Ethical Hacking Tutorials

Ethical Hacking Tutorials, Tips and Tricks

PA Toolkit – Wireshark Extensions for Penetration Testers


PA Toolkit is a collection of traffic analysis plugins to extend the functionality of Wireshark from a micro-analysis tool and protocol dissector to the macro analyzer and threat hunter. PA Toolkit contains plugins (both dissectors and taps) covering various scenarios for multiple protocols, including:

  • WiFi (WiFi network summary, Detecting beacon, deauth floods etc.)
  • HTTP (Listing all visited websites, downloaded files)
  • HTTPS (Listing all websites opened on HTTPS)
  • ARP (MAC-IP table, Detect MAC spoofing and ARP poisoning)
  • DNS (Listing DNS servers used and DNS resolution, Detecting DNS Tunnels)

The project is under active development and more plugins will be added in near future.

This material was created while working on “Traffic Analysis: TSHARK Unleashed” course. Those interested can check the course here: https://www.pentesteracademy.com/course?id=42

https://i0.wp.com/www.ethicalhackingforum.com/wp-content/uploads/2018/10/pa-toolkit-wireshark-extensions-for-penetration-testers.png?w=442

https://i0.wp.com/www.ethicalhackingforum.com/wp-content/uploads/2018/10/1539926526_108_pa-toolkit-wireshark-extensions-for-penetration-testers.png?w=442

List of websites visited over HTTP

https://i1.wp.com/www.ethicalhackingforum.com/wp-content/uploads/2018/10/1539926526_160_pa-toolkit-wireshark-extensions-for-penetration-testers.png?w=442

Search functionality

https://i0.wp.com/www.ethicalhackingforum.com/wp-content/uploads/2018/10/1539926527_314_pa-toolkit-wireshark-extensions-for-penetration-testers.png?w=442

Domain to IP mappings

https://i1.wp.com/www.ethicalhackingforum.com/wp-content/uploads/2018/10/1539926527_65_pa-toolkit-wireshark-extensions-for-penetration-testers.png?w=442

Updated: October 19, 2018 — 4:36 am

Leave a Reply

Your email address will not be published. Required fields are marked *

Ethical Hacking Tutorials © 2018
Skip to toolbar