Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.

Download
http://freshmeat.net/projects/mobiusft

Installation

As root, type:
python setup.py install

Usage

Run mobius_bin.py.

Read these first:

www.klake.org/~jt/encoder/
www.security-assessment.com/Presentations/BM_Brightstar_2004.ppt

These didnt do what I wanted, aka work on x64 etc, so I did a
_much_ more basic (using as/ld/objdump) one to do what I wanted...

Source
http://pastebin.com/jL5egjZe

by
lucifer

Slow HTTP DoS attacks rely on the fact that the HTTP protocol, by design, requires requests to be completely received by the server before they are processed. If an HTTP request is not complete, or if the transfer rate is very low, the server keeps its resources busy waiting for the rest of the data. If the server keeps too many resources busy, this creates a denial of service. This tool is sending partial HTTP requests, trying to get denial of service from target HTTP server.

Installation and usage examples
http://code.google.com/p/slowhttptest/wiki/InstallationAndUsage

How to run and tune Apache Range DoS vulnerability test
http://code.google.com/p/slowhttptest/wiki/ApacheRangeTest

Download
http://code.google.com/p/slowhttptest/downloads/list

It converts a binary file to text and then is possible to recreate the binary file from text on server which has no internet access.

Download
http://www.surgeonix.com/blog/downloads/srgn-file2text-v2.1.exe

Source
http://www.surgeonix.com/blog/downloads/srgn-file2text-v2.1.cpp


Tuto
http://securityxploit.blogger.de/stories/1877012/

by
SuRGeoNix

This article introduces techniques that an attacker, who has already access to execute commands on a server, could use to create binary files on server which has no internet access (firewalled) or web filtering (antivirus).

Download PDF
http://www.surgeonix.com/blog/downloads/Creating_Binary_Files_on_a_Firewalled_Server.pdf

by
SuRGeoNix

The vulnerable pages are “/_/sharebox/linkpreview/“ and “gadgets/proxy?“
Is possible to request any file type, and G+ will download and show all the content. So, if you parallelize so many requests, is possible to DDoS any site with Google bandwidth. Is also possible to start the attack without be logged in G+. If anything, Google will notice [attack attempts] and probably blacklist you.

Source
http://pastebin.com/2uRGm9jY

by
R00T.ATI

XSS Vulnerability (Cross Site Scripting) in MSN.
Vulnerable Link:
http://glo.msn.com/search?searchTerm=%22%3E%3Cscript%3Ealert(document.cookie)%20;%3C/script%3E

by
TeamDX

..............your creativity was great Steve Jobs
Source
http://www.apple.com/pr/bios/tim-cook.html

Mit der Beförderung zum Apple-Vorstandschef dürfte Tim Cook wohl auch finanziell in einer deutlich besseren Position stehen. Wie die Börsenaufsichtsbehörde SEC mitteilte, erhielt der neue CEO des Unternehmens insgesamt eine Million Apple-Belegschaftsaktien. Deren Wert beliefen sich bis vor Kurzen noch auf circa 380 Millionen US-Dollar.

killapache sends GET requests with multiple “byte ranges” that will claim large portions of the system’s memory space. A “byte range” statement allows a browser to only load certain parts of a document, for example bytes 500 to 1000. It is normally used while downloading large files. This method is used by programs such as download clients to resume downloads that have been interrupted; it is designed to reduce bandwidth requirements. However, it appears that stating multiple unsorted components in the header can cause an Apache server to malfunction.

Source
http://pastebin.com/9y9Atijn

using the WQuery injection attack:

WQuery........ ........ ($username)

$userdata = hub#;
if (isPasswordCorrect($username:Bg, $pass:M25)) {
$userdata = Bf%ByLogin($F20); ...
}

{
AS BEGIN

'SELECT:'string=B#(Var char 'FROM''$Status%'varchar(150) Brides'

WHERE 'FrIn'Lw =varchar(50) 'Millix*naire'
ph_status` varchar(20)=Count($Car) > $2000&+'
AND Hs_Status=='3#'
Brth_staus`Varchar(5)= Null;
AND Ss-status' =#Full$
{
$userselect=sxx(>20)
curl_setop="$ch(PRIMARY KEY ) (`dk-enter`)=’$fnm’
isGETCHA =$+`FInLawBal`
) TYPE`=MyFXX`;

}

Various Telecom/ISP servers are vulnerable to this attack.

