Section: .. / Last 100 Tool Files /
| /// File Name: | httpry-0.1.5.tar.gz | Description:
| httpry is a specialized packet sniffer designed for displaying and logging HTTP traffic. It is not intended to perform analysis itself, but instead to capture, parse, and log the traffic for later analysis. It can be run in real-time displaying the live traffic on the wire, or as a daemon process that logs to an output file. It is written to be as lightweight and flexible as possible, so that it can be easily adaptable to different applications. It does not display the raw HTTP data transferred, but instead focuses on parsing and displaying the request/response line along with associated header fields. | | Author: | Dumpster Keeper | | Homepage: | http://dumpsterventures.com/jason/httpry/ | | Changes: | This release adds SIGHUP handling for gracefully reopening output files and defaults output files to line buffering. Various other changes and improvements have been made. | | File Size: | 44995 | | Last Modified: | Jul 2 11:30:42 2009 | | MD5 Checksum: | 7fbba29eaeec1fd6b25e6fa3a12be25d |
|
| /// File Name: | hex-head.c | Description:
| This is a simple head utility that outputs in hexadecimal format. Characters that are non-printable are replaced with the "." character. | | Author: | Aaron Conole | | Homepage: | http://aconole.brad-x.com/ | | File Size: | 5288 | | Last Modified: | Jun 30 16:06:21 2009 | | MD5 Checksum: | dbd659f65b0b05f952ca9b0b1dd4fe30 |
|
| /// File Name: | picviz-0.6.tar.gz | Description:
| Picviz is a parallel coordinates plotter which enables easy scripting from various types of input (such as tcpdump, syslog, iptables logs, or Apache logs) to visualize your data and discover interesting results quickly. Its primary goal is to graph data in order to be able to quickly analyze problems and find correlations among variables. With security analysis in mind, the program has been designed to be very flexible, able to graph millions of events. This tarball includes the cli, gui, and the library for picviz. | | Homepage: | http://www.wallinfire.net/picviz | | Changes: | This version separates Picviz into four modules - library, CLI, GUI, and parsers. Notable changes include on the fly axes reordering, and picviz GUI improvements from GSOC including brushing, zooming etc. Removal of libevent in favor of libev, layers, frequency filtering, maximum val for an axis can be set, frequency filter, and more. | | File Size: | 2535352 | | Last Modified: | Jun 29 19:12:58 2009 | | MD5 Checksum: | 9c3eba6ebf1463282224f8c9d4592761 |
|
| /// File Name: | tor.uclibc.i686.20090627.iso | Description:
| Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. | | Author: | Anthony G. Basile | | Homepage: | http://opensource.dyc.edu/tor-ramdisk | | Changes: | Tor was updated to 0.2.0.35. Busybox was updated to 1.14.1 and the applet selection was slimmed down, giving the system a more embedded feel and reducing possible attack vectors. The kernel was updated to 2.6.28.8 plus Gentoo\'s hardened-patches-2.6.28-10.extras. The UI was cleaned up by removing redundant features. | | File Size: | 4413440 | | Last Modified: | Jun 29 14:00:56 2009 | | MD5 Checksum: | 97b18f3eb1d8492f7af8d2ff3ccaf8d1 |
|
| /// File Name: | mapdav-1.0p3.tar.gz | Description:
| MAPDAV, or the More Accurate Password Dictionary Attack Vector, is designed to use what is known about a user or users (ex, username, first name, middle name, last name, etc) on a unix/linux system from a /etc/passwd file and tries to come up with probable combinations that could be the user's password. An administrator could run the output through a cracker and see if their user's passwords are anything easy to guess. | | Author: | Marshall Whittaker | | Homepage: | http://mapdav.sourceforge.net/ | | File Size: | 4939 | | Last Modified: | Jun 26 14:49:04 2009 | | MD5 Checksum: | 11438dc5dff244650bcdbdc5069918a2 |
|
| /// File Name: | tor-0.2.0.35.tar.gz | Description:
| Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs). | | Homepage: | http://tor.eff.org | | Changes: | This release fixes a big bug that was causing Tor relays with dynamic IP addresses to disappear from the network. It also fixes a rare crash bug on fast exit relays. | | File Size: | 2221852 | | Last Modified: | Jun 26 13:52:39 2009 | | MD5 Checksum: | d4841e1b4d54866495fd373e865b2d44 |
|
| /// File Name: | trafscrambler_0.1.tgz | Description:
| Trafscrambler is an anti-sniffer/IDS NKE (Network Kernel Extension) for Mac OS X. This initial release implements SYN-decoy, Pre/Post connections SYN, TCP reset, and zero window attacks. Author tested this on x86 OS X versions 10.5.6 and 10.5.7. It should work on PPC and older releases as well. | | Author: | Maxim Bourmistrov | | Homepage: | http://en.roolz.org/trafscrambler.html | | File Size: | 5000 | | Last Modified: | Jun 26 13:47:47 2009 | | MD5 Checksum: | a2059efbf0763945fd97513e2771a57b |
|
| /// File Name: | kismet-2009-06-R1.tar.gz | Description:
| Kismet is an 802.11 layer 2 wireless network sniffer. It can sniff 802.11b, 802.11a, and 802.11g traffic. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD, OpenBSD and Mac OS X systems. Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible "interesting" (cryptographically weak) logging, Secure SUID behavior, GPS devices and wireless devices fingerprinting. Kismet also includes a tool called gpsmap that can be used to create maps from logged GPS data. | | Author: | Mike Kershaw | | Homepage: | http://www.kismetwireless.net/ | | Changes: | This release drops the "candidate" designation, and is the first full release of the Kismet-Newcore code. It includes a number of UI improvements (better network details, more mouse support, fixed color handling, and nework notes), multiple platform-specific fixes (OS X installation, Nokia ITT bugfixes, and BSD fixes), has improved source handling on Linux, de-cloaked SSID caching, and more. | | File Size: | 852611 | | Last Modified: | Jun 24 20:19:34 2009 | | MD5 Checksum: | 8d77138020ace39f175a906dc0d3b267 |
|
| /// File Name: | mobiusft-0.4.6.tar.gz | Description:
| Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools. | | Homepage: | http://savannah.nongnu.org/projects/mobiusft | | Changes: | This release features Extension Builder, an IDE for extensions. Extensions are now stored in XML files. Minor improvements were made. | | File Size: | 612912 | | Last Modified: | Jun 22 23:06:10 2009 | | MD5 Checksum: | 77f7fb3aaa792cc6300bd1d3a5578328 |
|
| /// File Name: | sipwitch-0.5.6.tar.gz | Description:
| GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate. | | Author: | David Sugar | | Homepage: | http://www.gnutelephony.org/ | | Changes: | Call transfer between secure extensions has been added. A complete rewrite of network access rules to allow automatic and integrated detection of NAT and peering addresses for computation of optional RTP media proxy and sdp rewrite rules. Future media proxy work will be fully integrated with the server, and hence the external rtp proxy plugin has been removed. | | File Size: | 482327 | | Last Modified: | Jun 19 23:12:48 2009 | | MD5 Checksum: | 9dd409baa335e74a580d4432267bf977 |
|
| /// File Name: | opennhrp-0.11.tar.bz2 | Description:
| OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible. | | Author: | Timo Teras | | Homepage: | http://sourceforge.net/projects/opennhrp/ | | Changes: | A custom extension was added to allow dynamic detection of next hop servers. Configurability of multicast traffic handling was improved. Various performance improvements were made all over the code. Most notably, libev is now used internally. | | File Size: | 127026 | | Last Modified: | Jun 18 23:45:09 2009 | | MD5 Checksum: | 473dace79e7eefe0a0b79159a2c61cb5 |
|
| /// File Name: | fwbuilder-3.0.5.tar.gz | Description:
| Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists. | | Homepage: | http://www.fwbuilder.org | | Changes: | This is a bugfix release that improves program stability. | | File Size: | 2466047 | | Last Modified: | Jun 17 19:06:28 2009 | | MD5 Checksum: | 826cd7eb84dbd3faa9e4f99f3595999c |
|
| /// File Name: | iptables-1.4.4.tar.bz2 | Description:
| iptables is built on top of netfilter, the packet alteration framework for Linux 2.4.x and 2.6.x. It is a major rewrite of its predecessor ipchains, and is used to control packet filtering, Network Address Translation (masquerading, portforwarding, transparent proxying), and special effects such as packet mangling. | | Homepage: | http://www.iptables.org | | Changes: | This release includes updates for new extensions in kernel 2.6.30, bugfixes, and documentation updates. | | File Size: | 452656 | | Last Modified: | Jun 17 19:02:34 2009 | | MD5 Checksum: | 08cd9196881657ea0615d926334cb7e9 |
|
| /// File Name: | slowloris.pl.txt | Description:
| Slowloris helps identify the timeout windows of a HTTP server or Proxy server, can bypass httpready protection and ultimately performs a fairly low bandwidth denial of service. It has the added benefit of allowing the server to come back at any time (once the program is killed), and not spamming the logs excessively. It also keeps the load nice and low on the target server, so other vital processes do not die unexpectedly, or cause alarm to anyone who is logged into the server for other reasons. | | Author: | RSnake | | File Size: | 18856 | | Last Modified: | Jun 17 18:42:55 2009 | | MD5 Checksum: | 0c56003d7749e9dc4b95a83ce92c0b54 |
|
| /// File Name: | winappdbg-1.2.tar.bz2 | Description:
| The WinAppDbg python module allows developers to quickly add Windows application debugging facilities to your Python scripts. | | Homepage: | http://sourceforge.net/apps/trac/winappdbg/ | | File Size: | 131815 | | Last Modified: | Jun 16 14:52:25 2009 | | MD5 Checksum: | 6a34a6a04c145000968bb24e03eb38bc |
|
| /// File Name: | truecrypt-6.2a-source.tar.gz | Description:
| TrueCrypt is on-the-fly disk encryption software that can create a virtual encrypted disk within a file and mount it as a real disk. It can also encrypt an entire hard disk partition, or a storage device such as USB memory stick. It supports plausible deniability. | | Homepage: | http://www.truecrypt.org/downloads.php | | Changes: | Minor improvements and bugfixes. | | File Size: | 1800129 | | Last Modified: | Jun 16 14:45:26 2009 | | MD5 Checksum: | 42060059d32cd4be66183247cb55be59 |
|
| /// File Name: | keykeriki.tgz | Description:
| Keykeriki is the first open source 27Mhz wireless keyboard sniffer. Inside this compressed archive a hardware tarball, a software tarball, and slides from ph-neutral are all included. | | Homepage: | http://www.remote-exploit.org/Keykeriki.html | | File Size: | 3138180 | | Last Modified: | Jun 16 12:23:55 2009 | | MD5 Checksum: | c94bbdd8e0dad8d1ea9d3acff86975db |
|
| /// File Name: | dradis-v2.2.0.tar.gz | Description:
| dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of information is essential to avoid duplication of efforts. | | Author: | etd | | Homepage: | http://dradis.nomejortu.com/ | | Changes: | The following changes were made to the server component: Attachments can be added to nodes. "Refresh" buttons were added to the tree and the notes list. The use of "webrick" is forced even if mongrel is installed, since there is no SSL support in mongrel. The framework version information was centralized. autoExpandColumn now works on IE. Rails runs in "production" mode. The following changes were made to the client component: dradis can be used with wxRuby 2.0.0. Error handling was improved for REST Web service communication errors. REST credentials configuration in ./conf/dradis.xml was made easier. | | File Size: | 3274609 | | Last Modified: | Jun 12 12:14:28 2009 | | MD5 Checksum: | cee8d97028b1878e51b2db747af69418 |
|
| /// File Name: | clamav-0.95.2.tar.gz | Description:
| Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software. | | Author: | Tomasz Kojm | | Homepage: | http://www.clamav.net | | Changes: | This version improves handling of archives, adds support for --file-list in clamscan and clamdscan, and fixes various issues found in previous releases. | | File Size: | 25137010 | | Last Modified: | Jun 10 18:32:06 2009 | | MD5 Checksum: | 930362397d30e01ba81b5f24c1046d48 |
|
| /// File Name: | iodine-0.5.2.tar.gz | Description:
| iodine is a piece of software that lets you tunnel IPv4 data through a DNS server. This can be useful in situations where Internet access is firewalled, but DNS queries are allowed. It needs a TUN/TAP device to operate. The bandwidth is asymmetrical with limited upstream and up to 1 Mbit/s downstream. | | Author: | Yarrick | | Homepage: | http://code.kryo.se/iodine/ | | Changes: | A segmentation fault was fixed for Mac OS X and FreeBSD. | | File Size: | 50788 | | Last Modified: | Jun 3 00:04:06 2009 | | MD5 Checksum: | 6952343cc4614857f83dbb81247871e7 |
|
| /// File Name: | kismet-2009-05-RC2.tar.gz | Description:
| Kismet is an 802.11 layer 2 wireless network sniffer. It can sniff 802.11b, 802.11a, and 802.11g traffic. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD, OpenBSD and Mac OS X systems. Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible "interesting" (cryptographically weak) logging, Secure SUID behavior, GPS devices and wireless devices fingerprinting. Kismet also includes a tool called gpsmap that can be used to create maps from logged GPS data. | | Author: | Mike Kershaw | | Homepage: | http://www.kismetwireless.net/ | | Changes: | This release has a single bugfix for a parsing error in generating the command line to launch the Kismet server from inside the UI. | | File Size: | 840862 | | Last Modified: | May 27 18:38:58 2009 | | MD5 Checksum: | a1898ed387a0484b0ee84fb412c3ba82 |
|
| /// File Name: | advchk-3.00.tar.bz2 | Description:
| Advchk (Advisory Check) reads security advisories so you do not have to. Advchk gathers security advisories using RSS feeds, compares them to a list of known services, and alerts you if you are vulnerable. Since adding hosts and services by hand would be quite a boring task, advchk leverages nmap for automatic service and version discovery. | | Author: | Stephan Schmieder | | Homepage: | http://advchk.unixgu.ru/ | | Changes: | Windows hosts can now be monitored remotely by using the MS-RPC protocol. INSTALL and install.sh files have been added. | | File Size: | 16378 | | Last Modified: | May 28 20:32:06 2009 | | MD5 Checksum: | dd2fdd5d5175d6c83263b3b0baf4c86a |
|
| /// File Name: | pkd-1.4.tgz | Description:
| ipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent. This version adds support for libxtables, iptables 1.4.3.2, and Linux kernel 2.6.29. A port config option was added on the Python knock, so you don't have to have a bunch of UDP ports open on a firewall to pass a knock through to an internal client. | | Author: | eric | | File Size: | 73761 | | Last Modified: | May 24 10:42:53 2009 | | MD5 Checksum: | fd6b09b282210087285ef4630ab6746b |
|
| /// File Name: | pdfresurrect-v0_6.tar.gz | Description:
| PDFResurrect is a tool aimed at analyzing PDF documents. The PDF format allows for previous document changes to be retained in a more recent version of the document, thereby creating a running history of changes for the document. This tool attempts to extract all previous versions while also producing a summary of changes between versions. It can also "scrub" or write data over the original instances of PDF objects that have been modified or deleted, in an effort to disguise information from previous versions that might not be intended for anyone else to read. | | Author: | enferex | | Homepage: | http://www.757labs.com/projects/pdfresurrect | | Changes: | No bugs were fixed. Some additions were made to the build system and a man page was added, but no tool functionality additions were made. The AUTHORS file was added. The install, uninstall, distclean, and .phony targets in Makefile.in were added or modified. | | File Size: | 56169 | | Last Modified: | May 24 10:36:10 2009 | | MD5 Checksum: | 4b9c5847319515b9e0fa9f655da633e4 |
|
| /// File Name: | ProxyHarvest.txt | Description:
| Proxy Harvesting tool that uses google and evaluates the sites. | | Author: | low1z | | Homepage: | http://www.darkc0de.com/ | | File Size: | 9937 | | Last Modified: | May 18 21:00:15 2009 | | MD5 Checksum: | 41ea51a7d61f68c5ff44eaaa07ff9887 |
|
| /// File Name: | mandos_1.0.10.orig.tar.gz | Description:
| The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system. | | Author: | Teddy | | Homepage: | http://www.fukt.bsnet.se/mandos | | Changes: | This is a security bugfix release. | | File Size: | 100459 | | Last Modified: | May 18 21:06:14 2009 | | MD5 Checksum: | 0cf5ff497d3d6c313513e7cb18c50a32 |
|
| /// File Name: | darkTouch.txt | Description:
| darkTouch is a fuzzer that attempts to fingerprint the structure of a website.Written in Python. | | Author: | low1z | | Homepage: | http://www.darkc0de.com/ | | File Size: | 9578 | | Last Modified: | May 18 19:46:33 2009 | | MD5 Checksum: | ed91d40749f33cdf4e9ba1d9ea84793c |
|
| /// File Name: | rsbac-common-2.6-1.4.2.tar.bz2 | Description:
| Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions. This version is for the 2.6 kernel. This release is for Linux kernel 2.6.29.2. A significant speedup and even better SMP scalability are expected from the new RCU based list locking. The most important changes since 1.3.5 are the addition of VUM (Virtual User Management) support, OTP support for UM, support of ANY for NETLINK control, checking of CLOSE requests in RC, the addition of SCD target videomem and kernel attribute pagenr, ext4 secure delete support, and many small bugfixes too. Generic lists were changed to use RCU instead of rw spinlocks. | | Homepage: | http://www.rsbac.org | | File Size: | 382105 | | Last Modified: | May 15 14:34:29 2009 | | MD5 Checksum: | 731cfaee70c087bb02c37a28392d31d5 |
|
| /// File Name: | draugr.tar.gz | Description:
| Draugr is a simple tool to play with /dev/(k)mem or a file memory dump. It can find kernel symbols (pattern matching in a XML file or with EXPORT_SYMBOL), processes (informations and sections) (by the kernel linked list or bruteforce) and disassemble/dump the memory. | | Author: | Anthony Desnos | | Homepage: | http://www.esiea-recherche.eu/~desnos/draugr/index.html | | File Size: | 14389 | | Last Modified: | May 14 11:54:44 2009 | | MD5 Checksum: | 73e167f43ae3d0bc14acdbe48c146000 |
|
| /// File Name: | httpsScanner-1.1.tgz | Description:
| httpsScanner is a Java program that will scan a web server to test the strength of the SSL connections. Binary and source zip files are included. | | Author: | Chan Fook Sheng | | File Size: | 9867 | | Last Modified: | May 14 11:51:05 2009 | | MD5 Checksum: | 8ddc7282fec54f30fcf5745f63275b13 |
|
| /// File Name: | ratproxy-1.58.tar.gz | Description:
| ratproxy is a semi-automated, largely passive Web application security audit tool optimized for accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex Web 2.0 environments. | | Author: | Michal Zalewski | | Homepage: | http://code.google.com/p/ratproxy | | Changes: | Another round of minor tweaks to the connection handling logic to improve compatibility with certain Web servers. | | File Size: | 168700 | | Last Modified: | May 14 01:10:26 2009 | | MD5 Checksum: | e4d5e64a0bd8f8f92032cbcee77fb3cf |
|
| /// File Name: | truecrypt-6.2-source.tar.gz | Description:
| TrueCrypt is on-the-fly disk encryption software that can create a virtual encrypted disk within a file and mount it as a real disk. It can also encrypt an entire hard disk partition, or a storage device such as USB memory stick. It supports plausible deniability. | | Homepage: | http://www.truecrypt.org/downloads.php | | Changes: | Several minor improvements, bugfixes, and security enhancements were made. | | File Size: | 1793484 | | Last Modified: | May 13 13:35:57 2009 | | MD5 Checksum: | a55f7df7b7a85f8a1995cdaf427adde4 |
|
| /// File Name: | fwknop-1.9.11.tar.gz | Description:
| fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap. | | Author: | Michael Rash | | Homepage: | http://www.cipherdyne.org/fwknop/ | | Changes: | Support was added for ipfw "sets" on FreeBSD and Mac OS X systems. A segfault on Debian systems that was exposed in some circumstances with older versions of libpcap was fixed. The --icmp-type and --icmp-code command line arguments were added for the fwknop client in order to manually set the ICMP type/code values when using "--Spoof-proto icmp" or "--Server-proto icmp". Support was added for multiple include/exclude test identifying strings (separated by commas). | | File Size: | 608575 | | Last Modified: | May 13 13:23:51 2009 | | MD5 Checksum: | 2a7a630ec74dd71896a4a180536b8311 |
|
| /// File Name: | advchk-2.30.tar.bz2 | Description:
| Advchk (Advisory Check) reads security advisories so you do not have to. Advchk gathers security advisories using RSS feeds, compares them to a list of known services, and alerts you if you are vulnerable. Since adding hosts and services by hand would be quite a boring task, advchk leverages nmap for automatic service and version discovery. | | Author: | Stephan Schmieder | | Homepage: | http://advchk.unixgu.ru/ | | Changes: | Windows environments can now be monitored via advchk-win32helper.bat. Seven new feeds have been added to advchk-addfeeds.sh (making 45 in total). | | File Size: | 13192 | | Last Modified: | May 10 09:31:27 2009 | | MD5 Checksum: | d737cef6b64a9de7343bf14e48b6801c |
|
| /// File Name: | scannedonly-0.14.tar.gz | Description:
