... neuere Einträge
Saturday, 22. October 2011
Extension Spoofer
Am Saturday, 22. Oct 2011 im Topic 'Tools'
Here is a little tool that will help you to spoof any kind of file to any kind of file and still works as the first file extension
Download
http://unremote.ru/processdl.php?id=22
Explaining from scratch
Download
http://unremote.ru/processdl.php?id=22
Explaining from scratch
Net Tools 5.0 (build 70)
Am Saturday, 22. Oct 2011 im Topic 'Computer Forensics'
Net Tools is a comprehensive set of host monitoring, network scanning, security, administration tools and much more, all with a highly intuitive user interface. It's an ideal tool for those who work in the network security, administration, training, internet forensics or law enforcement internet crimes fields.
Download
http://www.mabsoft.com/NetTools5.0.70.zip
Download
http://www.mabsoft.com/NetTools5.0.70.zip
QuickRecon v0.3 - information gathering
Am Saturday, 22. Oct 2011 im Topic 'Computer Forensics'
QuickRecon is a simple information gathering tool that allows you to:
Bruteforce subdomains of a target domain
Perform zone transfer
Gather email addresses from Google.com and Bing.com
Find human relationships using XHTML Friends Network (microformats)
Download:
http://code.google.com/p/quickrecon/downloads/list
Bruteforce subdomains of a target domain
Perform zone transfer
Gather email addresses from Google.com and Bing.com
Find human relationships using XHTML Friends Network (microformats)
Download:
http://code.google.com/p/quickrecon/downloads/list
RawCap Tiny Sniffer
Am Saturday, 22. Oct 2011 im Topic 'Computer Forensics'
Details:
Can sniff any interface that has got an IP address, including 127.0.0.1 (localhost/loopback)
RawCap.exe is just 17 kB
No external libraries or DLL’s needed
No installation required, just download RawCap.exe and sniff
Can sniff most interface types, including WiFi and PPP interfaces
Minimal memory and CPU load
Reliable and simple to use
Download:
http://www.netresec.com/products/RawCap/RawCap.exe
Can sniff any interface that has got an IP address, including 127.0.0.1 (localhost/loopback)
RawCap.exe is just 17 kB
No external libraries or DLL’s needed
No installation required, just download RawCap.exe and sniff
Can sniff most interface types, including WiFi and PPP interfaces
Minimal memory and CPU load
Reliable and simple to use
Download:
http://www.netresec.com/products/RawCap/RawCap.exe
Opensource forensic tools website
Am Saturday, 22. Oct 2011 im Topic 'Computer Forensics'
This website contains a bunch of open source forensic tools.
Source
http://www2.opensourceforensics.org/tools/windows
Source
http://www2.opensourceforensics.org/tools/windows
RTCA
Am Saturday, 22. Oct 2011 im Topic 'Computer Forensics'
RTCA is a Windows forensic analysis tool, registry, audit logs and files. RTCA basically is a standalone and portable application for extraction and analysis investigation, can be used in local configuration report or analysis after extraction. As it analysis after extraction analysis is fast and acurate.
Download
http://omnia-projetcs.googlecode.com/svn/trunk/RTCA/RtCA.exe
Download
http://omnia-projetcs.googlecode.com/svn/trunk/RTCA/RtCA.exe
Duqu - like Stuxnet
Am Saturday, 22. Oct 2011 im Topic 'News'
At this time DuQu does not propagate and has been released only within targeted industries, although Symantec admits it may also be elsewhere and not yet discovered. The original compile dates on some of the variants of DuQu so far analyzed suggest it may have existed as far back as November 3, 2010. Stuxnet compile dates were between June 2009 and March 2010 and therefore pre-date DuQu.
Download PDF
http://www.symantec.com/content/en/us/enterprise/media/security_response/whitepapers/w32_duqu_the_precursor_to_the_next_stuxnet.pdf
"Duqu" Removal Tool:
You only have to download and run it on the system, then reboot the PC if infection is found. Here is a complete rundown of the steps you need to take:
1. Download the Duqu_Removal_Tool.zip (.zip file), then double-click on it chose "Extract all files..." from the File menu, and follow the wizard's instructions. You can use any other decompression utility, like WinZip.
