Security Tools

• GoogleHacks Version 1.6 for MacOSX, Linux and Windows
  4 December 2007, by Tools Tracker Team

  Google Hacks is a compilation of carefully crafted Google searches that expose novel functionality from Google’s search and map services
  Released under GNU General Public License v2, GoogleHacks could be used to search for unreveiled pieces of information.
  Passwords, names, social engineering, well used this utility could be a great help for security auditors during pentest session (documents grinding and data mining).
  The other supadupa news is that software can used along with Linux, (...)

• SCARE - The Source Code Analysis Risk Evaluation just released
  1 December 2007, by Tools Tracker Team

  The Source Code Analysis Risk Evaluation project is a study to create a security complexity metric that will analyze source code and provide a realistic and factual representation of the potential of that source code to create a problematic binary.
  The SCARE analysis tool is run against source code. Currently only C code is supported. The ouput file will contain all operational interactions possible which need controls (the current version does not yet say if and what controls are (...)

• Maltego v1.0 GUI released
  30 November 2007, by Tools Tracker Team

  Maltego is a software for footprinting and data mining released by Roelof Temmingh, ex-SensePost founder (sensepost released some beautiful tools as well as bidiblah, suru and wikto) and now Paterva.com.

• SAINT® 6.6.5 Released
  30 November 2007, by Tools Tracker Team

  SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...)

• Cain and Abel v4.9.9 is out
  28 November 2007, by Tools Tracker Team

  Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols
  New features: Added SIREN codec support in VoIP sniffer (the default one (...)

• Sans TOP 20 (or 18) Security risks 2007 updated
  28 November 2007, by Tools Tracker Team

  The SANS Top 2007 is a consensus list of vulnerabilities that require immediate remediation. It is the result of a process that brought together dozens of leading security experts
  The SANS Top 2007 is a living document. It includes step-by-step instructions and pointers to additional information useful for correcting the security flaws. We will update the list and the instructions as more critical threats and more current or convenient methods of protection are identified, and we welcome (...)

• FireCAT 1.3 released (ExploitMe Tools included)
  27 November 2007, by Tools Tracker Team

  FireCAT is a Firefox Framework Map collection of the most useful security oriented extensions
  Many new extensions has been added. We focused into Security Auditing with the ExploitMe Tools from securitycompass.com
  Download the latest release of FireCAT (Firefox Catalog of Auditing exTensions) 1.3 (Pdf, HTML and FreeMind source)

• inguma Pentest kit version 0.0.6 released
  26 November 2007, by Tools Tracker Team

  Inguma is a free penetration testing and vulnerability discovery toolkit entirely written in python. Framework includes modules to discover hosts, gather information about, fuzz targets, brute force usernames and passwords, exploits, and a disassembler.
  New 5 exploits for Oracle Databases have been added and the module
  "sidguess" have been enhanced to retrieve the SID of the database
  instance from the Enterprise Manager/Database Control banner when
  possible.
  The new modules added to the (...)

• FireCAT quoted in SANS.org
  25 November 2007, by Tools Tracker Team

  Here is an article wrote by Jason Lam for Isc.sans.org. It was about Firefox and web application security testing.
  Source : isc.sans.org
  by Jason Lam (Version: 1)
  The security testers alike are always seeking new tools to make their testing more effective. I am really not thrilled about some testers wannabe thinking that tools are the only thing they need to be good security testers. Skills, techniques and understanding of the overall picture are all very important to security testing (...)

• AirMagnet BlueSweep : Free Bluetooth scanner
  25 November 2007, by Tools Tracker Team

  AirMagnet BlueSweepâ„¢ provides a simple way to gain visibility into your Bluetooth environment and identify related security issues that otherwise would go unnoticed.
  With BlueSweep, you can: Identify every local Bluetooth device. See interconnections between Bluetooth devices. Identify all services available on each device.

... 820 830 840 850 860 870 880 890 900 ...