Security Tools

• [Updated] Cain & Abel v4.9.25
  2 December 2008, by Tools Tracker Team

  Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocol. Fixed a buffer overflow condition in Remote Desktop Password (...)

• Cain & Abel v4.9.24 released
  28 November 2008, by Tools Tracker Team

  Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocol.
  Changes : Oracle 11g (case sensitive) Password Extractor via ODBC. Added (...)

• FireCAT 1.4 package released
  21 November 2008, by Tools Tracker Team

  FireCAT is a mapmind collection of the "most" useful firefox plugins that could be used for web security assessment. This means that you can turn your FireFox to an hacking / auditing environment.
  Pierre Baral has pointed us to a guy who compiled the whole FireCAT 1.4 plugins into a package.
  The blog is called "Le Petit Monde d’un pentester" which means "The little world of a pentester". So we do thank him for this job.
  Here is a direct link to download this (...)

• NetWitness Investigator Free edition v8.6 : the tactical network analyzer
  19 November 2008, by Tools Tracker Team

  Investigator provides security operations staff, auditors, and fraud and forensics investigators the power to perform unprecedented free-form contextual analysis of raw network data captured and reconstructed by the NetWitness NextGen infrastructure. Developed originally for the U.S. Intelligence Community, and now used extensively by Law Enforcement, Defense, and other public and private organizations, Investigator is based upon 10 years of development and deployment in some of the most (...)

• Saint vulnerability scanner updated to 6.9.3
  19 November 2008, by Tools Tracker Team

  SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...)

• Metasploit 3.2 released
  19 November 2008, by Tools Tracker Team

  the Metasploit Project announced today the free, world-wide availability of version 3.2 of their exploit development and attack framework. The latest version is provided under a true open source software license (BSD) and is backed by a community-based development team. Metasploit runs on all modern operating systems, including Linux, Windows, Mac OS X, and most flavors of BSD. Metasploit has been used on a wide range of hardware platforms, from massive Unix mainframes to the iPhone. Users (...)

• MultiInjector v0.3 released
  14 November 2008, by Tools Tracker Team

  MultiInjector claims to the first configurable automatic website
  defacement software.
  Feature List: Receives a list of URLs as input Recognizes the parameterized URLs from the list Fuzzes all URL parameters to concatenate the desired payload once
  an injection is successful Automatic defacement - you decide on the defacement content, be it a hidden script, or just pure old "cyber graffiti" fun OS command execution - remote enabling of XP_CMDSHELL on SQL
  server, subsequently running (...)

• OpenVAS 2.0 beta 2 available
  14 November 2008, by Tools Tracker Team

  OpenVAS stands for Open Vulnerability Assessment System and is a network security scanner with associated tools like a graphical user fontend. The core is a server component with a set of plugins to test various vulnerabilities in remote systems and applications.

• Miranda tool: Auditing the UPNP devices
  8 November 2008, by Tools Tracker Team

  Miranda is a Python-based Universal Plug-N-Play client application designed to discover, query and interact with UPNP devices, particularly Internet Gateway Devices (aka, routers). It can be used to audit UPNP-enabled devices on a network for possible vulnerabilities
  Some of its features include: Interactive shell with tab completion and command history Passive and active discovery of UPNP devices Customizable MSEARCH queries (query for specific devices/services) Full control over (...)

• XCobra Web application scanner v0.2
  5 November 2008, by Tools Tracker Team

  XCobra is a web application scanner utility written in python and GTK.
  Features URL finder with adjustable deep Passive XSS scan Forms processing Simple SQL injection scan Blind SQL injection scan Plugins Report generators (Text, HTML, ...) CLI and GUI interfaces Cross-platform (Python + GTK)
  Tool submitted by Maximiliano Soler

... 630 640 650 660 670 680 690 700 710 ...