Security Tools

• Sara vulnerability scanner updated to 7.5.6
  11 May 2008, by Tools Tracker Team

  The Security Auditor’s Research Assistant (SARA) is a third generation network security analysis tool. It is Based on the SATAN model
  Features : Operates under Unix, Linux, MAC OS/X or Windows (through coLinux) OS’. Integrates the National Vulnerability Database (NVD). Performs SQL injection tests. Performs exhaustive XSS tests Can adapt to many firewalled environments. Support remote self scan and API facilities. Used for CIS benchmark initiatives Plug-in facility for third party apps CVE (...)

• Focus on Maltego Version 2.0 : The Datamining framework
  11 May 2008, by Tools Tracker Team

  Maltego is a program that can be used to determine the relationships and real world links between: People, Groups of people (social networks), Companies, Organizations, Web sites, Internet infrastructure such as: Domains DNS names Netblocks and much more
  This new release of Maltego comes with a bunch of new features. The core engine has been completely rewritten, the search options and transforms has been enhanced. With Maltego, we can say that we deal with the best Intelligency Software (...)

• fgdump "Mass Password Auditing Tool " version 2.1.0 released
  8 May 2008, by Tools Tracker Team

  fgdump is a password hash dumper for Windows 2000 and later systems. It is capable of dumping LanMan and NTLM hashes as well as password hash histories.
  Changelog Better 32/64 bit detection. This is not as easy as it sounds, at least not remotely! If someone has a sure-fire way for 100% reliably detecting the target OS, please let me know. In the mean time, if fgdump is unsure, it will report it and default to 32-bit. The -O 32 flag will manually override the target OS architecture. So, (...)

• Findbugs Java Code Analyzer updated to 1.3.4
  4 May 2008, by Tools Tracker Team

  FindBugsâ„¢ is a program to find bugs in Java programs. It looks for instances of "bug patterns" --- code instances that are likely to be errors.
  Complete changelog and new features here

• Nmap and Zenmap v4.62 released
  3 May 2008, by Tools Tracker Team

  Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other (...)

• Saint vulnerability scanner updated to v6.7.8
  28 April 2008, by Tools Tracker Team

  SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...)

• BlueMaho Bluetooth Security Testing Suite v.080422 beta released
  28 April 2008, by Tools Tracker Team

  BlueMaho is GUI-shell (interface) for suite of tools for testing security of bluetooth devices. It is freeware, opensource, written on python, uses wxPyhon. It can be used for testing BT-devices for known vulnerabilities and major thing to do - testing to find unknown vulnerabilities.
  Features scan for devices, show advanced info, SDP records, vendor etc loop scan - it can scan all time, showing you online devices alerts with sound if new device found on_new_device - you can specify what (...)

• Focus on : Windows Permission Identifier Version 1.0
  27 April 2008, by Tools Tracker Team

  This tool enables administrators and penetration testers to review and audit the permissions of users on a windows machine.
  Windows Permission Identifier can check: File ACLs Folder ACLs Registry ACLs Services Permissions Shares Installation rights Internet Access and so on.
  `
  This software is very handy to identify the permissions on the Windows environment. In fact, many security auditors and pentesters forget to deal with permissions review during an audit session. No need to mention (...)

• fgdump "the password hash knife" upgraded to 2.0.0
  27 April 2008, by Tools Tracker Team

  fgdump is a password hash dumper for Windows 2000 and later systems. It is capable of dumping LanMan and NTLM hashes as well as password hash histories.
  Major changes that come with this release 2.0: fgdump will now detect 64-bit targets and report them as such 64-bit pwdump and cachedump will be used when the target is detected as 64-bit Fixed a problem when connecting to some Samba servers where RegQueryValueEx would not behave as expected fgdump will now generate a session ID during (...)

• SharK 3.1 released
  27 April 2008, by Tools Tracker Team

  sharK is an advanced reverse connecting, firewall bypassing remote administration tool written in VB6. With sharK you will be able to administrate every PC (using Windows OS) remotely.
  Changes Server-Summary had a mistake Client now uses Double-Variable Type for calculating Idletime Statistics Window not resizeable anymore Server-Auth-Window had an old sharK icon DOS Shell will be started automatically (when auto-refresh is activated) ADS is no longer set as default install folder since (...)

... 730 740 750 760 770 780 790 800 810 ...