Security Tools

• SpiceWorks 4.0 Alpha Build is now available (4.0.33731)
  27 April 2009, by Tools Tracker Team

  Designed, tested and used by 500,000 IT pros in 185 countries. Spiceworks has the everyday IT features: Inventory and report on your company’s hardware and software assets automatically. Monitor and troubleshoot the hardware and software on your network. Run an IT Help Desk for your company that’s easy to use.
  Features of SpiceWorks Discover the Windows, Mac, and Linux PCs and servers, routers, printers and any other IP-based devices on your network. Gather all of their relevant technical (...)

• Quttera zero-day vulnerability exploits tool v0.3.1.0.0
  26 April 2009, by Tools Tracker Team

  Quttera detects zero-day vulnerability exploits, shellcodes and potentially malicious executable code hidden in computer files such as movies, images, documents and etc.
  Quttera is not just another antivirus solution. Quttera implements patent pending signatureless algorithm capable of detection "zero day" malicious threats without any prior information (threat signature) identifying detected malware. Quttera’s investigation mechanism does not rely on any signatures database but rather on (...)

• Process Hacker v1.3.7.1 released
  26 April 2009, by Tools Tracker Team

  Process Hacker is a feature-packed tool for manipulating processes and services on your computer. It can show you the threads (with symbols), modules, memory regions, handles and token of processes. It has detailed graphs that show CPU usage, memory usage and I/O activity. It can even change the DEP status of some processes and protect/unprotect them!
  Process Hacker can read/write memory using a built-in hex editor and search through memory. It has a powerful run-as tool that can run (...)

• Cain & Abel v4.9.30 released
  26 April 2009, by Tools Tracker Team

  Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocol.
  Changes : Added support for the following codecs in VoIP sniffer: G722, (...)

• SQLMap 0.7rc1 available
  24 April 2009, by Tools Tracker Team

  sqlmap is an open source command-line automatic SQL injection tool developed in Python. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user’s specific (...)

• BlueMaho (Bluetooth Security Testing Suite) updated to v.090417
  21 April 2009, by Tools Tracker Team

  BlueMaho is GUI-shell (interface) for suite of tools for testing security of bluetooth devices. It is freeware, opensource, written on python, uses wxPyhon. It can be used for testing BT-devices for known vulnerabilities and major thing to do - testing to find unknown vulnerabilities.
  Changelog for this release NEW: statistics (uniq devices by day/hour, vendors, services etc) NEW: handbook NEW: opush abuse (prompts flood) DoS attack NEW: OBEX stress tests NEW: DoS in OPUSH filename for (...)

• tpcat v1.3 released
  20 April 2009, by Tools Tracker Team

  PCAT will analyze two packet captures (taken on each side of the firewall as an example) and report any packets that were seen on the source capture but didn’t make it to the destination. It will detect network latency, injected packets and dropped packets..etc.
  This is a very handy utility during a network audit session. TpCat comes with a "TPCAT README" file. It has a nice easy to use GUI.
  Tool submitted by Tim Eberhard (the tool (...)

• ViMtruder v1.0 proof of concept virtual machine trojan.
  20 April 2009, by Tools Tracker Team

  Normal trojans are a known threat, and we know how to mitigate them. But what about virtual machine trojans? This is a proof-of-concept Virtual Machine Trojan Visit www.infosegura.net/vimtruder.html for details
  Virtualization technology is such an efficient way of managing IT resources that there’s no doubt that in a very short time it will become the only way of doing it. But virtualization is still a new technology, and security is still lagging behind.
  Normal trojans are a known threat, (...)

• Sipflanker SIP devices vulnerability scanner v1.5b available
  20 April 2009, by Tools Tracker Team

  any (if not most) VoIP devices have available a Web GUI for
  their configuration, management, and report generation. These Web GUIs are often on default, meaning that the moment you install the IP phone or IP PBX, the Web GUI is immediately available on the network. And unfortunately it is also common for the username and password to have the default values.
  Sipflanker will help you find these SIP devices with potentially
  vulnerable Web GUIs in your network.
  What the application does is (...)

• PTF (Penetration Testing Framework) 0.54 released
  17 April 2009, by Tools Tracker Team

  The PTF (pentestration tests framework) enumerates the stages one’s should perform during a test (as described in the OSSTMM manual) Network footprinting Discovery & Probing Enumeration Vulnerability assessment Penetration (or exploitation) Plus other tests as well as physical, wireless assessment....
  Change Log: Major revamp and expansion of Network Reconnaissance Section Addition of Metadata Online Search and Offline Tools General Tidy and removal of some duplication within certain (...)

... 520 530 540 550 560 570 580 590 600 ...