Security Tools

• Offensive-Security released its Exploit Database
  16 November 2009, by Tools Tracker Team

  The ultimate archive of exploits and vulnerable software and a great resource for vulnerability researchers and security addicts alike. Offensive-Security aim is to collect exploits from submittals and various mailing lists and concentrate them in one, easy to navigate database. When possible, we’ve added the vulnerable software for download. We are still in the process of organizing the database. You can Download the relevant exploit by clicking the "D" and when available, download the (...)

• (IN)Secure Magazine issue 23 released
  16 November 2009, by Tools Tracker Team

  (IN)SECURE Magazine is a free digital security publication discussing some of the hottest information security topics.
  Issue 23 Microsoft’s security patches year in review: A malware researcher’s perspective A closer look at Red Condor Hosted Service Report: RSA Conference Europe 2009, London The U.S. Department of Homeland Security has a vision for stronger information security Q&A: Didier Stevens on malicious PDFs Protecting browsers, endpoints and enterprises against new Web-based (...)

• PenTester Scripting Logo Competition (Results)
  16 November 2009, by Tools Tracker Team

  PenTester Scripting website is a very handy collection of Scripts (ruby, shell, perl...) initiated by a group of researchers to make our pentests journey easier. The scripts are focused into 8 categories (recon, mapping, discovery, exploitation and so on).
  From Security-Database we want to thank to all those that voted for Max’s logo.
  Fortunately, Max Soler won the competition!!!
  Results Designer Votes Max 29 Darren 11 gh0$7 7 Florian 3 Ahmed 2 Tomasz 2 (...)

• Katana v1.0 (Kyuzo) released - multi-boot security suite
  16 November 2009, by Tools Tracker Team

  Katana is a portable multi-boot security suite designed for all your computer security needs. The idea behind this tool is to bring together all of the best security distributions to run from one USB drive. Katana includes distributions which focus on Penetration Testing, Auditing, Password Cracking, Forensics and Honey Pots.
  Katana comes with over 100 portable Windows applications such as Wireshark, HiJackThis, Unstoppable Copier, and OllyDBG.
  Version 1.0 Updated Ophcrack Live, Backtrack (...)

• Websecurify updated to v0.4 RC2
  13 November 2009, by Tools Tracker Team

  Websecurify Security Testing Framework identifies web security vulnerabilities by using advanced browser automation, discovery and fuzzing technologies. The framework is written in JavaScript and successfully executes in numerous platforms including modern browsers with support for HTML5, xulrunner, xpcshell, Java, V8 and others.

• fimap alpha v0.6.1 released : RFI/LFI auditing & scanning
  13 November 2009, by Tools Tracker Team

  fimap is a little python tool which can find, prepare, scan, audit, exploit and even google automaticly for local and remote file inclusion bugs in webapps. fimap should be something like sqlmap just for LFI/RFI bugs instead of sql injection. It’s is currently under heavy development but it’s usable.
  Quick News for SVN and upcoming versions
  * Version 06.1 is live! o Fixed relative path detection on windows systems. o Added additional regex to detect error message. (...)

• SAINT® 7.2 Released : Now OVAL compatible.
  13 November 2009, by Tools Tracker Team

  SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...)

• COFEE leakage Affair : May Sun Tzu be with you, always !
  12 November 2009, by Tools Tracker Team

  As the web is boiling with this COFEE leakage affair, i was deep into reading (again and again) my favorite book Sun Tzu : The principles of warfare - The Art of War-. And i was specially focused into the part about turning the enemy’s strength into advantage.
  With this leakage, Microsoft reveals how the feds and other gov agencies proceed to extract evidence from computers.
  In fact, if you analyze the COFEE package. I said package because: COFEE is something like 150 command line (...)

• NetWitness v9.0 released
  10 November 2009, by Tools Tracker Team

  NetWitness NextGen is a comprehensive network security monitoring solution. Looking for insider threats, data leakage, malware activity, asset misuse, network anomalies, compliance, and network e-discovery.
  Version 9.0 NetWitness Identity - provides the ability to easily correlate IP addresses in network sessions to end-user directory credentials – fusing an organization’s Active Directory to offer a real-time 4-1-1 lookup capability. As a result, security staff can link compromised machines (...)

• RATS v2.3 - Rough Auditing Tool for Security
  10 November 2009, by Tools Tracker Team

  RATS (Rough Auditing Tool for Security), is a tool for scanning C, C++, Perl, PHP and Python source code and flagging common security related programming errors such as buffer overflows and TOCTOU (Time Of Check, Time Of Use) race conditions.
  RATS scanning tool provides a security analyst with a list of potential trouble spots on which to focus, along with describing the problem, and potentially suggest remedies. It also provides a relative assessment of the potential severity of each (...)

... 310 320 330 340 350 360 370 380 390 ...