Category: Security Tools

Mar 22 2010

SkipFish – Web Application Security Scanner

SkipFish is a fully automated, active web application security reconnaissance tool.

SkipFish

Key Features:

  • High Speed: Pure C code, highly optimized HTTP handling, minimal CPU footprint – easily achieving 2000 requests per second with responsive targets.
  • Ease of Use: Heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion.
  • Cutting-Edge Security Logic: High quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors.

The tool is believed to support Linux, FreeBSD 7.0+, MacOS X, and Windows (Cygwin) environments.

Download: skipfish-1.13b.tgz

More Info: SkipFish – Project Home

Tags: , , ,

Filed in Hacking Tools, Information Gathering, Network Hacking, Penetration Testing, Security Tools | admin | Comments (0)

Mar 06 2010

Ncrack – High-Speed Network Authentication Cracker

Ncrack is a high-speed network authentication cracking tool. It was built to help companies secure their networks by proactively testing all their hosts and networking devices for poor passwords. Security professionals also rely on Ncrack when auditing their clients. Ncrack was designed using a modular approach, a command-line syntax similar to Nmap and a dynamic engine that can adapt its behaviour based on network feedback. It allows for rapid, yet reliable large-scale auditing of multiple hosts.

Ncrack’s features include a very flexible interface granting the user full control of network operations, allowing for very sophisticated bruteforcing attacks, timing templates for ease of use, runtime interaction similar to Nmap’s and many more.

Ncrack was started as a “Google Summer of Code” Project in 2009. While it is already useful for some purposes, it is still unfinished, alpha quality software. It is released as a standalone tool.

Ncrack is available for many different platforms, including Linux, *BSD, Windows and Mac OS X. There are already installers for Windows and Mac OS X and there is a universal source code tarball that can be compiled on every system.

Example: A representative Ncrack scan

$ ncrack 10.0.0.130:21 192.168.1.2:22

Starting Ncrack 0.01ALPHA ( http://ncrack.org ) at 2009-07-24 23:05 EEST

Discovered credentials for ftp on 10.0.0.130 21/tcp:
10.0.0.130 21/tcp ftp: admin hello1
Discovered credentials for ssh on 192.168.1.2 22/tcp:
192.168.1.2 22/tcp ssh: guest 12345
192.168.1.2 22/tcp ssh: admin money$

Ncrack done: 2 services scanned in 156.03 seconds.

Ncrack finished.

Downloads:
http://nmap.org/ncrack/dist/ncrack-0.01ALPHA.tar.gz
http://nmap.org/ncrack/dist/ncrack-0.01ALPHA-setup.exe
http://nmap.org/ncrack/dist/ncrack-0.01ALPHA.dmg

Ncrack Man Page: http://nmap.org/ncrack/man.html

Ncrack Home: http://nmap.org/ncrack

Tags: , , , ,

Filed in Hacking Tools, Network Hacking, Password Hacking, Security Tools | admin | Comments (0)

Nov 18 2009

Metasploit Framework 3.3 Released

Metasploit 3.3

The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security researchers world-wide. The framework is written in the Ruby programming language and includes components written in C and assembler.

Version 3.3 is the latest stable release of the Metasploit Framework and the recommended starting point for new users. Using the online update system, this version can be synchronized with the development tree to obtain the latest exploits and payloads.

Metasploit now has 445 exploit modules and 216 auxiliary modules.

Download: Metasploit 3.3

More Info: Metasploit 3.3 Release Notes

Tags: , , ,

Filed in Exploits, Hacking Tools, Penetration Testing, Security Tools | admin | Comments (0)

Oct 09 2009

Samhain – Host-Based Intrusion Detection System

The Samhain open source host-based intrusion detection system (HIDS) provides file integrity checking and logfile monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes.

It has been designed to monitor multiple hosts with potentially different operating systems, providing centralized logging and maintenance, although it can also be used as standalone application on a single host.

Samhain is a multiplatform application for POSIX systems (Unix, Linux, Cygwin/Windows).

Features:

  • PCI DSS Compliance
  • File integrity checks
  • Host integrity monitoring
  • Logfile monitoring/analysis
  • Log facilities
  • Integration with other systems / Active response

Download: Samhain Version 2.5.9c

Tags: , ,

Filed in Intrusion Detection, Security Tools | admin | Comments (0)

Aug 28 2009

TrafScrambler – Anti-Sniffer

Trafscrambler is an anti-sniffer/IDS LKM(Network Kernel Extension) for OSX, licensed under BSD.

Features:

  • Injection of packets with bogus data and with randomly selected bad TCP cksum or bad TCP sequences
  • Userland binary(tsctrl) for controlling trafscrambler NKE
  • SYN decoy – sends out number of SYN pkts before the original SYN pkt
  • TCP reset attack – sends out RST/FIN pkt with bad sequence
  • Pre-connection SYN – sends out SYN with wrong TCP-checksum
  • Post-connection SYN – sends out fake SYN after connection establishment
  • Zero Window – send out pkt with “0” window set

Latest Release: trafscrambler-0.2.tgz

Read More: TrafScrambler

Tags: , , , ,

Filed in Hacking Tools, Intrusion Detection, Security Tools | admin | Comments (0)