Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

10:00 AM
Dark Reading
Dark Reading
Products and Releases

Advanced Enterprise Penetration Testing Device Now Fits in Your Pocket

Pwnie Express Unveils Next Generation State-of-the-Art Pwn Phone 2014.

Boston, MA May 5, 2014 -- Pwnie Express today revealed the next generation of its  game-changing Pwn Phone, a cutting edge sleek phone that doubles as a powerful penetration testing device making it incredibly easy to evaluate wired, wireless and Bluetooth networks.

The leader in vulnerability assessment and penetration testing devices, the Pwn Phone 2014 is the most portable pentesting device yet.  Its custom Android front-end and ‘one-click’ pentesting applications and software updates make it the ideal choice for pentesters who are on the road or conducting a company or agency walk through.

“We are excited to unveil our latest penetration testing device,” said Dave Porcello, Pwnie Express CTO and founder. “Using the popular LG Nexus 5 phone, the Pwn Phone levels the playing field, delivering the 100+ most popular open source assessment and penetration testing tools and leverages the same UI as our popular Pwn Pad but in a smaller form factor.”

“As someone who pentests all the time, having something versatile, that I can slip in my pocket, and use at a moments notice is invaluable to me. The new Pwn Phone is a must have for pentesters.” said David Kennedy, the founder and principal security consultant at TrustedSec LLC, which works with large, medium and small organizations to identify and reduce risk within any size organization. “By adding this quick and easy-to-use device to their arsenal of devices, I can do fast penetration testing of both wired and wireless networks all from my pocket. It’s pretty cool.”

 wn Pad Core Features Include:

•           Custom Android front-end with one-touch pentesting applications, including Evil AP, Strings Watch, Full-Packet Capture, Bluetooth Scan, & SSL Strip

•           Custom Kali Linux back-end with comprehensive pentesting suite, including Metasploit, SET, Kismet, Aircrack-NG, SSLstrip, Ettercap-NG, Bluelog, Wifite, Reaver, MDK3, & FreeRADIUS-WPE

•           Simple web-based administration and one-touch in-product updates

•           6 different covert channels to tunnel through application-aware firewalls & IPS

•           High performance CPU/GPU, large HD display, powerful battery

•           External high-gain Bluetooth supporting packet injection (up to 1000')

•           External USB-Ethernet adapter for wired network pentesting


Pwnie Express provides innovative, easy-to-use, rapid deployment products comprised of sensors available in a variety of form factors, like the groundbreaking Pwn Phone, that deliver previously unattainable intelligence. Pwnie makes it incredibly easy to evaluate risk in remote and distributed environments. More than a 1000 enterprises across verticals including retail, finance, health, and manufacturing as well as service providers and government organizations rely on Pwnie Express to know who and what is accessing their networks.


About Pwnie Express 
Pwnie Express is the leading provider of innovative sensors that assess network security risks in remote and hard to reach locations. Thousands of enterprises and government organizations worldwide rely on Pwnie Express’s products to conduct drop-box penetration testing and provide unprecedented insight into their distributed network infrastructure. Pwnie Express’s smart devices allow organizations to see all the things while leveraging open source tools and platforms. The award-winning products are backed by the expertise of Pwnie Express Labs, the company's security research arm. The company is headquartered in Boston, Massachusetts. For more information contact http://www.pwnieexpress.com



Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Why Vulnerable Code Is Shipped Knowingly
Chris Eng, Chief Research Officer, Veracode,  11/30/2020
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: I think the boss is bing watching '70s TV shows again!
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2020-12-03
Pimcore is an open source digital experience platform. In Pimcore before version 6.8.5 it is possible to modify & create website settings without having the appropriate permissions.
PUBLISHED: 2020-12-02
PHP remote file inclusion in the assign_resume_tpl method in Application/Common/Controller/BaseController.class.php in 74CMS before 6.0.48 allows remote code execution.
PUBLISHED: 2020-12-02
The Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page.
PUBLISHED: 2020-12-02
SQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication.
PUBLISHED: 2020-12-02
An SQL injection vulnerability was discovered in Online Doctor Appointment Booking System PHP and Mysql via the q parameter to getuser.php.