Security Tools

• keimpx v0.2 released
  11 February 2010, by Tools Tracker Team

  Check for the usefulness of credentials across a network over SMB.
  It can be used to quickly check for the usefulness of credentials across a network over SMB. Credentials can be: Combination of user / plain-text password. Combination of user / NTLM hash. Combination of user / NTLM logon session token.
  If any valid credentials has been discovered across the network after its attack phase, the user is asked to choose which host to connect to and which valid credentials to use, then he will (...)

• Acunetix WVS v6.5 build 20100210 released
  10 February 2010, by Tools Tracker Team

  Acunetix Web Vulnerability Scanner (WVS) is an automated web application security testing tool that audits your web applications by checking for exploitable hacking vulnerabilities. Automated scans may be supplemented and cross-checked with the variety of manual tools to allow for comprehensive web site and web application penetration testing.
  New Security Check: Test for Cross Site Scripting in the Referrer header
  Improvement: Acunetix Firefox extension now supports latest Firefox (...)

• MS CAT.NET v2.0 Beta - Code Analysis Tool .NET
  10 February 2010, by Tools Tracker Team

  CAT.NET is a binary code analysis tool that helps identify common variants of certain prevailing vulnerabilities that can give rise to common attack vectors such as Cross-Site Scripting (XSS), SQL Injection and XPath Injection.
  This beta includes an integrated user experience with Visual Studio 2010 and FxCop command prompt. Version 2.0 beta contains tainted data flow analysis and a configuration analysis engine, that identifies insecure configuration files. In all there are 46 new (...)

• TCPJunk v2.8.21 - protocols testing
  10 February 2010, by Tools Tracker Team

  TCPJunk is a general TCP protocols testing and hacking utility.
  Main features: Supports IPv4/IPv6 Automatically send/receive data according to predefined session setup Client/Server mode Supports SSL Dynamic data insertion and manipulation using tags Traffic generation GUI mode
  Version 2.8.21 Fixed issue with initial session timeout Added long options. Help and man page updated.
  Requirements: Updated GNU/Linux based system GTK+ 2 Toolkit OpenSSL Toolkit GtkSourceView 2 pkgconfig (...)

• Dradis v2.5.0 released
  9 February 2010, by Tools Tracker Team

  Dradis is an open source framework to enable effective information sharing. Dradis is a self-contained web application that provides a centralised repository of information to keep track of what has been done so far, and what is still ahead.
  Features include: Easy report generation. Support for attachments. Integration with existing systems and tools through server plugins. Platform independent.
  Version 2.5.0 Improved Note editor: bigger, easier to use and supports formatting! New First (...)

• Acunetix WVS v6.5 build 20100203 released
  3 February 2010, by Tools Tracker Team

  Acunetix Web Vulnerability Scanner (WVS) is an automated web application security testing tool that audits your web applications by checking for exploitable hacking vulnerabilities. Automated scans may be supplemented and cross-checked with the variety of manual tools to allow for comprehensive web site and web application penetration testing.
  New security checks: 8.3 DOS filename source code disclosure Apache Tomcat Directory Host Appbase authentication bypass vulnerability Apache Tomcat (...)

• Nikto v2.1.1 released
  3 February 2010, by Tools Tracker Team

  Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).
  Version 2.1.1 (2010-01-20) Ticket 117: Fixed SKIPPORTS Ticket 116: Moved User-Agent string to nikto.conf Ticket 116: Added dynamic variables (...)

• (IN)SECURE Magazine Issue 24 released
  3 February 2010, by Tools Tracker Team

  (IN)SECURE Magazine is a freely available digital security magazine discussing some of the hottest information security topics.
  Issue 24 Writing a secure SOAP client with PHP: Field report from a real-world project How virtualized browsing shields against web-based attacks Review: 1Password 3 Preparing a strategy for application vulnerability detection Threats 2.0: A glimpse into the near future Preventing malicious documents from compromising Windows machines Balancing productivity and (...)

• PenTBox v1.3 Beta released
  3 February 2010, by Tools Tracker Team

  PenTBox is a Security Suite with programs like Password Crackers, Denial of Service testing tools (DoS and DDoS), Secure Password Generators, Honeypots and much more. Destined to test security/stability of networks and more.
  Programmed in Ruby, and oriented to GNU/Linux systems (but compatible with Windows, MacOS and more).
  Version 1.3 Beta Added Crypt Ruby and RubyRc4 libraries. Added GOST, ARC4 and Rijndael (aka AES) 256 bits ciphers to Secure IM. Improvements in error exceptions and (...)

• ProcNetMonitor v2.5 – Process Network Port Monitoring Tool - released
  1 February 2010, by Tools Tracker Team

  ProcNetMonitor is the free tool to monitor the network activity of all running process in the system. It displays all open network ports (TCP/UDP) and active network connections for each process. It has advanced color based auto analysis system to make it easy to distinguish network oriented processes from others with just one glance at the list. Newer version also presents unique ’Port Finder’ feature which makes it easy to search for particular port in all running process with just one (...)

... 160 170 180 190 200 210 220 230 240 ...