Security Tools

• RIP str0ke (milw0rm) ... appears to be a Hoax
  4 November 2009, by Tools Tracker Team

  Twitter Followers has just received a tweet from str0ke’s twitter. @str0ke: I’m not dead yet, just being trolled.
  This means someone has hacked into Edward’s profile and spread a fake and loosy hoax. After all, we are very happy to see him up and running.

• Graudit v1.3 released
  3 November 2009, by Tools Tracker Team

  Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility grep. It’s comparable to other static analysis applications like RATS, SWAAT and flaw-finder while keeping the technical requirements to a minimum and being very flexible.
  Version 1.3 Some signatures addes to existing databases Signature improvements to existing databases Added JSP ruleset Added ASP ruleset Improved testing
  USAGE
  Graudit supports several (...)

• UCSniff v3.0 Released
  3 November 2009, by Tools Tracker Team

  UCSniff is a VoIP & IP Video Security Assessment tool that integrates existing open source software into several useful features, allowing VoIP and IP Video owners and security professionals to rapidly test for the threat of unauthorized VoIP and Video Eavesdropping. Written in C/C++, and available on Linux and Windows, the software is free and available for anyone to download, under the GPLv3 license.
  Version 3.0 Real time VoIP and Video monitoring. [as presented at ToorCon 11, San (...)

• Enhanced Mitigation Evaluation Toolkit v1.0.2 released
  30 October 2009, by Tools Tracker Team

  Security mitigation technologies are technologies designed to make it more difficult for an attacker to exploit vulnerabilities in a given piece of software. The Enhanced Mitigation Evaluation Toolkit (EMET) is a toolkit that allows certain security mitigation technologies to be applied to user specified applications.
  This utility builds on our current offerings in several key ways: Until now, many of the available mitigations have required for an application to be manually opted in and (...)

• Focus on HP’s Scrawlr SQL injection tool
  30 October 2009, by Tools Tracker Team

  Scrawlr, developed by the HP Web Security Research Group in coordination with the MSRC, is short for SQL Injector and Crawler. Scrawlr will crawl a website while simultaneously analyzing the parameters of each individual web page for SQL Injection vulnerabilities.
  Scrawlr is lightning fast and uses our intelligent engine technology to dynamically craft SQL Injection attacks on the fly. It can even provide proof positive results by displaying the type of backend database in use and a list (...)

• SAINT® 7.1.5 Released
  30 October 2009, by Tools Tracker Team

  SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...)

• Wireshark v1.2.3, v1.0.10, and v1.3.1 Released
  28 October 2009, by Tools Tracker Team

  Wireshark is the world’s most popular network protocol analyzer. It has a rich and powerful feature set and runs on most computing platforms including Windows, OS X, Linux, and UNIX. Network professionals, security experts, developers, and educators around the world use it regularly. It is freely available as open source, and is released under the GNU General Public License version 2
  Wireshark 1.2.3 (stable), 1.0.10 (old stable), and 1.3.1 (development) have been released. Installers for (...)

• OAT v2.0 - OCS Assessment Tool - released
  28 October 2009, by Tools Tracker Team

  OAT (OCS Assessment Tool) is an Open Source Security tool designed to check the password strength of Microsoft Office Communication Server users. After a password is compromised, OAT demonstrates potential UC attacks that can be performed by legitimate users if proper security controls are not in place.
  OCS == Microsoft Office Communications Server
  OAT Modes
  Internal Network Attack Mode
  Internal network is a deployment scenario where OCS users have unfiltered network connectivity to the (...)

• YARA v1.3 - A malware identification and classification tool
  27 October 2009, by Tools Tracker Team

  YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families based on textual or binary patterns contained on samples of those families.
  Each description consists of a set of strings and a Boolean expression which determines its logic.
  YARA is multi-platform, running on Windows, Linux and Mac OS X, and can be used through its command-line interface or from your own Python scripts with the (...)

• Acunetix WVS v6.5 build 20091027 released
  27 October 2009, by Tools Tracker Team

  Acunetix Web Vulnerability Scanner (WVS) is an automated web application security testing tool that audits your web applications by checking for exploitable hacking vulnerabilities. Automated scans may be supplemented and cross-checked with the variety of manual tools to allow for comprehensive web site and web application penetration testing.
  Bug fixes: Fixed: Redirect on LoginSequenceStep was not followed correctly Fix in URL Rewrite module to remove GetVars before matching (...)

... 330 340 350 360 370 380 390 400 410 ...