... neuere Einträge
Monday, 12. September 2011
LongURL Mobile Expander
Am Monday, 12. Sep 2011 im Topic 'News'
You should always know where a link takes you before clicking on it. Services like TinyURL.com make that difficult. LongURL Mobile Expander uses the LongURL.org web services to let you know where shortened links *really* go.
Source
https://addons.mozilla.org/en-US/firefox/addon/longurl-mobile-expander/
Source
https://addons.mozilla.org/en-US/firefox/addon/longurl-mobile-expander/
Rootkit Hunter
Am Monday, 12. Sep 2011 im Topic 'Malware Search'
Rootkit scanner is scanning tool to ensure you for about 99.9%* you're clean of nasty tools. This tool scans for rootkits, backdoors and local exploits by running tests like:
- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files
Download
http://sourceforge.net/projects/rkhunter/
- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files
Download
http://sourceforge.net/projects/rkhunter/
Saturday, 10. September 2011
FBPwn - Facebook Profile Dumper
Am Saturday, 10. Sep 2011 im Topic 'Tools'
AddVictimFriends: Request to add some or all friends of Bob to increase the chance of Bob accepting any future requests, after he finds that you have common friends.
ProfileCloner: A list of all Bob’s friends is displayed, you choose one of them (we’ll call him Andy). FBPwn will change Mallory’s display picture, and basic info to match Andy’s. This will generate more chance that Bob accepts requests from Mallory as he thinks he is accepting from Andy. Eventually Bob will realize this is not Andy’s account, but probably it would be too late as all his info are already saved for offline checking by Mallory.
CheckFriendRequest: Check if mallory is already friend of Bob, then just end execution. If not, the module tries to add bob as as a friend and poll waiting for him to accept. The module will not stop executing until the friend request is accepted.
DumpFriends: Accessable friends of Bob is saved for offline viewing. The output of the module depends on other modues, if mallory is not a friend of Bob yet, the data might not be accessable and nothing will be dumped.
DumpImages: Accessable images (tagged and albums) are saved for offline viewing. Same limitations of dump friends applies.
DumpInfo: Accessable basic info are saved for offline viewing. Same limitations of dump friends applies.
Download
http://code.google.com/p/fbpwn/downloads/list
ProfileCloner: A list of all Bob’s friends is displayed, you choose one of them (we’ll call him Andy). FBPwn will change Mallory’s display picture, and basic info to match Andy’s. This will generate more chance that Bob accepts requests from Mallory as he thinks he is accepting from Andy. Eventually Bob will realize this is not Andy’s account, but probably it would be too late as all his info are already saved for offline checking by Mallory.
CheckFriendRequest: Check if mallory is already friend of Bob, then just end execution. If not, the module tries to add bob as as a friend and poll waiting for him to accept. The module will not stop executing until the friend request is accepted.
DumpFriends: Accessable friends of Bob is saved for offline viewing. The output of the module depends on other modues, if mallory is not a friend of Bob yet, the data might not be accessable and nothing will be dumped.
DumpImages: Accessable images (tagged and albums) are saved for offline viewing. Same limitations of dump friends applies.
DumpInfo: Accessable basic info are saved for offline viewing. Same limitations of dump friends applies.
Download
http://code.google.com/p/fbpwn/downloads/list
adobe-website - xss
Am Saturday, 10. Sep 2011 im Topic 'Vulnerabilities'
http://www.adobe.com/cfusion/tdrc/modal/download_suite.cfm?product=XSS
http://www.adobe.com/cfusion/tdrc/modal/signin.cfm?product=XSS
http://www.adobe.com/cfusion/type/search.cfm?category_type=All&term=XSS
http://groups.adobe.com/index.cfm?event=people.login&redirect=XSS
https://tv.adobe.com/login/login?redirect=XSS
http://www.adobe.com/products/creativesuite/mastercollection/buying-guide.html/XSS
by
Josh
http://www.adobe.com/cfusion/tdrc/modal/signin.cfm?product=XSS
http://www.adobe.com/cfusion/type/search.cfm?category_type=All&term=XSS
http://groups.adobe.com/index.cfm?event=people.login&redirect=XSS
https://tv.adobe.com/login/login?redirect=XSS
http://www.adobe.com/products/creativesuite/mastercollection/buying-guide.html/XSS
by
Josh
Friday, 9. September 2011
safego
Am Friday, 9. Sep 2011 im Topic 'Web Security'
safego is a bitdefender product as most of are aware of bitdefenter anti virus capabilities. As per many serves the most popular social networking sites are Facebook and twitter.
Source
http://safego.bitdefender.com/
Source
http://safego.bitdefender.com/
OSSIM v3.0
Am Friday, 9. Sep 2011 im Topic 'Web Security'
“OSSIM stands for Open Source Security Information Management. Its goal is to provide a comprehensive compilation of tools which, when working together, grant network/security administrators with a detailed view over each and every aspect of his or her networks, hosts, physical access devices, server, etc.
Besides getting the most out of well known open source tools, some of which are briefly described below, OSSIM provides a strong correlation engine, detailed low, medium and high level visualization interfaces, and reporting and incident management tools, based on a set of defined assets such as hosts, networks, groups and services.
All of this information can be restricted by network or sensor in order to provide only the required information to specific users; allowing for a fine grained multi–user security environment. Finally, the ability to perform as an IPS (Intrusion Prevention System), using correlated information from virtually any source, will be a useful addition to any security professional’s arsenal.“
Download
http://data.alienvault.com/alienvault_open_source_siem_3.0_64bits.iso
Besides getting the most out of well known open source tools, some of which are briefly described below, OSSIM provides a strong correlation engine, detailed low, medium and high level visualization interfaces, and reporting and incident management tools, based on a set of defined assets such as hosts, networks, groups and services.
