pen-test-assistant


FREE Community Edition

To assist penetration testers and Red Teamers from the ground up and support new feature requests, we’ve created a Free Community version of the software that can be loaded ideally on a corporate laptop running Virtual Box.

The Community Edition, Virtual Box vm  is for amd64 (Intel only systems). It is called the “hotwan companion”. 

It is a modified version of Ubuntu 22 LTS.

The VM Companion is roughly 5% of what the raspberry Pi 4 image is capable of. It is designed to augment  and integrate with the raspberry pi4 , 8Gig of Ram system.

There will be monthly updates where new images are released.

We do take feature requests so please email us at support@hotwan.com

The Download link is provided here:

https://updates.hotwan.com:9999/867uftgjh-ghtyh-88766898-9865/06-30-23_hotwan_companion_vm_GOLD-STABLE-X.2.0.36-RELEASE.zip

This vm image is about 64 Gig after unzipping. 

Use under NAT IP addressing only under the host.

The username / password for the companion should be changed immediately. The default login is:

hotwan/hotwan123+

When a new image is released, previous versions are deprecated immediately and are instantly no longer supported.  Do not use previous versions because of security concerns as we actively maintain and update the VM companion.

ProfESSIONAL EDITION

$160:

- downloadable image only with 1 year of monthly updates
(designed for raspberry pi4 / 8 gig ram)

- Companion Virtual box image
(designed for amd64/ intel architecture)


- or -

$549: (does not include shipping)

- 1 Raspberry Pi4 / 8 Gig Ram hardware and image with 1 year of monthly updates


- companion virtual box image
(Designed for amd64 / intel architecture)

HotWAN launched it’s new Flagship Product for Red Teaming and Penetration Testers.

Though we provide Penetration Testing and Red Team Services, we also provide a product with the same name as our company, hotwan.

Essential for every Red Teamer’s backpack.

Starting at $200 a year (monthly updates of just the image itself) , the device is built on a Raspberry Pi4 platform with affordability, size and plugin capabilities.

The desire for building such a product comes for decades of Penetration Testing while realizing the pain points in the Industry:

Specifically designed for Anti-Tracking / Stealth Operations ,  the system also addresses isolated networks with no Internet Connections, C2C capabilities, IoT Hardware Hacking and Weaponization, AI Assistants, reverse engineering Machine Learning models, Wireless, Indepth onboard tutorials, Quick and Easy to use with Fast set-up times.

No data is stored in the Cloud.

2023 Feature Sets:

IoT Scanning Engine:

  • Unauthenticated
  • Authenticated (coming soon with automation)
  • Reverse engineering
  • Arduino Integration
  • Sensors
  • Malware Detection

Customizable Features:

  • Command and Control (C2)
  • Peer to Peer Communications
  • Client – Server Configurations for 2 devices
  • C2 Server can run as a Qemu emulation or on another device
  • Backdoor Agents for Android, ARM and MIPs Architectures
  • Air Gap Hopper
  • Cryptex Site Bouncer
  • DNS Bouncer
  • Reverse Shell Tunneling (ICMP, DNS, TLS, SSH, SRTP, WebSockets, HTML5 Web Messaging)
  • Autonomous Drop Box Mode
  • Pivoteer*
  • Dynamic DNS

Cloud Exploitation:

  • AWS
  • Azure
  • Kubernetes
  • Docker

Network Infrastructure:

  • Recon (scanning)
  • Exploitation
  • Tunneling

AI Assistance Integration:

  • Testing of Alexa, Google Assistant and Siri Skills in products

Mobile Applications:

  • Runtime and Static Analysis
  • Android
  • iOS

Tutorials:

  • On-board Step-by-Step Instructions

Secure Source Code Review:

  • Binary Analysis
  • Static Analysis
OpenSource Intelligence (OINST)

Web Applications:

  • Vulnerability Scanning and Exploitation
  • Man-in-the-Middle
  • OWASP Top 10 and Beyond
  • Cross-site scripting detection via Machine Learning models

On-board Machine Learning Models:

  • Red Team Automation
  • Discovery
  • Exploitation

Hardware Hacking Suites:

  • Bus Communications (SPI, JTAG and UART)
  • Ethernet, USB, HDMI
  • Sensor Testing
  • Smart home technologies such as Alarms, Security Control Panels, Video doorbells, gate and locks
  • Industrial Controls such as ICS, SCADA and PLCs
  • Simulations of Sensors

Wireless:

  • Bluetooth / BLE
  • WiFi
  • Man-in-the-Middle Capabilities
  • Z-Wave Plus
  • Zigbee

Updates:

  • Regular, on-going Support