The samhain open source host-based intrusion detection system (HIDS) provides file integrity checking and logfile monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes.
Samhain v2.6.4 x| Don’t read proc_root_iops in sh_kern.c (Problem report by H. R.) Logfile check can check output of shell commands Use data directory as default for logfile checkpoints Fix broken checkpoint save/restore for logfiles
MD5: (...)
Home > Security Tools
Security Tools
-
SAMHAIN v2.7.0 released
1 May 2010, by Tools Tracker Team -
DAVTest v1.0 - WebDAV Application
1 May 2010, by Tools Tracker TeamDAVTest tests WebDAV enabled servers by uploading test executable files, and then (optionally) uploading files which allow for command execution or other actions directly on the target. It is meant for penetration testers to quickly and easily determine if enabled DAV services are exploitable.
DAVTest supports: Automatically send exploit files Automatic randomization of directory to help hide files Send text files and try MOVE to executable name Basic and Digest authorization Automatic (...) -
[PDF] Penetration: from Application down to OS.
1 May 2010, by Tools Tracker TeamGetting OS Access Using Lotus Domino Application Server Vulnerabilities.
This whitepaper continues a series of publications made by DSecRG
researchers describing various ways of obtaining access to the server operating system, using vulnerabilities in popular business applications which meet in the corporate environment.
This whitepaper continues a series of publications made by DSecRG
researchers describing various ways of obtaining access to the server operating system,
using (...) -
Suricata v0.8.2 released
1 May 2010, by Tools Tracker TeamThe Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field.
New features Support for the following keywords: detection_filter, http_client_body The HTTP parser can now set server personalities threshold.config support The experimental CUDA code now also works on x86_64 IP address only rules for IPv6 are now (...) -
WhatWeb just updated to v0.4.2
1 May 2010, by Tools Tracker TeamWhatWeb is a next generation web scanner that identifies what websites are running. Flexible plugin architecture with over 80 plugins so far. Passive plugins use information in the headers, cookies, HTML body and URL. Aggressive plugins can identify versions of Joomla, phpBB, etc by making extra requests to the webserver
Version 0.4.2 Added header-hash plugin. Makes a hash of the first 500 characters. This is useful to identify unknown systems Added footer-hash plugin. Makes a hash of the (...) -
Sysinternal AccessChk v5.0 released
1 May 2010, by Tools Tracker TeamAccessChk, a command-line tool for viewing the effective permissions on files, registry keys, services, processes, kernel objects, and more.
As a part of ensuring that they’ve created a secure environment Windows administrators often need to know what kind of accesses specific users or groups have to resources including files, directories, Registry keys, global objects and Windows services. AccessChk quickly answers these questions with an intuitive interface and output.
Changes : A a new (...) -
Spiceworks v4.7 build 50667 released
1 May 2010, by Tools Tracker TeamSpiceworks is the complete network management & monitoring, helpdesk, PC inventory & software reporting solution to manage Everything IT in small and medium businesses.
Spiceworks Lets You... Inventory Your Network & PCs Monitor & Manage Your Network Manage Your IT Assets Manage Changes & Configurations Map Your NetworkBETA Audit Your Software Troubleshoot Your Network Run an IT Help Desk Be an MSP Talk to IT Pros Like You Spiceworks IT Desktop is designed for IT Pros (...) -
OpenDLP v0.1 released
1 May 2010, by Tools Tracker TeamOpenDLP is a free and open source, agent-based, centrally-managed, massively distributable data loss prevention tool released under the GPL. Given appropriate Windows domain credentials, OpenDLP can simultaneously identify sensitive data at rest on hundreds or thousands of Microsoft Windows systems from a centralized web application. OpenDLP has two components: a web application and an agent.
Web Application Automatically deploy and start agents over Netbios When done, automatically stop, (...) -
[PDF] Hackin9 - May 2010 Released! (NOW FREE!)
30 April 2010, by Tools Tracker TeamHakin9 magazine is now a FREE, ONLINE, MONTHLY magazine!
All you need to do to get a new issue each month is subscribe to the newsletter.
Inside: Writing WIN32 shellcode with a C-compiler Flash memory mobile forensic Threat Modeling Basics Pwning Embedded ADSL Routers Firewalls for Beginners
Regulars: ID Fraud Expert Says by Julian Evans: Identity Theft Protection Services – a new industry is born Tool reviews: NTFS Mechanic, Active@ Undelete Professional, KonBoot v1.1 Interview with: (...) -
Fuzzdb v1.07 released
29 April 2010, by Tools Tracker TeamA comprehensive set of fuzzing patterns for discovery and attack during highly targeted brute force testing of web applications.
Fuzzdb is a comprehensive set of known attack pattern sequences to be utilized for intelligent brute force testing in order to rapidly identify exploitable conditions in new applications.
Primary sources used for attack pattern research: researching old web exploits for repeatable attack strings scraping scanner patterns from http logs various books, articles, (...)