atk > introduction Last update: 2005/01/19 by Marc Ruef

Introduction

The acronym ATK stands for Attack Tool Kit. It was first developed to provide a very small and handy tool for Windows to realize fast checks for dedicated vulnerabilities. In the meanwhile it is a combination of security scanner (e.g. Nessus) and exploiting framework (e.g. MetaSploit). The special thing about ATK is that the tool is able to do the work without great interaction. But there is also always the possibility to vary and change the behaviour of the software. This concern the plugins, checking, enumeration and reporting. The user is not dependent of the ideas of the developers - If needed because of the modularity nearly every change can be done within a few seconds. ATK is written in Visual Basic, underlies the General Public License (GPL) and is absolutely free to use and distribute.

Figure 1: The Attack Tool Kit 4.1 in action

Figure 1: The Attack Tool Kit 4.1 in action


Benefits and features:
  • Open-source (GPL) and free available for everyone
  • Detection and exploiting mode available
  • Simple plugin and attack editing during run-time
  • Plugins are written in xml and usually open-source (GPL) too
  • Modular architecture (e.g. suggestions and reporting)
  • Real-time attack visualisation and advanced logging
  • Detailed response and attack analysis
  • Generation on individual reports
  • Scanning and enumeration tools (nslookup, ping, portscanner)
  • Nessus NASL support (experimental)
  • Support for CVE names, SecurityFocus, CERT, Snort, etc.
  • See the FAQ for more details
    		•