Extended HuntDown attack Reporting

This project narrative documents the implementation of new features into the penetration testing tool called HuntDown. HuntDown is a web application that groups several penetration testing tools, such as Hydra or Nmap, into a user interface that allows the execution of penetration attacks with ease,...

Descripción completa

Detalles Bibliográficos
Autor: José Llorens, Ignasi de
Tipo de recurso: tesis de maestría
Fecha de publicación:2025
País:España
Institución:Universitat Politècnica de Catalunya (UPC)
Repositorio:UPCommons. Portal del coneixement obert de la UPC
Idioma:inglés
OAI Identifier:oai:upcommons.upc.edu:2117/457337
Acceso en línea:https://hdl.handle.net/2117/457337
Access Level:acceso abierto
Palabra clave:Computer security
Penetration testing (Computer security)
Web applications
HuntDown
web
application
cybersecurity
pentesting
Pulsar
Go
React
NodeJS
Mongo
Seguretat informàtica
Prova de penetració (Seguretat informàtica)
Aplicacions web
Àrees temàtiques de la UPC::Informàtica::Seguretat informàtica
Descripción
Sumario:This project narrative documents the implementation of new features into the penetration testing tool called HuntDown. HuntDown is a web application that groups several penetration testing tools, such as Hydra or Nmap, into a user interface that allows the execution of penetration attacks with ease, as opposed to using a command-line interface. HuntDown allows the user to preconfigure, save and execute attacks which are later displayed in a history. These attacks can be grouped into workflows, which can be executed at once as well. The new implemented features consist in the creation and integration of a new browsing history that groups attack results into their corresponding workflows, as well as the integration of the results of workflows into the already existing Control Panel screen.