Toolkit is an open-source penetration testing framework designed for social engineering.
Basic service set identifiers (BSSID) is used to describe sections of a wireless local area network or WLAN.
The ESSID is an electronic marker or identifier that serves as an identification and address for your computer, or network device to connect to a wireless router or access point and then access the internet.
Airmon-ng is included in the aircrack-ng package and is used to enable and disable monitor mode on wireless interfaces.
Airodump-ng is used for packet capturing of raw 802.11 frames and is particularly suitable for collecting WEP IVs (Initialization Vector) for the intent of using them with aircrack-ng. If you have a GPS receiver connected to the computer, airodump-ng is capable of logging the coordinates of the found access points.
Aireplay-ng is used to inject frames. The primary function is to generate traffic for the later use in aircrack-ng for cracking the WEP and WPA-PSK keys.
Aircrack-ng is the primary application with the aircrack-ng suite, which is used for password cracking. It's capable of using statistical techniques to crack WEP and dictionary cracks for WPA and WPA2 after capturing the WPA handshake.
Wifite is an automated wireless attack tool. Wifite was designed for use with pentesting distributions of Linux.
Airgeddon is a multi-use bash script for Linux systems to audit wireless networks.
Features
Interface mode switcher (Monitor-Managed).
DoS over wireless networks with different methods.
Assisted Handshake file capture.
Cleaning and optimizing Handshake captured files.
Offline password decrypt on WPA/WPA2 captured files (dictionary and bruteforce).
Compatibility with many Linux distros (see requirements section).
Easy targeting and selection in every section.
Controlled Exit. Cleaning tasks and temp files. Option to keep monitor mode if desired.
Multilanguage support and autodetect OS language feature (see supported languages section).
Help hints in every zone/menu for easy use.
Auto-update. Script checks for newer version if possible.
Basic service set identifiers (BSSID) is used to describe sections of a wireless local area network or WLAN.
The ESSID is an electronic marker or identifier that serves as an identification and address for your computer, or network device to connect to a wireless router or access point and then access the internet.
Airmon-ng is included in the aircrack-ng package and is used to enable and disable monitor mode on wireless interfaces.
Airodump-ng is used for packet capturing of raw 802.11 frames and is particularly suitable for collecting WEP IVs (Initialization Vector) for the intent of using them with aircrack-ng. If you have a GPS receiver connected to the computer, airodump-ng is capable of logging the coordinates of the found access points.
Aireplay-ng is used to inject frames. The primary function is to generate traffic for the later use in aircrack-ng for cracking the WEP and WPA-PSK keys.
Aircrack-ng is the primary application with the aircrack-ng suite, which is used for password cracking. It's capable of using statistical techniques to crack WEP and dictionary cracks for WPA and WPA2 after capturing the WPA handshake.
MDK3 is a proof-of-concept tool to exploit common IEEE 802.11 protocol weaknesses. IMPORTANT: It is your responsibility to make sure you have permission from the network owner before running MDK against it.
Golismero. A framework to manage and run some of the popular security tools like Wfuzz, DNS recon, sqlmap, OpenVas, robot analyzer, etc.)
Lynis is the popular security auditing tool for Linux, Unix, and macOS systems. It helps you run security scans and provides guidance during system hardening.
DNSRecon is a Python port of a Ruby script that I wrote to learn the language and about DNS in early 2007.
DNSRecon Package Description
DNSRecon provides the ability to perform:
Check all NS Records for Zone Transfers
Enumerate General DNS Records for a given Domain (MX, SOA, NS, A, AAAA, SPF and TXT)
Perform common SRV Record Enumeration. Top Level Domain (TLD) Expansion
Check for Wildcard Resolution
Brute Force subdomain and host A and AAAA records given a domain and a wordlist
Perform a PTR Record lookup for a given IP Range or CIDR
Check a DNS Server Cached records for A, AAAA and CNAME Records provided a list of host records in a text file to check
Enumerate Common mDNS records in the Local Network Enumerate Hosts and Subdomains using Google
The OWASP Zed Attack Proxy (ZAP) is one of the world’s most popular web application security testing tools. It is made available for free as an open source project, and is contributed to and maintained by OWASP.
*****Welcome to the "Complete Ethical Hacking Course With ParrotOS 2021" ******
This course is for the beginners, so you don’t need to have a previous knowledge about hacking, penetration testing, or application development. You’ll learn how to “ethically” Practice from Basic.
In this course we have introduce A good Security Operating System ParrotOS Security.
When people think of penetration testing distributions, usually Kali Linux is the first one that comes to mind. While there's definitely some functional overlap, the two distributions have a lot of differences. First impressions of Parrot make it clear that it's more of a privacy-focused distro than a hacking one.
Features of ParrotOS:-
Free - Well ParrotOS is a free and open-source, thus you can see source code and customize it as per your requirements.
Lightweight - The ParrotOS Operating system has demonstrated to be remarkably lightweight and run amazingly active even on the ancient devices or with concise resources.
Secure - Well, ParrotOS is always updated, usually released, and wholly sandboxed.
Since free tools and platforms are used, you don’t need to buy any tool or application.
You can also use the methods shown in this course with other Operating System Like Kali Linux.
**********This course has been created for educational purposes only. All attacks shown were done so with given permission. Please do not attack a host unless you have permission to do so.**********