SkipFish is a fully automated, active web application security reconnaissance tool.

Key Features:

• High Speed: Pure C code, highly optimized HTTP handling, minimal CPU footprint – easily achieving 2000 requests per second with responsive targets.
• Ease of Use: Heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion.
• Cutting-Edge Security Logic: High quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors.

The tool is believed to support Linux, FreeBSD 7.0+, MacOS X, and Windows (Cygwin) environments.

Download: skipfish-1.13b.tgz

More Info: SkipFish – Project Home

The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security researchers world-wide. The framework is written in the Ruby programming language and includes components written in C and assembler.

Version 3.3 is the latest stable release of the Metasploit Framework and the recommended starting point for new users. Using the online update system, this version can be synchronized with the development tree to obtain the latest exploits and payloads.

Metasploit now has 445 exploit modules and 216 auxiliary modules.

Download: Metasploit 3.3

More Info: Metasploit 3.3 Release Notes

The Samhain open source host-based intrusion detection system (HIDS) provides file integrity checking and logfile monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes.

It has been designed to monitor multiple hosts with potentially different operating systems, providing centralized logging and maintenance, although it can also be used as standalone application on a single host.

Samhain is a multiplatform application for POSIX systems (Unix, Linux, Cygwin/Windows).

Features:

• PCI DSS Compliance
• File integrity checks
• Host integrity monitoring
• Logfile monitoring/analysis
• Log facilities
• Integration with other systems / Active response

Download: Samhain Version 2.5.9c

Trafscrambler is an anti-sniffer/IDS LKM(Network Kernel Extension) for OSX, licensed under BSD.

Features:

• Injection of packets with bogus data and with randomly selected bad TCP cksum or bad TCP sequences
• Userland binary(tsctrl) for controlling trafscrambler NKE
• SYN decoy – sends out number of SYN pkts before the original SYN pkt
• TCP reset attack – sends out RST/FIN pkt with bad sequence
• Pre-connection SYN – sends out SYN with wrong TCP-checksum
• Post-connection SYN – sends out fake SYN after connection establishment
• Zero Window – send out pkt with “0” window set

Latest Release: trafscrambler-0.2.tgz

Read More: TrafScrambler

GreenSQL is an Open Source database firewall used to protect databases from SQL injection attacks. GreenSQL works as a proxy and has built in support for MySQL. The logic is based on evaluation of SQL commands using a risk scoring matrix as well as blocking known db administrative commands (DROP, CREATE, etc). GreenSQL is distributed under the GPL license.

GreenSQL-FW: 1.0.0 Released :
GreenSQL team is ready to present new version of GreenSQL. GreenSQL intercept SQL commands being sent to MySQL, checks them, and then either halts the query or passes it on to MySQL proper. Then it returns the query results to the calling application. Currently only MySQL database is supported. This release includes a new version of firewall and a management application.

This is a major application release geared towards application stability, ease of use, performance increase and elimination of bugs.

This release includes a number of pre-build packages of popular operating systems. Supply packages for CentOS, Fedora, Mandriva, Red Hat, openSUSE, Ubuntu, and Debian.

List of changes:
1. Code optimization.
2. Fixed a number of bugs related to networking connectivity.
3. Extended support for specific MySQL SQL commands.
4. Ease of use.

New management version is numbered 0.5.0
New firewall version is numbered 1.0.0

Home: http://www.greensql.net

Download: http://www.greensql.net/download