High-risk tools in Kali
96 of the 109 tools in Kali are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
aircrack_scanExecuteaircrack_scan
-
amass_scanExecuteExecute amass with the provided parameters.
-
apktool_decompileExecuteExecute Apktool APK decompiler.
-
arachni_scanExecuteExecute arachni with the provided parameters.
-
arjun_scanExecuteExecute arjun with the provided parameters.
-
autorecon_scanExecuteautorecon_scan
-
beef_exploitExecuteExecute BeEF browser exploitation framework.
-
cewl_generateExecutecewl_generate
-
chkrootkit_scanExecuteExecute chkrootkit with the provided parameters.
-
clamav_scanExecuteExecute clamav with the provided parameters.
-
cloudsploit_scanExecutecloudsploit_scan
-
cmsmap_scanExecuteExecute cmsmap with the provided parameters.
-
crawley_scanExecuteExecute Crawley web crawler.
-
crowbar_attackExecutecrowbar_attack
-
crunch_generateExecutecrunch_generate
-
dirb_scanExecuteExecute Dirb web content scanner.
-
dnsenum_scanExecuteExecute dnsenum with the provided parameters.
-
dnsrecon_scanExecuteExecute dnsrecon with the provided parameters.
-
droopescan_scanExecuteExecute droopescan with the provided parameters.
-
empire_exploitExecuteempire_exploit
-
enum4linux_scanExecuteExecute Enum4linux Windows/Samba enumeration tool.
-
execute_commandExecuteExecute an arbitrary command on the Kali server.
-
feroxbuster_scanExecuteExecute feroxbuster with the provided parameters.
-
ffuf_scanExecuteffuf_scan
-
fierce_scanExecuteExecute fierce with the provided parameters.
-
findomain_scanExecuteExecute findomain with the provided parameters.
-
firmwalker_scanExecutefirmwalker_scan
-
gau_scanExecuteExecute gau with the provided parameters.
-
gdb_analyzeExecuteExecute GDB debugger.
-
ghidra_analyzeExecuteExecute Ghidra reverse engineering framework.
-
gobuster_scanExecutegobuster_scan
-
gophish_attackExecuteExecute GoPhish phishing framework.
-
gospider_scanExecuteExecute GoSpider web spider.
-
hakrawler_scanExecuteExecute Hakrawler web crawler.
-
hash_identifier_analyzeExecuteExecute Hash-Identifier hash type analyzer.
-
hashcat_attackExecutehashcat_attack
-
hydra_attackExecutehydra_attack
-
iotseeker_scanExecuteExecute IoTSeeker IoT device scanner.
-
john_crackExecutejohn_crack
-
johnny_attackExecuteExecute Johnny password cracker.
-
joomscan_scanExecuteExecute joomscan with the provided parameters.
-
js_scan_analyzeExecuteExecute JS-Scan JavaScript analysis tool.
-
katana_scanExecuteExecute katana with the provided parameters.
-
lazyrecon_scanExecuteExecute LazyRecon reconnaissance framework.
-
lynis_scanExecuteExecute lynis with the provided parameters.
-
masscan_scanExecutemasscan_scan
-
medusa_attackExecutemedusa_attack
-
meg_scanExecuteExecute meg with the provided parameters.
-
metasploit_runExecuteExecute a Metasploit module.
-
mimikatz_attackExecuteExecute Mimikatz Windows credential extraction tool.
-
mobsf_analyzeExecuteExecute MobSF mobile security framework.
-
naabu_scanExecuteExecute naabu with the provided parameters.
-
netcat_scanExecuteExecute Netcat network utility.
-
netdiscover_scanExecutenetdiscover_scan
-
netsparker_scanExecutenetsparker_scan
-
nikto_scanExecuteExecute Nikto web server scanner.
-
nmap_nse_scanExecuteExecute Nmap with NSE scripts.
-
nmap_scanExecutenmap_scan
-
nuclei_scanExecuteExecute nuclei with the provided parameters.
-
ollydbg_analyzeExecuteExecute OllyDbg debugger.
-
openvas_scanExecuteExecute OpenVAS vulnerability scanner.
-
pacu_attackExecuteExecute Pacu AWS exploitation framework.
-
paramspider_scanExecuteExecute paramspider with the provided parameters.
-
patator_attackExecutepatator_attack
-
photon_scanExecuteExecute Photon web crawler.
-
pipal_analyzeExecutepipal_analyze
-
powersploit_exploitExecutepowersploit_exploit
-
psexec_attackExecutepsexec_attack
-
reaver_attackExecutereaver_attack
-
rkhunter_scanExecuteExecute rkhunter with the provided parameters.
-
rustscan_scanExecuteExecute rustscan with the provided parameters.
-
scout_suite_scanExecuteExecute Scout Suite cloud security scanner.
-
scrapy_crawlExecutescrapy_crawl
-
secretfinder_scanExecuteExecute SecretFinder secret discovery tool.
-
set_attackExecuteExecute Social Engineer Toolkit.
-
skipfish_scanExecuteExecute skipfish with the provided parameters.
-
sn1per_scanExecuteExecute Sn1per penetration testing framework.
-
socat_connectExecutesocat_connect
-
sqlmap_scanExecuteExecute SQLmap SQL injection scanner.
-
subfinder_scanExecuteExecute subfinder with the provided parameters.
-
sublist3r_scanExecutesublist3r_scan
-
traceroute_scanExecuteExecute Traceroute network diagnostic tool.
-
unicornscan_scanExecuteunicornscan_scan
-
vulmap_scanExecuteExecute vulmap with the provided parameters.
-
vulners_scanExecuteExecute Vulners vulnerability scanner.
-
wafw00f_scanExecuteExecute wafw00f with the provided parameters.
-
wapiti_scanExecuteExecute wapiti with the provided parameters.
-
wfuzz_scanExecutewfuzz_scan
-
whatweb_scanExecuteExecute whatweb with the provided parameters.
-
wifiphisher_attackExecutewifiphisher_attack
-
wifite_scanExecutewifite_scan
-
winexe_attackExecutewinexe_attack
-
wireshark_captureExecutewireshark_capture
-
wpscan_analyzeExecuteExecute WPScan WordPress vulnerability scanner.
-
xsser_scanExecutexsser_scan
-
zmap_scanExecuteExecute zmap with the provided parameters.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.