Peach is a cross-platform fuzzing framework. Its main goals include short development time, code reuse, ease of use, and flexibility. It can fuzz just about anything, including COM/ActiveX, SQL, shared libraries and DLLs, network applications, and the Web. Tags
Peach is a SmartFuzzer that is capable of performing both generation and mutation based fuzzing.
Peach requires the creation of PeachPit files that define the structure, type information, and relationships in the data to be fuzzed. (...)
Home > Security Tools
Security Tools
-
Peach Fuzzer Framework v2.3.4 released
10 April 2010, by Tools Tracker Team -
pvefindaddr v1.30 released
10 April 2010, by Tools Tracker Teampvefindaddr is a PyCommand (plugin) for Immunity Debugger. Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry’s first heap analysis tool built specifically for heap creation, and a large and well supported Python API for easy extensibility.
Drop the file in the pycommands folder within your Immunity Debugger installation folder. You can get the list of (...) -
Scapy v2.1.1 in the wild
10 April 2010, by Tools Tracker TeamScapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions).
Scapy also performs very well on (...) -
SARA-7.9.2a the final version released
9 April 2010, by Tools Tracker TeamThe Security Auditor’s Research Assistant (SARA) is a third generation network security analysis tool that that has been available and actively updated for over 10 years. Sadly, all good things have to come to an end and so it goes for SARA. SARA 7.9.1 is our last release. Actually, SARA-7.9.2a is the final release.
The first generation assistant, the Security Administrator’s Tool for Analyzing Networks (SATAN) was developed in early 1995. It became the benchmark for network security (...) -
CSniffer Command Line Network Sniffer v1.0.0.3 released
9 April 2010, by Tools Tracker TeamThis tool acts much like a standard Ethernet network sniffer. However, unlike a traditional packet sniffer it doesn’t attempt to capture and decode all traffic but instead is geared toward discovering useful infrastructure and security-related data from the network, often from traffic not sent to or from the host system i.e. general broadcast network traffic. This data can reveal all manner of useful information, ranging from live systems on the network, hostnames, Ipv6 systems, routers and (...)
-
Security-Database now mapping alerts with CWE/SANS Top 25
9 April 2010, by Tools Tracker TeamThe 2009 CWE/SANS Top 25 Most Dangerous Programming Errors is a list of the most significant programming errors that can lead to serious software vulnerabilities. They occur frequently, are often easy to find, and easy to exploit. They are dangerous because they will frequently allow attackers to completely take over the software, steal data, or prevent the software from working at all.
We just updated our Vulnerability Cross Link Engine to take into account alerts classified as CWE/SANS (...) -
Security-Database integrates CAPEC v1.5
9 April 2010, by Tools Tracker TeamCommon Attack Pattern Enumeration and Classification (CAPEC) provides a a publicly available catalog of attack patterns along with a comprehensive schema and classification taxonomy. The CAPEC assists in enhancing security throughout the software development lifecycle, and to support the needs of developers, testers and educators
In an effort to remain compliant to security open standards, we’ve just updated our vulnerability database to reflect the latest changes made to the CAPEC catalog (...) -
Secured Qubes OS Initial public release
9 April 2010, by Tools Tracker TeamQubes is an open source operating system designed to provide strong security for desktop computing. Qubes is based on Xen, X Window System, and Linux, and can run most Linux applications and utilize most of the Linux drivers. In the future it might also run Windows apps.
Qubes implements Security by Isolation approach. To do this, Qubes utilizes virtualization technology, to be able to isolate various programs from each other, and even sandbox many system-level components, like networking (...) -
Track security issues with iCert-XMCO iPhone Application v1.1
8 April 2010, by Tools Tracker TeamXMCO Partners, a consulting firm specializing in computer security, presents its application iCERT-XMCO.
The application consists of 3 main tabs: The first "INFO" to track key information security (new attacks, viruses, data leaks, expert opinion of the week ....) The second "ALERT" The notified alerts of the moment The third "TECH" gives an overall description of the main vulnerabilities and issues of the day
Changelog Egde (...) -
FreeSentral IP PBX LiveCD v1.0 released
8 April 2010, by Tools Tracker TeamFreeSentral is a full IP PBX consisting of a Linux Distribution, an IP PBX and a Web Graphical User Interface for easy configuration.
Features Define, group extensions Set dial plan Direct Inward Calling Set Auto Attendant Music on hold Short Dialing Set call forwarding Voicemail
Our opinion
For all security audits on VoIP systems, FreeSental can make a quick and easy solution to implement. It can therefore be used as a training platform for testing VoIP vulnerabilities and issues. See (...)