| Scannedonly is a samba VFS module that ensures that only files that have been scanned for viruses are visible and accessible to the end user. Scannedonly was developed because of scalability problems with samba-vscan. Scannedonly comes in two parts: a Samba VFS module and (one or more) daemons. The daemon scans files and marks them when they are known to be clean. The samba module simply filters out files that aren't marked clean. | | Author: | Olivier Sessink | | Homepage: | http://olivier.sessink.nl/scannedonly/ | | Changes: | This release adds compatibility for ClamAV 0.95. It also features a large performance improvement when opening a directory with a very large number of unscanned files. The network protocol between the samba VFS module and the scanning server has changed because of this. | | File Size: | 69603 | | Last Modified: | May 8 02:45:25 2009 | | MD5 Checksum: | df7fdb8c2b2276dc34af21b4458dd470 |
|
| /// File Name: | cryptmount-4.0.tar.gz | Description:
| cryptmount is a utility for creating and managing secure filing systems on GNU/Linux systems. After initial setup, it allows any user to mount or unmount filesystems on demand, solely by providing the decryption password, with any system devices needed to access the filing system being configured automatically. A wide variety of encryption schemes (provided by the kernel dm-crypt system and the libgcrypt library) can be used to protect both the filesystem and the access key. The protected filing systems can reside in either ordinary files or disk partitions. The package also supports encrypted swap partitions, and automatic configuration on system boot-up. | | Author: | RW Penney | | Homepage: | http://cryptmount.sourceforge.net/ | | Changes: | Support for encrypted filesystems without separate key files or partition headers was added. The security of the built-in SHA1/Blowfish key manager was improved through more extensive password hashing. Facilities for creating LUKS encrypted partitions were improved. Robustness to possible race conditions in handling udev events was improved. Many areas of legacy code were tidied. | | File Size: | 382340 | | Last Modified: | May 7 00:00:09 2009 | | MD5 Checksum: | 56390b59f2794731eb14f1ba0592300c |
|
| /// File Name: | mobiusft-0.4.5.tar.gz | Description:
| Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools. | | Homepage: | http://savannah.nongnu.org/projects/mobiusft | | Changes: | The Category Model extension was created. The "Add item" window allows attribute setting when adding new items. Minor code clean-up has been done. | | File Size: | 574383 | | Last Modified: | May 5 19:24:59 2009 | | MD5 Checksum: | 571e0cc235339c7f5d0915ebbcd91549 |
|
| /// File Name: | samhain-2.5.5.tar.gz | Description:
| Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris. | | Author: | Rainer Wichmann | | Homepage: | http://samhain.sourceforge.net | | File Size: | 1971622 | | Last Modified: | Apr 30 18:19:13 2009 | | MD5 Checksum: | 7376fec2397f37fc1dabcbd77aed56ab |
|
| /// File Name: | opennhrp-0.10.3.tar.bz2 | Description:
| OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible. | | Author: | Timo Teras | | Homepage: | http://sourceforge.net/projects/opennhrp/ | | Changes: | This release fixes the remaining bugs from c-ares integration and the build system rewrite. It has some code clean-ups. | | File Size: | 94348 | | Last Modified: | May 5 00:23:00 2009 | | MD5 Checksum: | 687aa5feca49afa66d10aa3edfb2ca51 |
|
| /// File Name: | audio-entropyd-2.0.1.tgz | Description:
| audio-entropyd feeds the /dev/random device with entropy data read from an audio device. The audio data is not copied as is, but first 'de-biased' and analyzed to determine how many bits of entropy are in it. This program is useful for systems doing many cryptographic tasks like VPN endpoints or GPG clients; it helps prevent the /dev/random device from being depleted and blocking reads. | | Author: | Folkert van Heusden | | Homepage: | http://www.vanheusden.com/aed/ | | Changes: | There are major bugfixes. Users are urged to install this release. It also adds ALSA support. | | File Size: | 16523 | | Last Modified: | May 2 21:58:50 2009 | | MD5 Checksum: | f8d71e214755b93a2da3dfa29157ef37 |
|
| /// File Name: | hzzp.tar.gz | Description:
| Hzzp is a HTTP compliant client and server fuzzer. Hzzp's main features include HTTP response and request fuzzing, authentication fuzzing, query parameter fuzzing, and automatic or manual exploit generation. | | Author: | rush | | Homepage: | http://www.krakowlabs.com/ | | File Size: | 225730 | | Last Modified: | Apr 27 23:21:22 2009 | | MD5 Checksum: | a48a48fc97d892bf02eaabe31b2a673f |
|
| /// File Name: | curuncula.tgz | Description:
| Curuncula is a tool shipped as a loadable kernel module that aims to detect rootkits based on the Intel debugging support facilities. Rootkits that set the GD access flag are also detected. It makes use of the "last branch recording" mechanism provided by the Intel architecture. Support both the 2.4 and 2.6 Linux kernels. | | Author: | Giuseppe Cocomazzi | | File Size: | 3510 | | Last Modified: | Apr 23 16:14:43 2009 | | MD5 Checksum: | 45435a5c2788ef4e37926b909a998c12 |
|
| /// File Name: | beltane-1.0.16.tar.gz | Description:
| Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled. | | Homepage: | http://la-samhna.de/beltane | | Changes: | Error logging has been improved by adding more information. | | File Size: | 185194 | | Last Modified: | Apr 23 16:10:07 2009 | | MD5 Checksum: | 41168bb942a8c35a84f0c716137bac29 |
|
| /// File Name: | stunnel-4.27.tar.gz | Description:
| Stunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, NNTP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code. | | Author: | Michal Trojnara | | Homepage: | http://www.stunnel.org | | Changes: | Win32 DLLs were provided for OpenSSL 0.9.8k. FIPS support was updated for openssl-fips 1.2. A new priority failover strategy was implemented for multiple "connect" targets. pgsql protocol negotiation was added. | | File Size: | 538604 | | Last Modified: | Apr 23 16:01:49 2009 | | MD5 Checksum: | 3c655d815576f50046a1c28744b88681 |
|
| /// File Name: | sqlmap-0.7rc1.tar.gz | Description:
| sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more. | | Author: | Bernardo Damele | | Homepage: | http://sqlmap.sourceforge.net | | Changes: | New features as described at the presentation given at Black Hat Europe. | | File Size: | 1248177 | | Last Modified: | Apr 22 17:28:56 2009 | | MD5 Checksum: | e29f0ce962ca55cf04fb2f730ab39d56 |
|
| /// File Name: | complemento-0.7.tar.gz | Description:
| Complemento is a collection of tools for penetration testing. LetDown is a TCP flooder written after reading the Fyodor article "TCP Resource Exhaustion and Botched Disclosure". Reverse raider is a domain scanner that uses brute force wordlist scanning for finding a target's subdomains or reverse resolution for a range of IPs. Httsquash is an HTTP server scanner, banner grabber, and data retriever. It can be used for scanning large ranges of IPs for finding devices or HTTP servers. | | Author: | crossbower | | Homepage: | http://complemento.sourceforge.net/ | | Changes: | Major improvements were made in all tools. LetDown now supports Python scripting for multistage protocols. ReverseRaider has many new DNS features. HttSquash has been rewritten. | | File Size: | 1064341 | | Last Modified: | Apr 22 16:05:42 2009 | | MD5 Checksum: | 2302c0b24ae319e20ca162a2c4c856c1 |
|
| /// File Name: | bluemaho-090417.tgz | Description:
