Security Dashboard
Latest addition – Tuesday 16 March 2010.
(25 %) : SpiderLabs Toolset for Pentesting
(7 %) : GeoIPgen v0.4 – Country-to-IPs generator
(7 %) : Cain & Abel v4.9.35 - released
(5 %) : Nmap 4.5x for Ipod and iPhone
(4 %) : AutoScan v1.5 available
GeoIPgen v0.4 – Country-to-IPs generator
Tuesday 9 March 2010 - 220 read - ( Keywords : Enumeration
,
GeoIPgen
,
Information Gathering
,
Network Discovery )
GeoIPgen is a country-to-IPs generator. It’s a geographic IP generator for IPv4 networks that uses the MaxMind GeoLite Country database. Geoipgen is the first published use of a geographic ip database in reverse to translate from country-to-IPs instead of the usual use of IP-to-country.
SpiderLabs Toolset for Pentesting
Sunday 7 March 2010 - 981 read - ( Keywords : Attack
,
Exploitation
,
Network Discovery
,
Penetration testing & Ethical Hacking )
SpiderLabs has developed dozens of tools over the years. Most of them end up as internal-only tools since they eventually make their way into one of Trustwave’s product offerings. Recently, we have decided to showcase some of these tools and provide them as Open Source to the information security community. The tools have been made available without warranty and are available under the GNU General Public License as published by the Free Software Foundation.
AutoScan v1.5 available
Saturday 27 February 2010 - 498 read - ( Keywords : AutoScan
,
IDS
,
Network Discovery
,
Network Monitoring )
AutoScan-Network is a network discovering and managing application. No configuration is required to scan your network. The main goal is to print the list of connected equipments in your network
dnsmap v0.30 - Passive DNS network mapper
Wednesday 24 February 2010 - 406 read - ( Keywords : dnsmap
,
Enumeration
,
Information Gathering
,
Network Discovery )
dnsmap (a.k.a. subdomains bruteforcer) was originally released back in 2006 and was inspired by the fictional story "The Thief No One Saw" by Paul Craig, which can be found in the book "Stealing the Network - How to 0wn the Box".
Nikto v2.1.1 released
Wednesday 3 February 2010 - 534 read - ( Keywords : Application Scanner
,
Network Discovery
,
Nikto
,
Vulnerability Scanner )
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).
Nmap v5.20 released
Wednesday 20 January 2010 - 574 read - ( Keywords : Footprinting
,
Network Discovery
,
Nmap
,
Penetration testing & Ethical Hacking )
Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free and open source (license).
Haraldscan v0.41 released
Saturday 9 January 2010 - 301 read - ( Keywords : Bluetooth
,
Enumeration
,
Haraldscan
,
Network Discovery )
The scanner will be able to determine Major and Minor device class of device, as well as attempt to resolve the device’s MAC address to the largest known Bluetooth MAC address Vendor list.
The goal of this project is to obtain as many MAC addresses mapped to device vendors as possible.
hostmap v0.2.1 released
Tuesday 29 December 2009 - 363 read - ( Keywords : Enumeration
,
hostmap
,
Network Discovery )
hostmap is a free, automatic, hostnames and virtual hosts discovery tool written in Ruby, licensed under GNU General Public License version 3 (GPLv3). It’s goal is to enumerate all hostnames and configured virtual hosts on an IP address. The primary users of hostmap are professionals performing vulnerability assessments and penetration tests.
Nmap 5.10BETA2 released : Citrix scanning & xmas greetings
Saturday 26 December 2009 - 675 read - ( Keywords : Footprinting
,
Network Discovery
,
Nmap
,
Penetration testing & Ethical Hacking )
Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free and open source (license).
FindDomains v0.1.1 released - search engine discovery tool
Tuesday 22 December 2009 - 304 read - ( Keywords : Enumeration
,
FindDomains
,
Information Gathering
,
Network Discovery )
The fastest search engine discovery tool that retrieves domains which are located at specified ip address/hostname.
hostmap v0.2 - hostname discovery tool
Friday 18 December 2009 - 500 read - ( Keywords : Enumeration
,
hostmap
,
Network Discovery )
hostmap is a free, automatic, hostnames and virtual hosts discovery tool written in Ruby, licensed under GNU General Public License version 3 (GPLv3). It’s goal is to enumerate all hostnames and configured virtual hosts on an IP address. The primary users of hostmap are professionals performing vulnerability assessments and penetration tests.
Kismac v0.3 released : The OSX Wireless Sniffer
Friday 18 December 2009 - 574 read - ( Keywords : kismac
,
Network Discovery
,
Password Cracking
,
Wireless )
KisMAC is an open-source and free sniffer/scanner application for Mac OS X. It has an advantage over MacStumbler / iStumbler / NetStumbler in that it uses monitor mode and passive scanning.
Scapy version 2.1.0 available
Tuesday 15 December 2009 - 479 read - ( Keywords : Network Discovery
,
Scapy )
Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions). Report modules are possible and easy to make. It is intended to do the same things as ttlscan, nmap, hping, queso, p0f, xprobe, arping, arp-sk, arpspoof, firewalk, irpas, tethereal, tcpdump, etc.
Halberd v0.2.3 available : Load balancer configuration auditing
Friday 11 December 2009 - 296 read - ( Keywords : Halberd
,
Network Discovery )
To cope with heavy traffic loads, web site administrators often install load balancer devices. These machines hide (possibly) many real web servers behind a virtual IP. They receive HTTP requests and redirect them to the real web servers in order to share the traffic between them.
sambascan2 v0.4.2 released - scanning por SMB Shares
Thursday 3 December 2009 - 581 read - ( Keywords : Enumeration
,
Network Discovery
,
Sambascan2
,
Vulnerability Scanner )
Sambascan2 allows you to search an entire network or a number of hosts for SMB shares. It will also list the contents of all public shares that it finds.
HaraldScan v0.401 released
Thursday 3 December 2009 - 253 read - ( Keywords : Bluetooth
,
Enumeration
,
Haraldscan
,
Network Discovery )
The scanner will be able to determine Major and Minor device class of device, as well as attempt to resolve the device’s MAC address to the largest known Bluetooth MAC address Vendor list.
The goal of this project is to obtain as many MAC addresses mapped to device vendors as possible.
vmap v0.7 released - identifying remotely daemons
Thursday 26 November 2009 - 526 read - ( Keywords : Enumeration
,
Information Gathering
,
Network Discovery
,
Penetration testing & Ethical Hacking
,
vmap )
vmap lets you remotely ident the version of a daemon. It currently works for ftp, smtp, pop3, imap and http.
Nmap 5.10BETA1 released
Tuesday 24 November 2009 - 354 read - ( Keywords : Footprinting
,
Network Discovery
,
Nmap )
Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free and open source (license).
Knock v1.3b - subdomain bruteforcer scan
Wednesday 18 November 2009 - 522 read - ( Keywords : Application Scanner
,
Bruteforcers
,
Enumeration
,
Knock
,
Network Discovery )
Knock is a python script designed to enumerate subdomains on a target domain trought a wordlist. This code is released under the GNU / GPL v3.
Cain & Abel v4.9.35 - released
Monday 26 October 2009 - 3338 read - ( Keywords : Bruteforcers
,
Cain and Abel
,
Exploitation
,
Network Discovery
,
VoIP
,
Wireless )
Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocol.
