Security Tools

• CANVAS v6.56 released
  2 March 2010, by Tools Tracker Team

  Immunity’s CANVAS makes available hundreds of exploits, an automated exploitation system, and a comprehensive, reliable exploit development framework to penetration testers and security professionals worldwide.
  Version 6.56 - 09/03/2010
  New Modules GetLocale - gets the locale of a Win32 MOSDEF Node. disable_windows_firewall - Turns the Firewall off on a Windows machine useful for bouncing. brightstor_cmdexec - CVE-2008-4397 (automatically runs a MOSDEF callback using the CANVAS TFTP (...)

• Viva Chile !
  1 March 2010, by Tools Tracker Team

  Our America, with a capital A as used to say ’Che’, is bereaved by the disaster that hits Chile these days. So, all our thoughts and condolences are with the families of the disappeared. We recommend Chile Ayuda
  Spanish Version
  Nuestra Mayúscula América, como decía "Che", está siendo afligida por el desastre ocurrido días atras en Chile. Queremos extender nuestro apoyo y condolencias para las familias de los desaparecidos.
  Recomendamos Chile (...)

• WebRaider v0.2.3.8 - One Click Ownage
  1 March 2010, by Tools Tracker Team

  WebRaider is a plugin based automated web application exploitation tool which focuses to get a shell from multiple targets or injection point.
  One Click Ownage
  Idea of this attack is very simple. Getting a reverse shell from an SQL Injection with one request without using an extra channel such as TFTP, FTP to upload the initial payload. It’s only one request therefore faster, Simple, you don’t need a tool you can do it manually by using your browser or a simple MITM proxy, just copy paste (...)

• Security-Database Vulnerability Dashboard updates
  1 March 2010, by Tools Tracker Team

  Security-Database IT Vulnerability & Threats Dashboard allows readers and others security professionals to visualize in a granular manner the evolution of the attacks and the vulnerabilities list for each products. We use the worldwide references as well as CVE, CVSS, OVAL and CWE which guaranty a trusty and real information that comply to the standards.
  Changelog Fully migration from SDcon (H,M,L) to CVSS v2.0 (C,H,M,L) New color brown for Critical Vulnerabilities CVSS Calculator v2.0 (...)

• Windows Autopwn (winAUTOPWN) v2.1 released
  28 February 2010, by Tools Tracker Team

  winAUTOPWN is an auto (hacking) shell gaining tool. It can also be used to test IDS, IPS and other monitoring sensors/softwares.
  Autohack your targets with least possible interaction.
  Features: Contains already custom-compiled executables of famous and effective exploits alongwith a few original exploits. No need to debug, script or compile the source codes. Scans all ports 1 -* 65535 after taking the IP address and tries all possible exploits according to the list of discovered open (...)

• Websecurify v0.5 RC 1 released
  28 February 2010, by Tools Tracker Team

  Websecurify Security Testing Framework identifies web security vulnerabilities by using advanced browser automation, discovery and fuzzing technologies. The framework is written in JavaScript and successfully executes in numerous platforms including modern browsers with support for HTML5, xulrunner, xpcshell, Java, V8 and others.
  Changelog Improved user interface. The workspace window now has an Issue view which provides detailed information on each finding. Detailed reports which can be (...)

• AutoScan v1.5 available
  27 February 2010, by Tools Tracker Team

  AutoScan-Network is a network discovering and managing application. No configuration is required to scan your network. The main goal is to print the list of connected equipments in your network
  Features: Multithreaded Scan Automatic network discovery Low surcharge on the network Simultaneous subnetworks scans without human intervention Realtime detection of any connected equipment Supervision of any equipment (router, server, firewall...) Supervision of any network service (smtp, http, (...)

• Pangolin SQL injection tool build 3.2.1.1020 released
  27 February 2010, by Tools Tracker Team

  Pangolin is an automatic SQL injection penetration testing tool developed by NOSEC. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications.
  Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user’s specific DBMS (...)

• Web Security Dojo v1.0 released
  27 February 2010, by Tools Tracker Team

  Web Security Dojo is a turnkey web application security lab with tools, targets, and training materials built into a Virtual Machine(VM). It is ideal for both self-instruction and training classes since everything is pre-configured and no external network connection is needed. All tools and targets are configured to use non-conflicting ports and a Firefox proxy switcher is set up to match.
  Web Security Dojo is an open source project built on Ubuntu and hosted at SourceForge. It is (...)

• Saint Vulnerability Scanner and Exploiter v7.2.7 released
  27 February 2010, by Tools Tracker Team

  SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...)

... 120 130 140 150 160 170 180 190 200 ...