<img src="https://lh4.googleusercontent.com/-dv1CCa1L7V8/UaW42nPs-EI/AAAAAAAABU4/YwUJKDHQlI8/w898-h561-no/PenQ.png" width="400px;" height="245px"; align="right" >
PenQ is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre-configured with security tools for spidering, advanced web searching, fingerprinting, anonymous browsing, web server scanning, fuzzing, report generating and many more. PenQ is not just a mix of addons but it comes preconfigured with some very powerful open source java/python and command line tools including Nikto, Wfuzz, OWASP Zap, OWASP Webslayer, OWASP WebScarab, Tor and lots more.
PenQ is configured to run on Debian based distributions including Ubuntu and its derivative distros, and penetration testing operating systems such as BackTrack and Kali. PenQ lets security testers access necessary system utilities and tools right from their browser, saving time and making tests a lot faster. Tools built-in range from those for anonymous browsing and system monitoring to ones for taking down notes and scheduling tasks.PenQ can save companies from huge investments in proprietary tools and over-sized testing team.
It also provides tutorials by linking to OWASP Testing Guide, a vast source of security testing related knowledge with a lost of useful resources and OWASP project. PenQ can be used to test the OWASP Top 10 risks to safeguard web applications against vulnerabilities.
- OWASP ZAP
- OWASP WebScarab
- OWASP WebSlayer
- Nikto Web Server Scanner
- Wfuzz Web Application Fuzzer
- Integrated Tor
- OWASP Penetration Testing Checklist
- PenTesting Report Generator
- Vulnerability Databases Search
- Access to Shell and Other System Utilities
- Collection of Useful Links
- Mozilla Add-ons Collection
- anonymoX
- Awesome Screenshot
- ChatZilla
- CipherFox
- Clear Console
- Cookies Manager+
- Cookie Monster
- CryptoFox
- Email Extractor
- Firebug
- FireFlow
- FireFTP
- FireSSH
- Greasemonkey
- Groundspeed
- HackBar
- HackSearch
- Header Spy
- HttpFox
- HttpRequester
- Java Deobfuscator
- Library Detector
- LinkSidebar
- Proxy Selector
- Proxy Tool
- RefControl
- RESTClient
- Session Manager
- SQL Inject Me
- SQLite Manager
- TrashMail.net
- User Agent Switcher
- Wappalyzer
- Web Developer
- Xinha Here!
- XSS Me
Debian and Ubuntu Based Distros
- Ubuntu 10.04
- Ubuntu 10.10
- Ubuntu 11.04
- Ubuntu 11.10
- Ubuntu 12.04
- Ubuntu 12.10
- Ubuntu 13.04
- BackTrack R1
- BackTrack R2
- BackTrack R3
- Debian6
- Linux Mint
- Kali Linux
- Backbox
Download the PenQ package from here. Open the command-line interface (CLI) and navigate to the location of the downloaded file.
cd [path to PenQ file]
Assign executable permission to this file.
chmod +x PenQ-installer-1.0.sh
Run PenQ installer file from CLI.
./PenQ-installer-1.0.sh
Provide sudo password and wait for installation to complete. Once installed, double-click the PenQ icon on desktop or open the terminal and run the following
penq
Navigate to the PenQ folder
cd /usr/share/PenQ
Run the following command
sudo ./uninstallPenq