Highly Vulnerable Softwares:

Pidgin
Meebo
MSN
AIM
Gtalk
Yahoo Messenger
Skype
Vypress
Windows Live Messenger
US Robotics
LG Electronics Routers
Intel Routers
Ericsson Routers
Cisco Routers
BT Telecoms
Win XP
Win Vista
Win Server 2008
Win 7
Win 2003
Firefox
Opera
IE all versions
Chrome Browser

by
FunnyMinds

Episode 1: Appsec Basics


Episode 2: SQL Injection


Episode 3: Cross Site Scripting (XSS)

This is a partial list of the major changes implented in version 2.7

- Available targets now has a submenu under right-click button
- Check update function added in order to verify current version
- Threading support for GET request
- Module log added and functional
- Sniffer support added
- 50 Remote exploits added
- Project saved on userland - Application Data special folder
- Executed module windows added and functionality for it
- AgentConnect now use telnetlib

Download
http://www.insecurityresearch.com

Malheur is a tool for the automatic analysis of malware behavior (program behavior recorded from malicious software in a sandbox environment). It has been designed to support the regular analysis of malicious software and the development of detection and defense measures. Malheur allows for identifying novel classes of malware with similar behavior and assigning unknown malware to discovered classes.

Download
http://www.mlsec.org/malheur/download.html

Installation
http://www.mlsec.org/malheur/install.html

Title: Windows Registry Forensics
Author:Harlan A. Carvey
Publisher: Syngress
Pages: 248
Release Date: Feb 7, 2011

Here is the table of contents

Chapter 1. Registry Analysis
Introduction
What Is “Registry Analysis”?
What Is the Window Registry?
Registry Structure
Summary

Chapter 2. Tools
Introduction
Live Analysis
Forensic Analysis
Summary

Chapter 3. Case Studies: The System
Security and SAM Hives
System Hive
Software Hive
BCD Hive
Summary

Chapter 4. Case Studies: Tracking User Activity
Tracking User Activity
Scenarios
Summary
References

Key Features of Ashampoo Undeleter

Recovery of files and directories on NTFS as well as FAT 12, 16, 32 partitions
Recovery of files on partitions with active NTFS compression
Recovery of files on partitions with active NTFS encryption
Recovery of alternate data streams (ADS) on NTFS partitions
Support of all known file systems on Microsoft Windows®
VERY fast MFT and FAT algorithm, as well as extremely quick recovery
Unlimited recoverable objects (files, directories)
Assessment and evaluation of the condition of recoverable objects
Quick and therefore intuitive user interface

Follow below steps to grab free Ashampoo Undeleter

Click here
http://www.ashampoo.com/frontend/registration/php/regpopinstall.php?session_langid=1&edition_id=lvjqld55tzy0wk2iktboolur8knscvin
to visit promo page
Enter your email address to register. Existing users will be prompted to login to your account
We will receive your free license key by email.

Knock is a python script, written by Gianni 'guelfoweb' Amato, designed to enumerate subdomains on a target domain through a wordlist. This program is self contained, doesn't need to be installed in any particular location. All it needs is a recent version of Python 2.xOnly for use the Zone Transfer option (-zt) you must install the module dnspython, otherwise you can do without. If the name server allows zone transfers to occur, all the DNS names and IP addresses hosted by the name server will be returned in human-readable ASCII text.
Usage
$ python knock.py
Rapid Scan
Scanning with internal wordlist:
$ python knock.py
Scanning with external wordlist:
$ python knock.py
Options
-zt Zone Transfer discovery:
$ python knock.py -zt
-dns Dns resolver:
$ python knock.py -dns
-wc Wildcard testing:
$ python knock.py -wc
-wc Wildcard bypass:
$ python knock.py -bw

Download
http://code.google.com/p/knock/downloads/list

This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet. Please note that the information you submit here is used only to provide you the service. We don't use the domain names or the test results, and we never will.

Source
https://www.ssllabs.com/ssldb/analyze.html

This paper sheds light on the findings of security testing of Java
Server Faces. JSF has been widely used as an open source web framework
for developing efficient applications using J2EE. JSF is compared with
ASP.NET framework to unearth potential security flaws.

Download PDF
http://www.secniche.org/jsf/dissecting_jsf_pt_aks_kr.pdf