Category Data Mining

vDNA Crosslinks as Christmas gift

vDNA Crosslinks allows you to gather +80.000 Security Alerts data from Security-Database and export it as JSON format. Exports provide related Alert information. By that we mean, all alerts linked to the first one at specified depth.

Read More

MetaGoofil v1.4b released

Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,odp,ods) availables in the target/victim websites.

Read More

OpenDLP v0.1 released

OpenDLP is a free and open source, agent-based, centrally-managed, massively distributable data loss prevention tool released under the GPL. Given appropriate Windows domain credentials, OpenDLP can simultaneously identify sensitive data at rest on hundreds or thousands of Microsoft Windows systems from a centralized web application.
OpenDLP has two components: a web application and an agent.

Read More

(update) Foca v2.0.1: in the wild

FOCA 2 has a new algorithm which tries to discover as much info related to network infrastructure as possible. In this alpha version FOCA will add to the figured out network-map, all servers than can be found using a recursive algorithm searching in Google, BING, Reverse IP in BING, Well-known servers and DNS records, using an internal PTR-Scaning, et

Read More

Splunk the IT Log Management Software v4.1 released

Splunk is software that provides unique visibility across your entire IT infrastructure from one place in real time. Only Splunk enables you to search, report, monitor and analyze streaming and historical data from any source.

Read More

OSSEC v2.4 released

OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS). It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking, Windows registry monitoring, centralized policy enforcement, rootkit detection, real-time alerting and active respons

Read More

DIRB Web Content Scanner v2.03 released

DIRB is a Web Content Scanner. It looks for existing (and/or hidden) Web
Objects. It basically works by launching a dictionary based attack against
a web server and analizing the response.

Read More

(updated) SHODAN - Computer Search Engine released

SHODAN lets you find servers/ routers/ etc. by using the simple search bar up above. Most of the data in the index covers web servers at the moment, but there is some data on FTP, Telnet and SSH services as well.

Read More

OSSEC v2.3 BETA available

OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS). It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking, Windows registry monitoring, centralized policy enforcement, rootkit detection, real-time alerting and active respons

Read More

NetworkMiner updated to v0.91

NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network.

Read More

NetWitness v9.0 released

NetWitness NextGen is a comprehensive network security monitoring solution. Looking for insider threats, data leakage, malware activity, asset misuse, network anomalies, compliance, and network e-discovery.

Read More

NetworkMiner v0.90 released!

NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network.

Read More

NetworkMiner v0.89 - Network Forensic Analysis Tool

NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network.

Read More

OSSEC v2.2 released

OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS). It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking, Windows registry monitoring, centralized policy enforcement, rootkit detection, real-time alerting and active respons

Read More

Interoute Internet Attacks Barometre online

Interoute’s Internet Barometer shows real-time statistics on Internet attacks worldwide and provides information on the source of those attacks.
The source of attacks indicates potentially hostile organizations and networks. So, the Barometer identifies whether the perpetrator is a "known Bad Guy"; a spoofer who is trying to hide his or her identity by using different IP addresses; or an unknown attacker.

Read More

Web Information Gathering online

Sucuri WIGS (Web information gathering) is a simple tool to collect public information from any web site. It is very lightweight, executing just a few normal requests to your site and processing the information internally.

Read More

NetworkMiner v0.88 released

A passive network sniffer/packet capturing tool for Windows. NetworkMiner can detect OS’s, hostnames, open ports, sessions and extract files without putting any traffic on the network. NetworkMiner can also parse PCAP files for offline forensic analysis

Read More

MetaGooFil updated to v1.4a

Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,odp,ods) availables in the target/victim websites.

Read More

WikiScanner 2.0, an incredible project to keep an eye on

WikiScanner (also known as Wikipedia Scanner) is a tool created by Virgil Griffith which consists of a publicly searchable database that links millions of anonymous Wikipedia edits to the organizations where those edits apparently originated, by cross-referencing the edits with data on the owners of the associated block of IP addresses. WikiScanner does not work on edits made under a username.

Read More

SEAT (Search Engine Assessment Tool) v0.3.0 released

SEAT (Search Engine Assessment Tool) is the next generation
information digging application geared toward the needs of security
professionals. SEAT uses information stored in search engine databases,
cache repositories, and other public resources to scan a site for potential
vulnerabilities.

Read More