All of this information can be restricted by network or sensor in order to provide only the required information to specific users; allowing for a fine grained multi–user security environment. Finally, the ability to perform as an IPS (Intrusion Prevention System), using correlated information from virtually any source, will be a useful addition to any security professional’s arsenal.“
Download
http://data.alienvault.com/alienvault_open_source_siem_3.0_64bits.iso
PasteLert
Am Friday, 9. Sep 2011 im Topic 'News'
PasteLert is a simple system to search pastebin.com and set up alerts (like google alerts) for pastebin.com entries. This means you will automatically recieve email whenever your term(s) is/are found in new pastebin entries!
PasteLert at:
http://www.andrewmohawk.com/pasteLert/index.php
PasteLert at:
http://www.andrewmohawk.com/pasteLert/index.php
XSSS - Scanning - Linux
Am Friday, 9. Sep 2011 im Topic 'Pentest'
Features
Crawl website
Detect forms and URLs with parameters
Fill in forms, alter parameters to include control characters
Scan web server response for our input
Download
http://www.sven.de/xsss/xsss-0.40b.tar.gz
Crawl website
Detect forms and URLs with parameters
Fill in forms, alter parameters to include control characters
Scan web server response for our input
Download
http://www.sven.de/xsss/xsss-0.40b.tar.gz
Ajex File Manager - Deface Or Shell Upload
Am Friday, 9. Sep 2011 im Topic 'Vulnerabilities'
Google Dork:
- intitle: Ajex.FileManager
- inurl: /plugins/editors/AjexFileManager/
*Think it again
Exploit:
- http://[localhost]/patch/plugins/editors/ajexfilemanager/index.html
Live Target:
- http://fiesta-kurkino.ru/scripts/AjexFileManager/
- http://demphest.ru/demo/AjexFileManager/AjexFileManager/index.html
by
Setelah Membaca, Ayo Berbagi
- intitle: Ajex.FileManager
- inurl: /plugins/editors/AjexFileManager/
*Think it again
Exploit:
- http://[localhost]/patch/plugins/editors/ajexfilemanager/index.html
Live Target:
- http://fiesta-kurkino.ru/scripts/AjexFileManager/
- http://demphest.ru/demo/AjexFileManager/AjexFileManager/index.html
by
Setelah Membaca, Ayo Berbagi
OWADE - Windows Analysis and Data Extraction
Am Friday, 9. Sep 2011 im Topic 'Tools'
OWADE is in alpha version and is only available by checking out the code directly as we update it very frequently. Note that the current version has only been tested on ubuntu 10.10 against Windows XP drives. When we reach a stable version we will release a tgz.
Download
https://bitbucket.org/Elie/owade/downloads
Download
https://bitbucket.org/Elie/owade/downloads
Registry Decoder
Am Friday, 9. Sep 2011 im Topic 'Tools'
Digital forensics deals with the analysis of artifacts on all types of digital devices. One of the most prevalent analysis techniques performed is that of the registry hives contained in Microsoft Windows operating systems. Registry Decoder was developed with the purpose of providing a single tool for the acquisition, analysis, and reporting of registry contents.
Download
http://code.google.com/p/registrydecoder/downloads/list
Download
http://code.google.com/p/registrydecoder/downloads/list
DDOs Tracer - 1.0
Am Friday, 9. Sep 2011 im Topic 'Tools'
Monday, 5. September 2011
AVG Mobilation Pro for Android
Am Monday, 5. Sep 2011 im Topic 'Android'
AVG Mobilation pro for Android 1.6 and later is a comprehensive security app that combats virus and malware attacks.
Download
http://www.chip.de/downloads/AVG-Anti-Virus-Pro-Android-App-Vollversion_51286690.html
Download
http://www.chip.de/downloads/AVG-Anti-Virus-Pro-Android-App-Vollversion_51286690.html
BackBox Linux 2
Am Monday, 5. Sep 2011 im Topic 'Pentest'
The BackBox team is proud to announce the release of BackBox. Linux 2.BackBox 2 features the following upstream components: Ubuntu 11.04, Linux Kernel 2.6.38 and Xfce 4.8. BackBox is an Ubuntu-based distribution developed to perform penetration tests and security assessments. It is designed to be fast and easy to use. It provides a minimal yet complete desktop environment, thanks to its own software repositories, which are always updated to the latest stable versions of the most often used and best-known ethical hacking tools.
Download
http://www.backbox.org/content/download
Download
http://www.backbox.org/content/download
Sunday, 4. September 2011
HH MultiScan 2.3 Final
Am Sunday, 4. Sep 2011 im Topic 'Tools'
For information (issues & solutions) read ReadMe.txt which is included in package.
Main features:
Scan file with multiple antivirus scanners.
Add antivirus yourself.
Pretty handy antivirus updater.
MUI (you can translate program)
And few others...
Without included antivirus
Download
http://www.mediafire.com/?obyn0kdrfciridv
With included 13 antivirus
Download
http://www.mediafire.com/?62dcnepcg23ud
by
Gakh
Main features:
Scan file with multiple antivirus scanners.
Add antivirus yourself.
Pretty handy antivirus updater.
MUI (you can translate program)
And few others...
Without included antivirus
Download
http://www.mediafire.com/?obyn0kdrfciridv
With included 13 antivirus
Download
http://www.mediafire.com/?62dcnepcg23ud
by
Gakh
... ältere Einträge