LAST ARTICLE

Integrating OVAL Interpreter into BackTrack 3.0
Monday 23 June 2008 - 801 read - ( Keywords : BackTrack , OVAL )

Open Vulnerability and Assessment Language (OVAL) is an international, information security, community standard to promote open and publicly available security content, and to standardize the transfer of this information across the entire spectrum of security tools and services. OVAL includes a language used to encode system details, and an assortment of content repositories held throughout the community

FireCAT 1.4 released
Monday 12 May 2008 - 9548 read - ( Keywords : FireCAT , Firefox , Framework )

FireCAT (Firefox Catalog of Auditing exTension) is a mindmap collection of the most efficient and useful firefox extensions oriented application security auditing and assessment

View all articles

LAST TOOLS

FireCAT 1.4 package released
Friday 21 November 2008 - 5 read - ( Keywords : FireCAT , Firefox , Framework )

FireCAT is a mapmind collection of the "most" useful firefox plugins that could be used for web security assessment. This means that you can turn your FireFox to an hacking / auditing environment.


NetWitness Investigator Free edition v8.6 : the tactical network analyzer
Wednesday 19 November 2008 - 140 read - ( Keywords : Data Mining , Forensics , NetWitness Investigator , Visualization )

Investigator provides security operations staff, auditors, and fraud and forensics investigators the power to perform unprecedented free-form contextual analysis of raw network data captured and reconstructed by the NetWitness NextGen infrastructure. Developed originally for the U.S. Intelligence Community, and now used extensively by Law Enforcement, Defense, and other public and private organizations, Investigator is based upon 10 years of development and deployment in some of the most demanding and complex threat environments.


Saint vulnerability scanner updated to 6.9.3
Wednesday 19 November 2008 - 65 read - ( Keywords : Saint , Vulnerability Management , Vulnerability Scanner )

SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of the scan results are presented in hyperlinked HTML pages, and reports on complete scan results can be generated and saved


Metasploit 3.2 released
Wednesday 19 November 2008 - 94 read - ( Keywords : Automated Exploiter , Metasploit )

the Metasploit Project announced today the free, world-wide availability of version 3.2 of their exploit development and attack framework. The latest version is provided under a true open source software license (BSD) and is backed by a community-based development team. Metasploit runs on all modern operating systems, including Linux, Windows, Mac OS X, and most flavors of BSD. Metasploit has been used on a wide range of hardware platforms, from massive Unix mainframes to the iPhone. Users can access Metasploit using the tab-completing console interface, the Gtk GUI, the command line scripting interface, or the AJAX-enabled web interface. The Windows version of Metasploit includes all software dependencies and a selection of useful networking tools.


MultiInjector v0.3 released
Friday 14 November 2008 - 187 read - ( Keywords : Automated Exploiter , Fuzzers , MultiInjector , Vulnerability Scanner )

MultiInjector claims to the first configurable automatic website defacement software.


OpenVAS 2.0 beta 2 available
Friday 14 November 2008 - 104 read - ( Keywords : OpenVAS , Vulnerability Management , Vulnerability Scanner )

OpenVAS stands for Open Vulnerability Assessment System and is a network security scanner with associated tools like a graphical user fontend. The core is a server component with a set of plugins to test various vulnerabilities in remote systems and applications.


Miranda tool: Auditing the UPNP devices
Saturday 8 November 2008 - 198 read - ( Keywords : Configurations checks , Enumeration , Information Gathering , Miranda )

Miranda is a Python-based Universal Plug-N-Play client application designed to discover, query and interact with UPNP devices, particularly Internet Gateway Devices (aka, routers). It can be used to audit UPNP-enabled devices on a network for possible vulnerabilities


XCobra Web application scanner v0.2
Wednesday 5 November 2008 - 346 read - ( Keywords : Application Scanner , Vulnerability Scanner , xcobra )

XCobra is a web application scanner utility written in python and GTK.


OpenVAS 2.0 beta available
Friday 31 October 2008 - 236 read - ( Keywords : OpenVAS , Vulnerability Scanner )

OpenVAS stands for Open Vulnerability Assessment System and is a network security scanner with associated tools like a graphical user fontend. The core is a server component with a set of plugins to test various vulnerabilities in remote systems and applications.


Tcpdump 4.0.0 and Libpcap 1.0.0 released
Tuesday 28 October 2008 - 232 read - ( Keywords : Data Sniffer , Libpcap , Tcpdump )

tcpdump is a common computer network debugging tool that runs under the command line. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is attached


0 | 10 | 20 | 30 | 40 | 50 | 60 | 70 | 80 |...