Security Tools

• Nessus v.2.2.10 : the open source version
  26 July 2007, by Tools Tracker Team

  Nessus is the world’s most popular vulnerability scanner used in over 75,000 organizations world-wide. Many of the world’s largest organizations are realizing significant cost savings by using Nessus to audit business-critical enterprise devices and applications.

• Sussen 0.9 available
  22 July 2007, by Tools Tracker Team

  Sussen is a tool that checks for vulnerabilities and configuration issues on computer systems. It is based on the Open Vulnerability and Assessment Language.
  Changelog for this release editor: Disabled editor; will continue development in 1.1/1.2 branch oval: Added initial support for OVAL 5.3 oval: API documentation updated misc: Change license to GPL v3 www: Various improvements to web console xml: Updated Ubuntu definitions for USNs 425-1 to 483-1 xml: Updated Windows definitions from (...)

• Cain and Abel 4.9.5 released
  19 July 2007, by Tools Tracker Team

  Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols
  New features: Added Windows Vista support for Active Wireless Scanner. (...)

• SQL Power Injector 1.2 released
  19 July 2007, by Tools Tracker Team

  SQL Power Injector is an application created in .Net 1.1 that helps the penetration tester to find and exploit SQL injections on a web page.
  Features for this release : Now support DB2 database Can create/edit ASCII characters preset in order to optimize the blind SQL injection number of requests/speed Can make the blind SQL injection case insensitive (useful with characters preset) New feature that will find the differences between the response page of a positive answer with a negative (...)

• AppScan 7.6 released by WatchFire
  19 July 2007, by Tools Tracker Team

  Watchfire® AppScan® is the industry’s most used web application security testing suite and the first to make the technical leap from scanning tool to security testing platform. AppScan scans and tests for all common web application vulnerabilities - including those identified in the WASC threat classification - such as SQL-Injection, Cross-Site Scripting and Buffer Overflow
  Including new capabilities such as the AppScan eXtensions Framework and Pyscan - designed to extend the flexibility and (...)

• SSA Security System Analyzer version 1.5.2 released
  18 July 2007, by Tools Tracker Team

  SSA (Security System Analyzer) is a non-intrusive OVAL-Compatible policy compliance and vulnerability assessment software. It provides auditors and security officers a comprehensive solution to keep pace with security compliance requirements (patch management, vulnerability management, software inventories...)
  Changelog Based on OVAL 5.3 build 20 (see OVAL project for more information) SSA now supports SCAP (Security Content Automation Protocol). The XML SCAP files are extracted using our (...)

• PHP Security Scanner 1.0.2 added to SD Tools Watch Process
  13 July 2007, by Tools Tracker Team

  PHP Security Scanner is a tool written in PHP intended to search PHP code for vulnarabilities. MySQL DB stores patterns to search for as well as the results from the search. The tool can scan any directory on the file system.
  PHP Security Scanner features : Scan any file/directory for security problems Support basic wild card search for fine filtering of directories/files to be searched. Provide interface for visualizing the "could-be-security-holes" spots. File’s path Line number Line (...)

• WireShark 0.99.6 released
  13 July 2007, by Tools Tracker Team

  Gerald Combs, the creator of Ethereal®, has initiated the Wireshark network protocol analyzer project, a successor to Ethereal®. The Ethereal® core developer team has moved with Gerald to the Wireshark project
  Bug Fixes :
  The following vulnerabilities have been fixed. See the security advisory for details and a workaround. Wireshark could crash when dissecting an HTTP chunked response. (Bug 1394) On some systems, Wireshark could crash while reading iSeries capture files. (Bug 1415) (...)

• Pixy v3.02 Code Scanner for PHP Applications released
  13 July 2007, by Tools Tracker Team

  Pixy is an Open-Source Vulnerability Scanner that identifies SQL, XSS problems in PHP applications.
  Here are some of the highlights: detection of SQL injection and XSS vulnerabilities in PHP source code automatic resolution of file inclusions computation of dependence graphs that help you understand the causes of reported vulnerabilities static analysis engine (flow-sensitive, interprocedural, context-sensitive) platform-independent (written in (...)

• Saint Scanner updated to 6.4.10
  13 July 2007, by Tools Tracker Team

  SAINT, or the Security Administrator’s Integrated Network Tool, uncovers areas of weakness and recommends fixes. With SAINT® vulnerability assessment tool, you can: Detect and fix possible weaknesses in your network’s security before they can be exploited by intruders. Anticipate and prevent common system vulnerabilities. Demonstrate compliance with current government regulations such as FISMA, Sarbanes Oxley, GLBA, HIPAA, and COPPA
  New vulnerability checks in version 6.4.10: Microsoft Excel (...)

... 920 930 940 950 960 970 980 990 1000 ...