Security Tools

• Graudit source code scanner v1.1 released
  18 August 2009, by Tools Tracker Team

  Graudit is a simple script and signature sets that allows you to find potential
  security flaws in source code using the GNU utility grep. It’s comparable to
  other static analysis applications like RATS and flaw-finder while keeping the
  technical requirements to a minimum and being very flexible.
  Changelog: Improved custom db options Improved signatures for several languages A few minor tweaks
  Tool submitted by Wireghoul (the tool author i (...)

• Trafscrambler anti-sniffer v0.2 on the wild
  18 August 2009, by Tools Tracker Team

  Trafscrambler is an anti-sniffer/IDS LKM(Network Kernel Extension) for OSX, licensed under BSD.
  Features: injection of packets with bogus data and with randomly selected bad TCP
  cksum or bad TCP sequences userland binary(tsctrl) for controlling trafscrambler NKE SYN decoy - sends out number of SYN pkts before the original SYN pkt TCP reset attack - sends out RST/FIN pkt with bad sequence Pre-connection SYN - sends out SYN with wrong TCP-checksum Post-connection SYN - sends out fake SYN (...)

• Haraldscan The bluetooth discovery scanner updated to version 0.3
  18 August 2009, by Tools Tracker Team

  The scanner will be able to determine Major and Minor device class of
  device, as well as attempt to resolve the device’s MAC address to the
  largest known Bluetooth MAC address Vendor list
  The goal of this project is to obtain as many MAC addresses mapped to
  device vendors as possible.
  Tool Submitted by Maximiliano Soler

• SAMHAIN v.2.5.8 available
  18 August 2009, by Tools Tracker Team

  The samhain open source host-based intrusion detection system (HIDS) provides file integrity checking and logfile monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes.
  It has been designed to monitor multiple hosts with potentially different
  operating systems, providing centralized logging and maintenance, although
  it can also be used as standalone application on a single host.
  Samhain is a multiplatform application (...)

• OVAL interpreter release 5.5.25 available
  13 August 2009, by Tools Tracker Team

  Open Vulnerability and Assessment Language (OVALâ„¢) is an international, information security, community standard to promote open and publicly available security content, and to standardize the transfer of this information across the entire spectrum of security tools and services. OVAL includes a language used to encode system details, and an assortment of content repositories held throughout the community.
  Changelog : Corrected bug in processing of set objects. If a set object results in (...)

• Advanced Mac OS X Rootkits released
  13 August 2009, by Tools Tracker Team

  At BlackHat USA 2009, Dino Zovi presented “Advanced Mac OS X Rootkits†covering a number of Mach-based rootkit techniques and some tools that he has developed to demonstrate them. While the majority of Mac OS X rootkits employ known and traditional Unix-based rootkit techniques, these Mach-based techniques show what else is possible using the powerful Mach abstractions in Mac OS X.
  The presentation covered a number of Mach-based rootkit tools and techniques including user-mode Mach-O (...)

• The "quiet" release of PCI DSS v1.2.1
  13 August 2009, by Tools Tracker Team

  The PCI DSS, a set of comprehensive requirements for enhancing payment account data security, was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. Inc. International, to help facilitate the broad adoption of consistent data security measures on a global basis.
  The majore changes in this v1.2.1 of july 2009 For Compensating Controls Worksheet – (...)

• FireCAT credited at a Booz Allen Keynote
  11 August 2009, by Tools Tracker Team

  Michael Schearer is a security consultant for Booz Allen Hamilton in Central Maryland and an active member of many forums as well as Netstumbler, DEFCON and Remote Exploit. Michael goes by the handle of The Prez98. And it has posted many good stuffs.
  I’ve just gone thru, while crawling the web, this great keynote delivered by Michael Schearer at Booz Allen during June 2009. It is called : "Pen Testing the Web with Firefox".
  Here is the full (...)

• [Focus on] The TurnKey Linux Project
  10 August 2009, by Tools Tracker Team

  Turnkey Linux is an open source project that’s developing a family of free, Ubuntu-based software appliances which are optimized for ease of use in server-type usage scenarios and can be deployed in just a few minutes on bare metal, a virtual machine and in the cloud.
  Packaging a solution as a software appliance can be incredibly useful because it allows you to leverage guru integration skills to build ready to use systems (I.e., turn key solutions) that just work out of the box with little (...)

• PVS-Studio v3.10 the code analyzer released
  9 August 2009, by Tools Tracker Team

  PVS-Studio is a project by a Russian company "Program Verification Systems" designed to help the developers in mastering modern programming techniques. PVS-Studio is a source code static analyzer for diagnosis of errors and mistakes appearing during adaptation of applications code to 64-bit and multi-core systems.
  PVS-Studio tool represents the development of specialized code analyzers Viva64 and VivaMP range. Combining their features and being Visual Studio 2005/2008 environment plug-in, (...)

... 440 450 460 470 480 490 500 510 520 ...