Here are some common tools used for gaining access in penetration testing:

1. Metasploit Framework: Metasploit is an open-source penetration testing tool that can

be used for exploiting vulnerabilities in a network or application. It includes a wide
range of modules and payloads that can be used to gain access to a system.
2. Netcat: Netcat is a versatile tool that can be used for network exploration,
management, and security auditing. It can also be used for reverse shells, port
scanning, and file transfers.
3. Hydra: Hydra is a password cracking tool that can be used to brute force login
credentials for various protocols, including FTP, SSH, Telnet, and HTTP.
4. John the Ripper: John the Ripper is a password cracking tool that can be used to crack
passwords for various operating systems, applications, and file formats.
5. Cain and Abel: Cain and Abel is a password recovery tool that can be used to recover
passwords for various protocols, including FTP, SSH, Telnet, and HTTP. It can also
be used to perform man-in-the-middle attacks and capture network traffic.
6. Aircrack-ng: Aircrack-ng is a set of tools used for wireless network auditing and
penetration testing. It can be used to crack WEP and WPA/WPA2-PSK passwords, as
well as to perform deauthentication attacks.
7. SQLMap: SQLMap is a tool used for SQL injection attacks. It can be used to identify
and exploit SQL injection vulnerabilities in web applications.
These are just a few of the many tools available for gaining access in penetration testing. It is
important to choose the right tool for the task at hand and to use it ethically and responsibly.