The Glider

Posted in Security Tools, Tools on March 26th, 2010 by SecurityDatabase

WeakNet Linux is small enough to fit onto a CD current build 600MB and runs servers directly from the CD including Web / PHP, FTP, SSH, and more.
Source WeaknetLabs
Development has started! Our new Linux will feature more options and more hacking tools than the last and look 10 times better! So far the details I can give are: FluxBox is still the default WM, boot time is around 15 seconds on an 800MHz AMD laptop. Broadcom drivers' inject at high rates. Ath9k injects, Ath5k injects, and RT73 (...) - Security Tools / Penetration testing & Ethical Hacking, LiveCD, WeakNet Linux

Tags: Tools |

Posted in Security Tools, Tools on March 26th, 2010 by SecurityDatabase

Process Explorer is an advanced process management utility that picks up where Task Manager leaves off. It will show you detailed information about a process including its icon, command-line, full image path, memory statistics, user account, security attributes, and more. When you zoom in on a particular process you can list the DLLs it has loaded or the operating system resource handles it has open. A search capability enables you to track down a process that has a resource opened, such as (...) - Security Tools / Information Gathering, Configurations checks, Forensics, Process Explorer

Tags: Tools |

Posted in Security Tools, Tools on March 26th, 2010 by SecurityDatabase

The SANS SIFT Workstation is a VMware Appliance that is pre-configured with all the necessary tools to perform a detailed digital forensic examination. It is compatible with Expert Witness Format (E01), Advanced Forensic Format (AFF), and raw (dd) evidence formats. The brand new version has been completely rebuilt on an Ubuntu base with many additional tools and capabilities that can match any modern forensic tool suite.
SANS SIFT Workstation 2.0 Overview
VMware Appliance
Ready to tackle (...) - Security Tools / Framework, Forensics, SIFT

Tags: Tools |

Posted in Security Tools, Tools on March 25th, 2010 by SecurityDatabase

ZeroDayScan is a free security web scanning service brought to you by experienced security experts. The service is provided free of charge.
When security experts talk about zero day bugs and exploits they talk about a new security bugs and vulnerabilities that are unknown to others. Zero Day Bug term is derived from the age of the exploit. When a vendor becomes aware of a security hole, there is a race to close it before attackers discover it or the vulnerability becomes public. A "zero (...) - Security Tools / Vulnerability Scanner, Application Scanner, ZeroDayScan

Tags: Tools |

Posted in Security Tools, Tools on March 25th, 2010 by SecurityDatabase

The OpenSCAP Project was created to provide an open-source framework to the community which enables integration with the Security Content Automation Protocol (SCAP) suite of standards and capabilities.
It is the goal of OpenSCAP to provide a simple, easy to use set of interfaces to serve as the framework for community use of SCAP.
Version 0.5.8
new s-expr parser
new probes from unix schema
file probe memory optimization
xccdf test_results implementation
extended OVAL API
documentaion (...) - Security Tools / Vulnerability Scanner, Configurations checks, Local auditing, OpenSCAP

Tags: Tools |

Posted in Security Tools, Tools on March 25th, 2010 by SecurityDatabase

SIP Inspector is a tool written in JAVA to simulate different SIP messages and scenarios. You can create your own SIP signaling scenarios, customize SIP messages and monitor incoming and outgoing messages. The tool can play RTP streams from a pcap file.
Release notes 1.00
Multiple simultaneous calls fully implemented
Call generation can be set with respect to calls/second, maximum concurrent calls and total allowed calls
If ran as a call generator, upon completion the tool provides a (...) - Security Tools / Penetration testing & Ethical Hacking, VoIP, Configurations checks, Sip Inspector

Tags: Tools |

Posted in Security Tools, Tools on March 25th, 2010 by SecurityDatabase

Burp Suite is an integrated platform for attacking web applications. It contains all of the Burp tools with numerous interfaces between them designed to facilitate and speed up the process of attacking an application. All tools share the same robust framework for handling HTTP requests, persistence, authentication, downstream proxies, logging, alerting and extensibility.
This beta release introduces a large number of new features and other enhancements to Burp Intruder. A brief summary (...) - Security Tools / Vulnerability Scanner, Application Scanner, Commercial, Burp

Tags: Tools |

Posted in Security Tools, Tools on March 25th, 2010 by SecurityDatabase

PenTBox is a Security Suite with programs like Password Crackers, Denial of Service testing tools (DoS and DDoS), Secure Password Generators, Honeypots and much more. Destined to test security/stability of networks and more. Programmed in Ruby, and oriented to GNU/Linux systems (but compatible with Windows, MacOS and more).
Version 1.3.2

• FTP fuzzing improved and finished.

Improved CLI.
Improved files working.
Now the Honeypot log have a file by default.
Added a hping3-based (...) - Security Tools / Vulnerability Scanner, Password Cracking, Framework, PenTBox

Tags: Tools |

Posted in Security Tools, Tools on March 23rd, 2010 by SecurityDatabase

The samhain open source host-based intrusion detection system (HIDS) provides file integrity checking and logfile monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes.
Samhain v2.6.4
Don't read proc_root_iops in sh_kern.c (Problem report by H. R.)
Logfile check can check output of shell commands
Use data directory as default for logfile checkpoints
Fix broken checkpoint save/restore for logfiles
MD5: (...) - Security Tools / IDS, Network Monitoring, Samhain

Tags: Tools |

Posted in Security Tools, Tools on March 23rd, 2010 by SecurityDatabase

scRUBYt! is a simple but powerful web scraping toolkit written in Ruby. It's purpose is to free you from the drudgery of web page crawling, looking up HTML tags, attributes, XPaths, form names and other typical low-level web scraping stuff by figuring these out from your examples copy'n'pasted from the Web page or straight from Firebug.
scRUBYt! has only 2 dependencies, hpricot and mechanize (optionally FireWatir for AJAX scraping).
Changements :
[NEW] possibility to use FireWatir as the (...) - Security Tools / Information Gathering, Application Scanner, Configurations checks, scRUBYt!

Tags: Tools |