| BlueMaho is a graphical user interface for a suite of tools used to test the security of bluetooth devices. It is freeware, open source, written in python, and uses wxPyhon. | | Homepage: | http://wiki.thc.org/BlueMaho | | File Size: | 916884 | | Last Modified: | Apr 20 16:34:04 2009 | | MD5 Checksum: | f92f331337d36aa03acdad16f9aee83a |
|
| /// File Name: | dradis-v2.1.0.tar.gz | Description:
| dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of information is essential to avoid duplication of efforts. | | Author: | etd | | Homepage: | http://dradis.nomejortu.com/ | | Changes: | The server component now features an import/export plugin architecture, import/export plugin generators, a sample WordXML export plugin, and a sample WikiMedia import plugin. The client component now features an import extension that allows nmap output to be imported, the ability to import a note from a plain text file, and more a powerful add extension that can add a note from the console. | | File Size: | 2929903 | | Last Modified: | Apr 17 13:50:06 2009 | | MD5 Checksum: | eea6efa3957c53d2fa2b12cf30229498 |
|
| /// File Name: | ratproxy-1.57.tar.gz | Description:
| ratproxy is a semi-automated, largely passive Web application security audit tool optimized for accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex Web 2.0 environments. | | Author: | Michal Zalewski | | Homepage: | http://code.google.com/p/ratproxy | | Changes: | This release adds new checks for Flash crossdomain.xml and Silverlight clientaccesspolicy.xml, and reverts HTTP/1.1 logic introduced in 1.55. | | File Size: | 168680 | | Last Modified: | Apr 17 13:43:26 2009 | | MD5 Checksum: | 5403d5b8fba9e72caad3345fb5e9878c |
|
| /// File Name: | sniffjoke-0.3.zip | Description:
| SniffJoke is middleware software for Linux that is managed by a web interface and enables connection scrambling technology, also known as sniffer evasion techniques. | | Author: | s0ftpj,vecna | | Homepage: | http://www.delirandom.net/sniffjoke | | File Size: | 826409 | | Last Modified: | Apr 15 16:41:29 2009 | | MD5 Checksum: | cb7fa9ad394dba7ddee008a3cbeb06fe |
|
| /// File Name: | skpd.tar.gz | Description:
| SKPD is a tool that will dump a running process to an executable ELF file. Written to work on various flavors of Linux. | | Author: | Albert Sellares | | Homepage: | http://www.wekk.net/ | | File Size: | 4761 | | Last Modified: | Apr 15 19:03:39 2009 | | MD5 Checksum: | 5ab793154fbbd478a3c7b0142eb8cd13 |
|
| /// File Name: | efipw_v0.1a.zip | Description:
| EFIPW is a tool that can be used to decode and modify Apple EFI firmware passwords via the command line. It is designed after the non open source OFPW utility and is designed to work on Intel machines running Leopard or newer. Useful for lab deployments (setting the firmware password of machines as a post install item) and pen tests (recovering the EFI firmware password). | | Author: | Paul Makowski | | Homepage: | http://code.google.com/p/efipw/ | | File Size: | 9252 | | Last Modified: | Apr 14 19:12:48 2009 | | MD5 Checksum: | 21339e503127e707823dcd7a798ea51c |
|
| /// File Name: | processhacker-1.3.6.5-src.zip | Description:
| Process Hacker is a feature-packed tool for manipulating processes and services on your computer. It can show you the threads (with symbols), modules, memory regions, handles and token of processes. It has detailed graphs that show CPU usage, memory usage and I/O activity. It can even change the DEP status of some processes and protect/unprotect them! It can read/write memory using a built-in hex editor and search through memory. It has a powerful run-as tool that can run programs as almost any user, including SYSTEM, LOCAL SERVICE and NETWORK SERVICE. Finally, its kernel-mode driver enables Process Hacker to show information for any process, even if it is protected by a rootkit. This zip file is the source distribution. | | Homepage: | http://processhacker.sourceforge.net/ | | File Size: | 1558245 | | Last Modified: | Apr 14 19:06:06 2009 | | MD5 Checksum: | 7cd5420d1ea764c8cb142aa8d9e13e71 |
|
| /// File Name: | processhacker-1.3.6.5-bin.zip | Description:
| Process Hacker is a feature-packed tool for manipulating processes and services on your computer. It can show you the threads (with symbols), modules, memory regions, handles and token of processes. It has detailed graphs that show CPU usage, memory usage and I/O activity. It can even change the DEP status of some processes and protect/unprotect them! It can read/write memory using a built-in hex editor and search through memory. It has a powerful run-as tool that can run programs as almost any user, including SYSTEM, LOCAL SERVICE and NETWORK SERVICE. Finally, its kernel-mode driver enables Process Hacker to show information for any process, even if it is protected by a rootkit. This zip file is the binary distribution. | | Homepage: | http://processhacker.sourceforge.net/ | | File Size: | 746707 | | Last Modified: | Apr 14 19:05:59 2009 | | MD5 Checksum: | 647386cf5b0f73c8910f293dddaaaae6 |
|
| /// File Name: | NullSearchAccess.tar | Description:
| NullSearchAccess is a scanner that attempts default logins for various services like ftp, pop3, imap, mysql, and more. | | Author: | Simpp | | File Size: | 71680 | | Last Modified: | Apr 10 20:47:51 2009 | | MD5 Checksum: | 5f70d5f93e2db666305396580904ebbe |
|
| /// File Name: | loud_listenerv0.3.zip | Description:
| Loud Listener is a light-weight high speed voice packet recorder that can target a particular call based on SIP URL or TG, designed to satisfy regulatory lawful Intercept requirements. This proof of concept code has been designed to be pushed to an FPGA on an accelerated platform but in its current form, it will run on most versions of Linux. | | Author: | Mark Osborne | | Homepage: | http://www.loud-fat-bloke.co.uk/loud_listener.html | | File Size: | 86687 | | Last Modified: | Apr 9 17:44:32 2009 | | MD5 Checksum: | e2fcd75d27dae6104acefc0f1bb19a35 |
|
| /// File Name: | nikto-2.03.gz | Description:
| Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. | | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | Changes: | Multiple enhancements. | | File Size: | 495357 | | Last Modified: | Sep 4 13:00:00 2008 | | MD5 Checksum: | 2577536f8cd03cc37cb1c4ff99d1c66a |
|
| /// File Name: | clamav-0.95.1.tar.gz | Description:
| Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software. | | Author: | Tomasz Kojm | | Homepage: | http://www.clamav.net | | Changes: | This is a bugfix release only. | | File Size: | 24260964 | | Last Modified: | Apr 8 20:13:32 2009 | | MD5 Checksum: | c802d4b372e455849cfcb0d776fc72d8 |
|
| /// File Name: | mp3nema-v0_4.tar.gz | Description:
| MP3nema is a tool aimed at analyzing and capturing data that is hidden between frames in an MP3 file or stream, otherwise noted as "out of band" data. This utility also supports adding data between frames and capturing streaming audio. | | Author: | enferex | | Homepage: | http://www.757labs.com/projects/mp3nema/ | | Changes: | This release uses a more portable version of the exit call. | | File Size: | 118820 | | Last Modified: | Apr 8 13:51:55 2009 | | MD5 Checksum: | e1dd249ad993a2364d0a0cc1cfca5510 |
|
| /// File Name: | lynis-1.2.6.tar.gz | Description:
| Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems. | | Author: | Michael Boelen | | Homepage: | http://www.rootkit.nl/projects/lynis.html | | Changes: | This release has several new tests and test improvements, like a sudoers file permissions check, a core dumps configuration check for Linux, PHP tests, and an /etc/issue banner test. | | File Size: | 100254 | | Last Modified: | Apr 6 20:45:50 2009 | | MD5 Checksum: | 46921fc56873a53074f4cf6775ce9007 |
|
| /// File Name: | sqlsus-0.3.tgz | Description:
| sqlsus is a MySQL injection and takeover tool, written in perl. Via a command line interface that mimics a mysql console, you can retrieve the database structure / contents, inject a SQL query, download files from the web server, upload and control a backdoor, and much more. | | Author: | sativouf | | Homepage: | http://sqlsus.sf.net/ | | File Size: | 25208 | | Last Modified: | Apr 6 20:10:48 2009 | | MD5 Checksum: | de26bb0fdcba192b1818191e1736dc25 |
|
| /// File Name: | wapiti-2.1.0.zip | Description:
| Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities. | | Author: | Nicolas Surribas | | Homepage: | http://wapiti.sourceforge.net/ | | Changes: | Added more patterns for file handling vulnerabilities in PHP. Added GET_SQL and POST_SQL as modules (-m) for attacks. Modified getcookie.py and cookie.py so they try to get the cookies even if cookielib fails. | | File Size: | 406852 | | Last Modified: | Apr 6 19:59:51 2009 | | MD5 Checksum: | 6ee8da782ba48e050ff346561888c555 |
|
| /// File Name: | Vuurmuur-0.7.tar.gz | Description:
| Vuurmuur is a middle-end and front-end for netfilter and iptables that is aimed at system administrators who need a decent firewall, but do not have netfilter specific knowledge. It converts human-readable rules into an iptables ruleset (or optional a bash script), makes netfilter logs readable, and includes an ncurses GUI. | | Author: | Victor Julien | | Homepage: | http://www.vuurmuur.org/ | | Changes: | Traffic shaping handling was improved. Source port randomization support was added. Support for PMTU MSS clamping was added. Generating and installing of translations was fixed. There were many other small fixes. | | File Size: | 1787804 | | Last Modified: | Apr 6 16:53:37 2009 | | MD5 Checksum: | bad91aafcbea5e3a434440f88d722778 |
|
| /// File Name: | gnupg-2.0.11.tar.bz2 | Description:
| GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions. | | Homepage: | http://www.gnupg.org | | Changes: | Many enhancements and fixes were made. | | File Size: | 3852869 | | Last Modified: | Apr 3 19:00:56 2009 | | MD5 Checksum: | a3014f3b3c919662278060f9a4818b89 |
|
| /// File Name: | fwbuilder-3.0.4.tar.gz | Description:
| Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists. | | Homepage: | http://www.fwbuilder.org | | Changes: | This version includes numerous bugfixes as well as improvements in the built-in policy installer, SNMP discovery, support for IPv6 for all platforms, and policy compilers for iptables and PF. Generation of static routing commands for Cisco IOS and PIX has been implemented. This is a stable version to which all users are encouraged to upgrade. | | File Size: | 2383070 | | Last Modified: | Apr 2 17:04:01 2009 | | MD5 Checksum: | a53ad035511e6a8a6b4b89e6eacf4485 |
|
| /// File Name: | urlcrazy-0.2.tar.gz | Description:
| UrlCrazy is for the study of domainname typos and URL hijacking. It generates domainname typo permutations then tests them to learn if they are in use, estimates their popularity and more. Typo types supported are: Character Omission, Adjacent Character Swap, Adjacent Character Replacement, Adjacent Character Insertion, Missing Dot, Strip Dashes, Singular or Pluralise. Urlcrazy is written in Ruby. | | Author: | Andrew Horton (urbanadventurer) | | Homepage: | http://code.google.com/p/urlcrazy | | File Size: | 16780 | | Last Modified: | Mar 31 21:39:24 2009 | | MD5 Checksum: | 76e29d066377625acb84ab32096ae538 |
|
| /// File Name: | openssl-0.9.8k.tar.gz | Description:
| OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. | | Homepage: | http://www.openssl.org/ | | Changes: | Three security flaws of moderate severity were fixed - Printing the contents of an ASN1 certificate with an illegal encoded length could cause an application crash. CMS verification could cause an invalid set of signed attributes to appear valid. A malformed ASN1 structure could cause invalid memory access. Further minor modifications were made. | | File Size: | 3852259 | | Related CVE(s): | CVE-2009-0590, CVE-2009-0591, CVE-2009-0789 | | Last Modified: | Mar 30 16:13:29 2009 | | MD5 Checksum: | e555c6d58d276aec7fdc53363e338ab3 |
|
| /// File Name: | mobiusft-0.4.4.tar.gz | Description:
| Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools. | | Homepage: | http://savannah.nongnu.org/projects/mobiusft | | Changes: | The part catalogue now imports and exports catalogues. Minor bugs were fixed. | | File Size: | 529966 | | Last Modified: | Mar 30 16:16:53 2009 | | MD5 Checksum: | 815c360eee7e6b9ff0e918e7137a9adf |
|
| /// File Name: | ratproxy-1.55.tar.gz | Description:
| ratproxy is a semi-automated, largely passive Web application security audit tool optimized for accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex Web 2.0 environments. | | Author: | Michal Zalewski | | Homepage: | http://code.google.com/p/ratproxy | | Changes: | A minor change was made to always output HTTP/1.1 headers to avoid the activation of certain Web server heuristics. | | File Size: | 168519 | | Last Modified: | Mar 27 18:55:38 2009 | | MD5 Checksum: | f52e278f94f611045335176387c8d880 |
|
| /// File Name: | lynis-1.2.5.tar.gz | Description:
| Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems. | | Author: | Michael Boelen | | Homepage: | http://www.rootkit.nl/projects/lynis.html | | Changes: | This release adds 40+ new tests for services like Dovecot, BIND, PowerDNS, SSH, Exim, and nginx. It has support for the Solaris auditing framework and several improvements to existing tests. Many small bugfixes and output and logging improvements have been made. | | File Size: | 96717 | | Last Modified: | Mar 27 18:43:33 2009 | | MD5 Checksum: | 9eea99624a615310c0fb714d3a7c5cf6 |
|
| /// File Name: | adsuck-1.6.tgz | Description:
| adsuck is a small DNS server that spoofs blacklisted addresses and forwards all other queries. The idea is to be able to prevent connections to undesirable sites such as ad servers, crawlers, etc. It can be used locally, for the road warrior, or on the network perimeter in order to protect local machines from malicious sites. | | Author: | Marco Peereboom | | Homepage: | http://www.peereboom.us/adsuck/ | | Changes: | General clean up and paranoia. | | File Size: | 1278638 | | Last Modified: | Mar 26 14:02:19 2009 | | MD5 Checksum: | a96abbe5f2d9a1ffcf5b5f160d280dc0 |
|
| /// File Name: | aanval-5-latest-stable.tgz | Description:
| Aanval is the industry's most comprehensive snort and syslog intrusion detection, correlation and management console. Aanval is designed specifically to scale from small single sensor installations to global enterprise deployments. Aanval is browser based and designed to work on all current variants of UNIX, Linux and Mac OS X. | | Homepage: | http://www.aanval.com | | File Size: | 12765731 | | Last Modified: | Mar 25 18:05:55 2009 | | MD5 Checksum: | 9a252996034862ba73d8f4dbbe6e5e9e |
|
| /// File Name: | monkey-spider-0.2.tar.gz | Description:
