Security Tools

• Process Hacker v1.3.6.1 released
  20 March 2009, by Tools Tracker Team

  Process Hacker is a feature-packed tool for manipulating processes and services on your computer. It can show you the threads (with symbols), modules, memory regions, handles and token of processes. It has detailed graphs that show CPU usage, memory usage and I/O activity. It can even change the DEP status of some processes and protect/unprotect them!
  Process Hacker can read/write memory using a built-in hex editor and search through memory. It has a powerful run-as tool that can run (...)

• OpenVAS updates
  20 March 2009, by Tools Tracker Team

  OpenVAS stands for Open Vulnerability Assessment System and is a network security scanner with associated tools like a graphical user fontend. The core is a server component with a set of plugins to test various vulnerabilities in remote systems and applications.
  The latest releases: openvas-libraries 2.0.2 openvas-client 2.0.2 openvas-server 2.0.1 openvas-libnasl 2.0.1

• theHarvester user name finder v1.4 available
  18 March 2009, by Tools Tracker Team

  theHarvester is a tool for gathering e-mail accounts and user names from different public sources. It’s a really simple tool, but very effective.
  The sources supported are: Google - emails MSN search - emails Pgp servers - emails Linkedin - user names
  Changelog for this release Fixed msn and yahoo search engines. Valid User-Agent Linkedin support Pgp servers support

• MetaGooFil updated to v1.4a
  18 March 2009, by Tools Tracker Team

  Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,odp,ods) availables in the target/victim websites.
  It will generate a html page with the results of the metadata extracted, plus a list of potential usernames very useful for preparing a bruteforce attack on open services like ftp, pop3,web applications, vpn, etc. Also it will extract a list of disclosed PATHs in the metadata, with this information you can guess OS, network (...)

• ProxyStrike v2.1 released
  18 March 2009, by Tools Tracker Team

  ProxyStrike is an active Web Application Proxy, is a tool designed to find vulnerabilities while browsing an application. It was created because the problems we faced in the pentests of web applications that heavily depends on Javascript, not many web scanners did it good at this stage.
  Features: Plugin engine (Create your own plugins!) Request interceptor Request diffing Request repeater Automatic crawl process Save/restore session Http request/response history Request parameter (...)

• OWASP Scrubbr v1.0 for XSS scanning
  13 March 2009, by Tools Tracker Team

  Scrubbr is a BSD-licensed database scanning tool that checks numerous database technologies for the presence of possible stored cross-site scripting attacks. The tool was partially inspired by "Scrawlr", a trimmed-down version of HP’s WebInspect which was released for free after the so-called "asprox" mass-SQL injection bot exploited hundreds of thousands of insecure ASP sites.
  Scrubbr page at (...)

• FireCAT 1.5 package at sourceforge
  10 March 2009, by Tools Tracker Team

  Nicolas Géréone from sisecurite.fr has just released a new FireCAT 1.5 package. It is now hosted on SourceForge site.
  Nicolas has also reported some links mishaps. Whois Active Whois : Extension is Missing Security auditingAcunetix Application Scan : Extension is missing. Network Tools Protocols - Application\ORACLE\oracle DBA Toolbar : Link error Protocols - Application\SQL\SQL connection : Link error
  Please take into account this. We’ll soon fix them without upgrading the release. As you (...)

• WarVox 1.0.0 for auditing telephone systems released
  7 March 2009, by Tools Tracker Team

  WarVOX is a suite of tools for exploring, classifying, and auditing telephone systems. Unlike normal wardialing tools, WarVOX works with the actual audio from each call and does not use a modem directly. This model allows WarVOX to find and classify a wide range of interesting lines, including modems, faxes, voice mail boxes, PBXs, loops, dial tones, IVRs, and forwarders. WarVOX provides the unique ability to classify all telephone lines in a given range, not just those connected to modems, (...)

• Cain & Abel v4.9.29 released
  5 March 2009, by Tools Tracker Team

  Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocol.
  Changes : Added Certificate Collector ability to generate self-signed or (...)

• WikiScanner 2.0, an incredible project to keep an eye on
  2 March 2009, by Tools Tracker Team

  WikiScanner (also known as Wikipedia Scanner) is a tool created by Virgil Griffith which consists of a publicly searchable database that links millions of anonymous Wikipedia edits to the organizations where those edits apparently originated, by cross-referencing the edits with data on the owners of the associated block of IP addresses. WikiScanner does not work on edits made under a username.
  I’ve discovered this project last year when some hits came from this website virgil.fr.
  I took (...)

... 560 570 580 590 600 610 620 630 640 ...