Security-Database Blog

The Common Vulnerability Scoring System (CVSS) provides an open framework for communicating the characteristics and impacts of IT vulnerabilities. CVSS consists of 3 groups: Base, Temporal and Environmental.

Security-Database.com is happy to announce the release of the 3rd version of the Website.

tcpdump is a common computer network debugging tool that runs under the command line. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is attached

The Security Auditor’s Research Assistant (SARA) is a third generation network security analysis tool. It is Based on the SATAN model

FireCAT is a Firefox Framework Map collection of the most useful security oriented extensions.

W3af is a fully automated auditing and exploiting framework for
the web. It is based upon plugins integration using known GPL tools as well as pytko, Hmap and google utilities .... W3af is written in Python.

Nessj is an application/network security scanner client for Nessus and Nessus compatible (OpenVAS etc.) servers. In addition to an improved user interface, it provides session management with templates, report generation using XSLT including charts/graphs, and vulnerability trending. It is cross-platform, with platform specific releases available for Linux, OSX, and Windows, written in Java using SWT for a native experience, and it is open-source. It’s provided by Intekras, Inc. under the Clarified Artistic License.

Nessus is the world’s most popular vulnerability scanner used in over 75,000 organizations world-wide. Many of the world’s largest organizations are realizing significant cost savings by using Nessus to audit business-critical enterprise devices and applications.

Revhosts is a project for Passive information Gathering, it help
pentesters to find informations (Host, VirtualHost, DNS entry,
Directories, mail address, subnet,..).

THC further releases practical tools to sniff and crack the
password of an oracle database within seconds.

The Network Security Toolkit is a bootable ISO live CD is based on Fedora Core 6. The toolkit was designed to provide easy access to best-of-breed Open Source Network Security Applications and should run on most x86 platforms.