| The Monkey-Spider is a crawler based low-interaction client honeypot. It is not only restricted to this use but it is developed as such. The Monkey-Spider crawls web sites to expose their threats to web clients. | | Author: | Ali Ikinci | | Homepage: | http://monkeyspider.sourceforge.net/ | | File Size: | 22693 | | Last Modified: | Mar 25 02:51:21 2009 | | MD5 Checksum: | 4c2f2310aacf66c61fa7fb80f2ebd75e |
|
| /// File Name: | winftprecon0.9beta2.tgz | Description:
| winftprecon is a tool to poll a Windows based FTP service for the output of the SITE STATS command. The SITE STATS command gives out statistics on the FTP service which can be used for simple statistics purposes but also for remote enumeration of the FTP service for attack and penetration purposes. The output of the SITE STATS command, if supported and enabled, consists of a list of FTP commands that were issued towards the FTP service and how many time in the form of a number. The information can be saved in csv format or saved in a sqlite3 database as dataset for statistics and enumeration of the ftp service to obtain valuable information towards attack/assessment planning. | | Author: | Tom Van de Wiele | | File Size: | 5322 | | Last Modified: | Mar 24 01:18:16 2009 | | MD5 Checksum: | 7cedfe3ad8f1dff06a7576ead3bc4c60 |
|
| /// File Name: | clamav-0.95.tar.gz | Description:
| Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software. | | Author: | Tomasz Kojm | | Homepage: | http://www.clamav.net | | Changes: | This release introduces many bugfixes, improvements and additions. Key features include Google Safe Browsing support, a new clamav-milter, and clamd extensions. | | File Size: | 24104169 | | Last Modified: | Mar 23 23:50:03 2009 | | MD5 Checksum: | 98590386ba9a69039580b1bf48ca038b |
|
| /// File Name: | iodine-0.5.1.tar.gz | Description:
| iodine is a piece of software that lets you tunnel IPv4 data through a DNS server. This can be useful in situations where Internet access is firewalled, but DNS queries are allowed. It needs a TUN/TAP device to operate. The bandwidth is asymmetrical with limited upstream and up to 1 Mbit/s downstream. | | Author: | Yarrick | | Homepage: | http://code.kryo.se/iodine/ | | Changes: | Windows support was added using the OpenVPN TAP32 driver. The autoprobe functionality has received a number of fixes. iodined now logs to syslog when users log in. | | File Size: | 50636 | | Last Modified: | Mar 23 23:42:48 2009 | | MD5 Checksum: | 5bb0b56e047e1453a3695ec0b9478b84 |
|
| /// File Name: | iptables-1.4.3.tar.bz2 | Description:
| iptables is built on top of netfilter, the packet alteration framework for Linux 2.4.x and 2.6.x. It is a major rewrite of its predecessor ipchains, and is used to control packet filtering, Network Address Translation (masquerading, portforwarding, transparent proxying), and special effects such as packet mangling. | | Homepage: | http://www.iptables.org | | Changes: | This release includes features available in 2.6.29. The main changes are numerous documentation updates, a set of changes to move some of the iptables functionality to a shared library, IPv6 support for the recent match, TPROXY support, and SCTP/DCCP NAT support. | | File Size: | 442868 | | Last Modified: | Mar 23 23:40:09 2009 | | MD5 Checksum: | 952f8df5815b658bdf34b8d58fe94c63 |
|
| /// File Name: | sipwitch-0.5.3.tar.gz | Description:
| GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate. | | Author: | David Sugar | | Homepage: | http://www.gnutelephony.org/ | | Changes: | SIP re-invite processing mid call now works correctly, along with call holding state. Forward publishing of SIP presence is now supported when using sipwitch as a front-end for an insecure IP-PBX. | | File Size: | 476505 | | Last Modified: | Mar 23 23:37:56 2009 | | MD5 Checksum: | 9f486ae82a93f65e7efdee43bf04f36a |
|
| /// File Name: | silc-toolkit-1.1.9.tar.gz | Description:
| SILC (Secure Internet Live Conferencing) is a protocol which provides secure conferencing services in the Internet. It can be used to send any kind of messages, in addition to normal text messages. This includes multimedia messages like images, video, and audio stream. All messages in the SILC network are encrypted and authenticated, and messages can also be digitally signed. SILC protocol supports AES, SHA-1, PKCS#1, PKCS#3, X.509, OpenPGP, and is being developed in the IETF. This tarball holds all developer related files. | | Author: | priikone | | Homepage: | http://silcnet.org | | Changes: | This version fixes lots of bugs and many security bugs such as crashes. In fact this release fixes as many as 8 major crashes and many other bugs. | | File Size: | 2509373 | | Last Modified: | Mar 18 21:47:05 2009 | | MD5 Checksum: | 8acfc569d302f42845820f4acee2c158 |
|
| /// File Name: | sptrace-1.4.2.tar.gz | Description:
| sptrace is a secure ptrace() module for Linux. It limits users' access to the ptrace() call. It can disable ptrace altogether, or if you add a ptrace group to your system, only users in that group will be able to use ptrace(). | | Author: | Krzysztof Burghardt | | Homepage: | http://www.underground.org.pl/einstein/ | | Changes: | This version was adjusted to reflect changes in Linux, and was tested with kernel 2.6.23. Support for the 2.4 line is still there, but it is no longer tested. | | File Size: | 14458 | | Last Modified: | Mar 18 21:41:13 2009 | | MD5 Checksum: | 9a23198cbdcd256b11e2b0dc2c03b331 |
|
| /// File Name: | xplico_phpgui-0.1_mms_geopmap.tgz | Description:
| Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams, etc. This is the version that has a GUI allowing you to view photos, texts and videos contained in MMS messages. | | Author: | Andrea de Franceschi,Gianluca Costa | | Homepage: | http://www.xplico.org/ | | Changes: | This release introduce the MMS dissector. With this dissector it is possible to reconstruct the MMS message transported by HTTP protocol and extracts the media contained. This release introduces the generation of geographical and temporal map (GeoMap) of data rebuilding. The files generated are kml files and can be used with Google Earth. | | File Size: | 493941 | | Last Modified: | Mar 16 17:11:33 2009 | | MD5 Checksum: | a32cfce6c92066803d9aaad016619d4e |
|
| /// File Name: | xplico-0.1-mms_geopmap.tgz | Description:
| Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams, etc. | | Author: | Andrea de Franceschi,Gianluca Costa | | Homepage: | http://www.xplico.org/ | | Changes: | This release introduce the MMS dissector. With this dissector it is possible to reconstruct the MMS message transported by HTTP protocol and extracts the media contained. This release introduces the generation of geographical and temporal map (GeoMap) of data rebuilding. The files generated are kml files and can be used with Google Earth. | | File Size: | 151749 | | Last Modified: | Mar 16 17:11:32 2009 | | MD5 Checksum: | 251516854d7dc1f3c189b80a88791f2b |
|
| /// File Name: | ksplice-0.9.7-src.tar.gz | Description:
