Over the last couple weeks in my masters program in Information Assurance and Cybersecurity I have begun to really deep dive into penetration testing utilzing Tenable Security's Nessus
and Rapid 7's Metasploit
among others. Years back I was working on a port scanner/keep alive/alive check Windows Phone 8 app, but never completed it. Looking around on the current Windows Mobile store there is not a complete pentesting app available either paid or free. As with everything I do in my free time, the app will be open source via the MIT License on GitHub
My primary objective was to have a pentesting platform on the go, which means Windows Mobile 10. Designing with a Univesal Windows Application meant I could also create a tablet/desktop version. Knowing I also wanted to get some more in depth practice with the latest version of Xamarin Forms
, I also plan to make an Android version.
Initially I was going to have hard coded port definitions and scans, but I figured longer term, it would be better to create an infrastructure. In addition I wanted another opportunity to get experience with Entity Framework 7
and ASP.NET 5
since my initial work back in April.
Initially, as mentioned above, I was going to have the standard ports hard coded with the abilities akin to NMAP, but as I was developing the app it made sense to make them more like an anti-virus program with server side definitions so I can add ports without needing to submit the app to the app stores.
Features planned or already implemented:
- Server side Definition Updates
- Port Scanning with presets and customizable ip ranges and port ranges
- Ability to run in the background
- Windows 10, Windows 10 Mobile and Android apps
- Fingerprinting of Web Servers
- Ability to email results through the app directly
- Keep Alive support (thinking about folks who want their sites always in memory)
- Alive Checks to alert you if your phone cannot hit the web server
Tentatively I am thinking about how to implement a flexible vulnerability scanner, at least a basic one. This might be as simple as checking against PHP, Apache, IIS and .NET exploits (targeting web applications and web servers).
As mentioned above, the app is open source on GitHub
and when at a stable point with a decent feature set I will be publishing to the Windows Store. In the meantime if a feature is not listed or if you have a suggestion please leave a comment below and I will be more than happy to add it to the list.