PenQ – The Security Testing Browser Bundle

PenQ is an open source, Linux-based penetration testing browser bundle we built over Mozilla Firefox. It comes pre-configured with security tools for spidering, advanced web searching, fingerprinting, anonymous browsing, web server scanning, fuzzing, report generating and more.

Testing Solution for SMBs

A secure website is crucial to any online business – small, medium or enterprise scale. PenQ can save companies from huge investments in proprietary tools and over-sized testing teams. Integrated with resource links, security guidelines, and testing tools, PenQ empowers even less experienced testers to do a thorough job of checking for security loopholes.

A Slew of Tools

PenQ lets security testers access necessary system utilities and tools right from their browser, saving time and making tests a lot faster. Tools built-in range from those for anonymous browsing and system monitoring to ones for taking down notes and scheduling tasks.

Features

  • OWASP ZAP
  • Wfuzz Web Application Fuzzer
  • PenTesting Report Generator
  • OWASP WebScarab
  • Mozilla Add-ons Collection
  • Vulnerability Databases Search
  • OWASP WebSlayer
  • Integrated Tor
  • Access to Shell and System Utilities
  • Nikto Web Server Scanner
  • OWASP Penetration Testing Checklist
  • Collection of Useful Links

Full List of Mozilla Add-ons

  • anonymoX
  • Awesome Screenshot
  • ChatZilla
  • CipherFox
  • Clear Console
  • Cookies Manager+
  • Cookie Monster
  • CryptoFox
  • Email Extractor
  • Firebug
  • FireFlow
  • FireFTP
  • FireSSH
  • Greasemonkey
  • Groundspeed
  • HackBar
  • HackSearch
  • Header Spy
  • HttpFox
  • HttpRequester
  • JavaScript Deobfuscator
  • Library Detector
  • LinkSidebar
  • Proxy Selector
  • Proxy Tool
  • RefControl
  • RESTClient
  • Session Manager
  • SQL Inject Me
  • SQLite Manager
  • TrashMail.net
  • User Agent Switcher
  • Wappalyzer
  • Web Developer
  • Xinha Here!
  • XSS Me

Debian Based

PenQ is configured to run on Debian based distributions including Ubuntu and its derivative distros, and penetration testing operating systems such as BackTrack and Kali.

Steps to install and run PenQ

  • Download the PenQ package.
  • Open the command-line interface (CLI) and navigate to the location of the downloaded file.
    • cd [path to PenQ file]
  • Assign executable permission to this file.
    • chmod +x PenQ-installer-1.0
  • Run PenQ installer file from CLI.
    • ./PenQ-installer-1.0
  • Provide sudo password and wait for installation to complete.
  • Once installed, double-click the PenQ icon on desktop or run ‘penq’ from CLI to open and use the tool.

To uninstall PenQ, navigate to the PenQ folder at ‘/usr/share/PenQ’ and run the uninstaller.

Download PenQ