| Ksplice is practical technology for updating the Linux kernel without rebooting. It enables you to avoid the disruptive process of rebooting for kernel security updates and bugfixes. By making it easy to keep your systems up to date, Ksplice helps you avoid the security and stability risks of running out-of-date software. | | Author: | Anders Kaseorg | | Homepage: | http://www.ksplice.com/ | | Changes: | Fixed a bug where Ksplice relocations were sometimes written pointing to the middle of patched sections. Fixed a Makefile bug where the Ksplice core module was compiled twice. Renamed or reorganized several data structures in the Ksplice kernel code. Changed the Ksplice module names from primary/helper to old_code/new_code. | | File Size: | 182910 | | Last Modified: | Mar 12 14:41:03 2009 | | MD5 Checksum: | 79bc8aa5275c026e3bd4092da93cb996 |
|
| /// File Name: | circumference-1.2.tar.bz2 | Description:
| Circumference is an implementation of a WebAuth client and server to supplement the recently-written specification for the WebAuth Diameter Application, complete with an extensible Diameter server and base library. Diameter is specified in RFC3588 and its updates. | | Author: | Jan Engelhardt | | Homepage: | http://circum.sourceforge.net/ | | Changes: | Implemented changes stemming from the RFC3588bis16 update. A couple of other changes. | | File Size: | 330002 | | Last Modified: | Mar 10 17:10:26 2009 | | MD5 Checksum: | c851ed7ea53604537d7f935f816cb23b |
|
| /// File Name: | geoipgen-0.3.tar.gz | Description:
| Geoipgen is an IPv4 network tool for generating geotargeted IP addresses. Features: Random or sorted order, unique or repeating ips, skips broadcast addresses, uses the MaxMind GeoLite Country database. | | Author: | Andrew Horton (urbanadventurer) | | Homepage: | http://code.google.com/p/geoipgen/ | | File Size: | 11552 | | Last Modified: | Mar 9 16:35:48 2009 | | MD5 Checksum: | 0e52c045aba926c8a167650a1876c516 |
|
| /// File Name: | sfuzz-0.1.tar.bz2 | Description:
| Simple Fuzz is a simple fuzzer. It has two network modes of operation, an output mode for developing command line fuzzing scripts, as well as taking fuzzing strings from literals and building strings from sequences. It is built to fill a need - the need for a quickly configurable black box testing utility that does not require intimate knowledge of the inner workings of C or require specialized software rigs. The aim is to just provide a simple interface, clear inputs/outputs, and reusability. | | Author: | Aaron Conole | | Homepage: | http://aconole.brad-x.com/ | | File Size: | 10024 | | Last Modified: | Mar 9 16:40:45 2009 | | MD5 Checksum: | d093b4a090e7a656ee34b676796ab9e0 |
|
| /// File Name: | lfi-checker.txt | Description:
| Simple perl script for checking a variable for local file inclusion. | | Author: | D4T4X | | File Size: | 1838 | | Last Modified: | Mar 9 16:18:09 2009 | | MD5 Checksum: | 5095f4f32a15881c9a50e29b7a09bebc |
|
| /// File Name: | rfi-checker.txt | Description:
| Simple perl script for checking a variable for remote file inclusion. | | Author: | D4T4X | | File Size: | 897 | | Last Modified: | Mar 9 16:16:40 2009 | | MD5 Checksum: | 84eba18d15559c6e0a50bd4d3860d033 |
|
| /// File Name: | adsuck-1.4.tgz | Description:
| adsuck is a small DNS server that spoofs blacklisted addresses and forwards all other queries. The idea is to be able to prevent connections to undesirable sites such as ad servers, crawlers, etc. It can be used locally, for the road warrior, or on the network perimeter in order to protect local machines from malicious sites. | | Author: | Marco Peereboom | | Homepage: | http://www.peereboom.us/adsuck/ | | File Size: | 1278359 | | Last Modified: | Mar 9 14:49:50 2009 | | MD5 Checksum: | 2035d13d8ad9302a949a2068935ec43d |
|
| /// File Name: | sipwitch-0.5.1.tar.gz | Description:
| GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate. | | Author: | David Sugar | | Homepage: | http://www.gnutelephony.org/ | | Changes: | SIP publish messages now updates internal presence status. CFWD busy can be used if no dnd or away forward target set. Various other enhancements. | | File Size: | 475757 | | Last Modified: | Mar 9 13:21:36 2009 | | MD5 Checksum: | 485b401cf2aebae637984a42cf50d7d2 |
|
| /// File Name: | stefo-fuzz.txt | Description:
| SQL fuzzing tool that will find all table names, column names for specified table, mysql version, username of mysql, database, perform load_file() on sites vulnerable to SQL injection. | | Author: | stefo | | File Size: | 9763 | | Last Modified: | Mar 6 14:53:13 2009 | | MD5 Checksum: | f545c9abc582fb62d1235077cae79b8e |
|
| /// File Name: | warvox-1.0.0.tar.gz | Description:
| WarVOX is a suite of tools for exploring, classifying, and auditing telephone systems. Unlike normal wardialing tools, WarVOX works with the actual audio from each call and does not use a modem directly. This model allows WarVOX to find and classify a wide range of interesting lines, including modems, faxes, voice mail boxes, PBXs, loops, dial tones, IVRs, and forwarders. WarVOX provides the unique ability to classify all telephone lines in a given range, not just those connected to modems, allowing for a comprehensive audit of a telephone system. | | Author: | H D Moore | | Homepage: | http://warvox.org/ | | Related File: | warvox-1.0.0.pdf | | File Size: | 4333029 | | Last Modified: | Mar 6 13:58:11 2009 | | MD5 Checksum: | f8bf41f8cb2fbd715292c61c58f845f2 |
|
| /// File Name: | samhain-2.5.4.tar.gz | Description:
| Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris. | | Author: | Rainer Wichmann | | Homepage: | http://samhain.sourceforge.net | | File Size: | 1872356 | | Last Modified: | Mar 5 17:19:36 2009 | | MD5 Checksum: | bbbaf653bbaef5ee71fadb04c71872e0 |
|
| /// File Name: | scannedonly-0.13.tar.gz | Description:
| Scannedonly is a samba VFS module that ensures that only files that have been scanned for viruses are visible and accessible to the end user. Scannedonly was developed because of scalability problems with samba-vscan. Scannedonly comes in two parts: a Samba VFS module and (one or more) daemons. The daemon scans files and marks them when they are known to be clean. The samba module simply filters out files that aren't marked clean. | | Author: | Olivier Sessink | | Homepage: | http://olivier.sessink.nl/scannedonly/ | | File Size: | 66676 | | Last Modified: | Mar 2 16:28:47 2009 | | MD5 Checksum: | c7ad963549991751499046375cf394cb |
|
| /// File Name: | ZoneMinder-1.24.1.tar.gz | Description:
| ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface. | | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | Changes: | Release addressing some issues discovered in 1.24.0 plus a small number of useful features. | | File Size: | 894667 | | Last Modified: | Feb 27 23:51:50 2009 | | MD5 Checksum: | 1e4ce392d645cbb28037ecebc5a56584 |
|
| /// File Name: | pt-check-09-001.zip | Description:
| Standalone MS vulnerabilities network scanner to help identify systems vulnerable to the MS08-067, MS08-065 and MS09-001 (Microsoft Bulletins) flaws. The utility operates in PenTest mode. This requires no special rights to detect network nodes without updates. System administrators and security professionals can use this utility for fast and easy discovery of vulnerable systems and install appropriate patches according to the scanning results. | | Homepage: | http://www.securitylab.ru/ | | File Size: | 61282 | | Last Modified: | Feb 27 17:29:40 2009 | | MD5 Checksum: | 182b4a62d0f99f0a01e79a9e63464dee |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
