Security Tools

• WITOOL V0.13 released
  6 January 2009, by Tools Tracker Team

  WITOOL is an graphical based SQL Injection Tool written in .NET. It is suitable for auditing SQL and ORACLE servers
  Changes for version 0.1 ORACLE Injection Injection Auto script Save XML from data Inquery (View, Function object)
  Common features Retrieve schema : DB/TableSpace, Table, Column, other object Retrieve data : retrive paging, dump xml file Log : View the raw data HTTP (...)

• (Happy New Year) - Roadmap and other stories
  3 January 2009, by Tools Tracker Team

  Year 2008 has been updated to Year 2009. And we hope the best for you and relatives. Just think about your health and care about your family. Because a man who does not care about his family can never be a real man (V. Corleone)
  Here are some fresh news about some improvements made to security-database website. A lot to come soon: The full advanced alerts is now reached with a personal user interface. The interface will be customizable with the aim to supply users / professionals with the (...)

• Rootkit Hunter v1.3.4 in the wild
  3 January 2009, by Tools Tracker Team

  Rootkit scanner is scanning tool to ensure you for about 99.9%* you’re clean of nasty tools. This tool scans for rootkits, backdoors and local exploits
  The change log lists 4 additions, 8 changes and 9 bugfixes.Naming a few: Added IntoXonia NG rootkit check. Added Phalanx2 rootkit check Added support for TCB shadow files. The ’—propupd’ option can now take an optional file, directory or package name after it. Revised file properties inode check. Tests against the SSH configuration file now (...)

• Findbugs 1.3.7 released
  3 January 2009, by Tools Tracker Team

  FindBugsâ„¢ is a program to find bugs in Java programs. It looks for instances of "bug patterns" --- code instances that are likely to be errors.
  Changes : Overall, a small bugfix release. New detection of accidental vacuous/useless calls to EasyMock methods, and of generic signatures that proclaim the use of unhashable classes in ways that require that they be hashed. Eliminate some false positives where we were warning about a useless call (e.g., comparing two incompatible types for (...)

• Ratproxy 1.53b released
  3 January 2009, by Tools Tracker Team

  A semi-automated, largely passive web application security audit tool, optimized for an accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex web 2.0 environments.
  Detects and prioritizes broad classes of security problems, such as dynamic cross-site trust model considerations, script inclusion issues, content serving problems, insufficient XSRF and XSS (...)

• Inguma 0.1.1 released
  1 January 2009, by Tools Tracker Team

  Inguma is a free penetration testing and vulnerability discovery toolkit entirely written in python. Framework includes modules to discover hosts, gather information about, fuzz targets, brute force usernames and passwords, exploits, and a disassembler.
  Changes Added library libinformix. Supports connection establishment and command execution. Pure python code. Added a brute force module for Informix databases (bruteifx). Fixed bugs in the Sybase’s brute force module. Added an Informix (...)

• Burp suite v1.2 released
  30 December 2008, by Tools Tracker Team

  Burp Suite is an integrated platform for attacking web applications. It contains all of the Burp tools with numerous interfaces between them designed to facilitate and speed up the process of attacking an application. All tools share the same robust framework for handling HTTP requests, authentication, downstream proxies, logging, alerting and extensibility.
  This is a major upgrade with a host of new features, including: Site map showing information accumulated about target applications (...)

• SSA 1.6 Beta 2 fix released
  30 December 2008, by Tools Tracker Team

  SSA (Security System Analyzer) is a non-intrusive OVAL-Compatible policy compliance and vulnerability assessment software. It provides auditors and security officers a comprehensive solution to keep pace with security compliance requirements (patch management, vulnerability management, software inventories...)
  Changes:
  SSA 1.6b2 fix released to correct the compatibility with the new definitions schema (OVAL 5.5.4).
  A newer version of SSA is currently under beta test. Stay (...)

• AutoScan V1.40 released
  27 December 2008, by Tools Tracker Team

  AutoScan-Network is a network discovering and managing application. No configuration is required to scan your network. The main goal is to print the list of connected equipments in your network
  Features: Multithreaded Scan Automatic network discovery Low surcharge on the network Simultaneous subnetworks scans without human intervention Realtime detection of any connected equipment Supervision of any equipment (router, server, firewall...) Supervision of any network service (smtp, http, (...)

• Scapy 2.0.0.11 beta released
  26 December 2008, by Tools Tracker Team

  Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions). Report modules are possible and (...)

... 610 620 630 640 650 660 670 680 690 ...