For forensic work I use helix, networking i use nmap, tcpdump, wireshark, etc depending on how much noise i wanna create. Vulnerabilities: nessus, metasploit when im feelin noobish, but basically I just use all the lines of code trapped in my head :P