Security Tools

• Backtrack v3.0 beta in the wild.
  15 December 2007, by Tools Tracker Team

  BackTrack is the result of the merging of two Innovative Penetration Testing live Linux distributions - Whax and Auditor. BackTrack has been dubbed as the best Security Live CD today, and has been rated 1st in its category, and 32nd overall in Insecure.org. Based on SLAX (Slackware), BackTrack provides user modularity. This means the distribution can be easily customised by the user to include personal scripts, additional tools, customised kernels, (...)

• Russix The Wireless Auditing Live Linux released
  14 December 2007, by Tools Tracker Team

  Russix was developed because we wanted a lighter and easier to mod wireless auditing tool.
  Russix evolved from an internal UK Military Wireless auditing tool (debian based) which russ had developed while working for them as a penetration tester. He had tried to mod Backtrack with extra drivers and the aircrack-PTW tools but hit too many ’issues’.
  Furthermore, Backtrack is over 600mb; not that we have an issue with Backtrack, it is a cool tool, it just had too much stuff we didn’t need. (...)

• Nmap and Zenmap GUI v4.50 available
  13 December 2007, by Tools Tracker Team

  Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other (...)

• SAINT® Scanner 6.6.7 Released
  13 December 2007, by Tools Tracker Team

  SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...)

• Cain & Abel v.4.9.10 released
  11 December 2007, by Tools Tracker Team

  Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols
  New features
  - Added Remote Registry Editor. Added SIREN codec support (...)

• Nikto v2.01 released
  11 December 2007, by Tools Tracker Team

  Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3300 potentially dangerous files/CGIs, versions on over 625 servers, and version specific problems on over 230 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired
  Updates : Fix anti ids encoding use. thanks to Francisco Amato Fix virtual host usage if set via CLI. thanks Jon Hart Fix Host header (...)

• Burp suite v1.1 released
  11 December 2007, by Tools Tracker Team

  Burp Suite is an integrated platform for attacking web applications. It contains all of the Burp tools with numerous interfaces between them designed to facilitate and speed up the process of attacking an application. All tools share the same robust framework for handling HTTP requests, authentication, downstream proxies, logging, alerting and extensibility.
  This is major release which contains new versions of all the Burp tools, and several brand new tools and features. Highlights (...)

• Focus on OWASP SQLiX version 1.0
  5 December 2007, by Tools Tracker Team

  SQLiX, coded in Perl, is a SQL Injection scanner, able to crawl, detect SQL injection vectors, identify the back-end database and grab function call/UDF results (even execute system commands for MS-SQL). The concepts in use are different than the one used in other SQL injection scanners. SQLiX is able to find normal and blind SQL injection vectors and doesn’t need to reverse engineer the original SQL request (using only function calls).
  SQLiX is a SQL Injection scanner which attempts to (...)

• OWASP SWFIntruder v0.9 : Flash Applications security assessment tool
  5 December 2007, by Tools Tracker Team

  SWFIntruder (pronounced Swiff Intruder) is the first tool specifically developed for analyzing and testing security of Flash applications at runtime. It helps to find flaws in Flash applications using the methodology originally described by Stefano Di Paola in Testing Flash Applications (May 2007) and in Finding Vulnerabilities in Flash Applications (Nov 2007).
  SWFIntruder purpose is to analyze a Flash application for version =< 8 and to help check in a semi automated fashion the (...)

• Satan .. I mean Saint 6.6.6 released !!
  5 December 2007, by Tools Tracker Team

  SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...)

... 810 820 830 840 850 860 870 880 890 ...