2. Navigate to the folder you have extracted the tool in, find the file called Duqu_Removal_tool.exe and double-click on it. Press the Scan button and let the removal tool scan your PC.
3. If you have Windows Vista with User Access Control enabled, or if you are running as a restricted user in Windows XP, right click the Duqu_Removal_tool.exe program and choose "Run as Administrator". You will be prompted to enter credentials for an admin account.
4. Press the OK button when the removal tool asks for a reboot.
5. If you don't already have permanent antivirus protection or if your current antivirus has failed you, consider using the advanced protection tool provided by BitDefender.
Download
http://www.duquremoval.com/files/Duqu_Removal_Tool.zip
Download PDF
http://www.symantec.com/content/en/us/enterprise/media/security_response/whitepapers/w32_duqu_the_precursor_to_the_next_stuxnet.pdf
"Duqu" Removal Tool:
You only have to download and run it on the system, then reboot the PC if infection is found. Here is a complete rundown of the steps you need to take:
1. Download the Duqu_Removal_Tool.zip (.zip file), then double-click on it chose "Extract all files..." from the File menu, and follow the wizard's instructions. You can use any other decompression utility, like WinZip.
2. Navigate to the folder you have extracted the tool in, find the file called Duqu_Removal_tool.exe and double-click on it. Press the Scan button and let the removal tool scan your PC.
3. If you have Windows Vista with User Access Control enabled, or if you are running as a restricted user in Windows XP, right click the Duqu_Removal_tool.exe program and choose "Run as Administrator". You will be prompted to enter credentials for an admin account.
4. Press the OK button when the removal tool asks for a reboot.
5. If you don't already have permanent antivirus protection or if your current antivirus has failed you, consider using the advanced protection tool provided by BitDefender.
Download
http://www.duquremoval.com/files/Duqu_Removal_Tool.zip
OSSAMS - Linux
Am Saturday, 22. Oct 2011 im Topic 'Pentest'
The framework is going to be designed in a fashion similar to Metasploit, SNORT, or other systems that allow the security community to create plugins for new tasks as needed. The primary goal of OSSAMS is to normalize the data, there by allowing the security professional to better assess the current state of security for an organization.
Completed:
acunetix, burp, grendel, nessus, netsparker, nexpose community, nikto, nmap, ratproxy, retina community, skipfish, sslscan, w3af, wapiti, watcher, websecurify, zap.
Download
http://www.ossams.com/?page_id=46
Completed:
acunetix, burp, grendel, nessus, netsparker, nexpose community, nikto, nmap, ratproxy, retina community, skipfish, sslscan, w3af, wapiti, watcher, websecurify, zap.
Download
http://www.ossams.com/?page_id=46
Friday, 21. October 2011
Comodo Internet Security Pro 2012 - free
Am Friday, 21. Oct 2011 im Topic 'News'
Download Comodo Internet Security Pro 2011 Here -> one-year special installer
http://www.downloadcrew.com/article/22370-comodo_internet_security_pro_2011
Install and start Comodo 2011. Navigate to “More” -> “About” -> Serial Number -> “Copy”.
Save the serial number on your PC, you will need this serial to activate the 2012 version.
Download and Install Free Comodo Internet Security Pro 2012.
http://downloads.comodo.com/cis/download/installs/1000/standalone/cispro_installer_x86.exe
During installation, enter the serial number that you received from the 2011 version.
http://www.downloadcrew.com/article/22370-comodo_internet_security_pro_2011
Install and start Comodo 2011. Navigate to “More” -> “About” -> Serial Number -> “Copy”.
Save the serial number on your PC, you will need this serial to activate the 2012 version.
Download and Install Free Comodo Internet Security Pro 2012.
http://downloads.comodo.com/cis/download/installs/1000/standalone/cispro_installer_x86.exe
During installation, enter the serial number that you received from the 2011 version.
Adobe - Spy On The Webcams of Visitors
Am Friday, 21. Oct 2011 im Topic 'Vulnerabilities'
A slight variation of a previously designed clickjacking attack that used a Adobe Flash vulnerability has once again made it possible for website administrators to surreptitiously spy on their visitors by turning on the user's computer webcam and microphone.
by
Aboukhadijeh
by
Aboukhadijeh
Wednesday, 19. October 2011
How to Poison Ivy server compatible with Win-7 32bit
Am Wednesday, 19. Oct 2011 im Topic 'Tutorials'
Load server Poison Ivy in OllyDBG, go to the address 401200, and do as follows.
Before
After
by
qolyx
Poison Ivy 2.3.2
http://securityxploit.blogger.de/stories/1852045/
Before
After
by
qolyx
Poison Ivy 2.3.2
http://securityxploit.blogger.de/stories/1852045/
DNS poisoning via Port Exhaustion
Am Wednesday, 19. Oct 2011 im Topic 'Vulnerabilities'
A vulnerability in Java (CVE-2011-3552, CVE-2010-4448) which enables remote DNS poisoning using Java applets. This vulnerability can be triggered when opening a malicious webpage. A successful exploitation of this vulnerability may lead to disclosure and manipulation of cookies and web pages, disclosure of NTLM credentials and clipboard data of the logged-on user, and even firewall bypass.
Download PDF
http://blog.watchfire.com/files/dnsp_port_exhaustion.pdf
Download PDF
http://blog.watchfire.com/files/dnsp_port_exhaustion.pdf
Zexplo - Linux
Am Wednesday, 19. Oct 2011 im Topic 'Pentest'
Zexplo is a python based Penetration Testing toolkit with simple and cool interface.
This first version of Zexplo has 6 enumeration modules for various network scanning operations such as zping, zarpcache, ztcpscan, znmapport etc and 1 exploit (filecopa). In addition to this it also has some exciting modules for man in the middle (MITM) attack and autopwn. You will also see tools such as Injector (inject modules into running process)and Encoder (with triple layer of XOR).
Download
http://securityxploded.net/getfile.php?file=Zexplo.zip
This first version of Zexplo has 6 enumeration modules for various network scanning operations such as zping, zarpcache, ztcpscan, znmapport etc and 1 exploit (filecopa). In addition to this it also has some exciting modules for man in the middle (MITM) attack and autopwn. You will also see tools such as Injector (inject modules into running process)and Encoder (with triple layer of XOR).
Download
http://securityxploded.net/getfile.php?file=Zexplo.zip
Tuesday, 18. October 2011
Jynx-Kit LD_PRELOAD Rootkit - Linux
Am Tuesday, 18. Oct 2011 im Topic 'Tools'
Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell based on SEQ/ACK numbers in a single packet. Solid building block for further LD_PRELOAD rootkits.
Download incl. ReadMe
http://www.blackhatacademy.org/releases/Jynx-Kit-Pub.tar.gz
Download incl. ReadMe
http://www.blackhatacademy.org/releases/Jynx-Kit-Pub.tar.gz
Monday, 17. October 2011
BlueStacks - Android
Am Monday, 17. Oct 2011 im Topic 'Android'
BlueStacks allows users to run Android OS apps on Windows PCs with instant switching between the two.
Features of BlueStacks
Play Android apps fast and full-screen
Push your favorite apps from your Android phone to your PC using BlueStacks Cloud Connect
Run 10 pre-loaded apps “out of the box”
Install up to 26 more of your favorite apps
May not work fast on older netbooks and tablets
Available now for Win7, and it’s Free
Download
http://cdn.bluestacks.com/public/2002/BlueStacks_AppPlayer_Alpha.msi
Features of BlueStacks
Play Android apps fast and full-screen
Push your favorite apps from your Android phone to your PC using BlueStacks Cloud Connect
Run 10 pre-loaded apps “out of the box”
Install up to 26 more of your favorite apps
May not work fast on older netbooks and tablets
Available now for Win7, and it’s Free
Download
http://cdn.bluestacks.com/public/2002/BlueStacks_AppPlayer_Alpha.msi
... ältere Einträge
