... neuere Einträge
Sunday, 20. November 2011
PDF Stream Dumper
Am Sunday, 20. Nov 2011 im Topic 'Malware Search'
This is a free tool for the analysis of malicious PDF documents. It also has some features that can make it useful for pdf vulnerability development.
Has specialized tools for dealing with obsfuscated javascript, low level pdf headers and objects, and shellcode. In terms of shellcode analysis, it has an integrated interface for libemu sctest, an updated build of iDefense sclog, and a shellcode_2_exe feature.
Javascript tools include integration with JS Beautifier for code formatting, the ability to run portions of the script live for live deobsfuscation, toolbox classes to handle extra canned functionality, as well as a pretty stable refactoring engine that will parse a script and replace all the screwy random function and variable names with logical sanitized versions for readability.
Tool also supports unescaping/formatting manipulated pdf headers, as well as being able to decode filter chains (multiple filters applied to the same stream object.)
Download incl. full vb6 source
http://sandsprite.com/CodeStuff/PDFStreamDumper_Setup.exe
Has specialized tools for dealing with obsfuscated javascript, low level pdf headers and objects, and shellcode. In terms of shellcode analysis, it has an integrated interface for libemu sctest, an updated build of iDefense sclog, and a shellcode_2_exe feature.
Javascript tools include integration with JS Beautifier for code formatting, the ability to run portions of the script live for live deobsfuscation, toolbox classes to handle extra canned functionality, as well as a pretty stable refactoring engine that will parse a script and replace all the screwy random function and variable names with logical sanitized versions for readability.
Tool also supports unescaping/formatting manipulated pdf headers, as well as being able to decode filter chains (multiple filters applied to the same stream object.)
Download incl. full vb6 source
http://sandsprite.com/CodeStuff/PDFStreamDumper_Setup.exe
Wednesday, 16. November 2011
GoLISMERO -Linux
Am Wednesday, 16. Nov 2011 im Topic 'Pentest'
GoLISMERO is a web spider is able to detect vulnerabilities and format results a very useful when starting a web audit. Every time we face a new URL, would not it be great to have easily and quick all the links, forms with parameters, to detect possible URL vulnerable and in addition to being presented so that gives us an idea of ??all points of entry where we could launch attacks? GoLISMERO lets us do all this.
Download
http://code.google.com/p/golismero/downloads/list
./GoLISMERO.py –t google.com
Download
http://code.google.com/p/golismero/downloads/list
./GoLISMERO.py –t google.com
Tuesday, 15. November 2011
Pentest - free, safe and legal training
Am Tuesday, 15. Nov 2011 im Topic 'Pentest'
Vulnerability Assessment
http://www.vulnerabilityassessment.co.uk/
Net-Force
http://net-force.nl/
Hack Quest
http://hackquest.com/
HackThisSite
http://www.hackthissite.org/
EnigmaGroup
http://www.enigmagroup.org/pages/basics/
Smash The Stack
http://www.smashthestack.org/
Wechall
https://www.wechall.net/
by
WarGames
http://www.vulnerabilityassessment.co.uk/
Net-Force
http://net-force.nl/
Hack Quest
http://hackquest.com/
HackThisSite
http://www.hackthissite.org/
EnigmaGroup
http://www.enigmagroup.org/pages/basics/
Smash The Stack
http://www.smashthestack.org/
Wechall
https://www.wechall.net/
by
WarGames
Monday, 14. November 2011
ClubHack Mag Issue 22- November 2011
Am Monday, 14. Nov 2011 im Topic 'Books change the World'
Articles:
Tech Gyan - Looking Into the Eye of the Bits
Tool Gyan - Ravan – JavaScript Distributed Computing System
Mom's Guide - Best Practices of Web Application Security
Legal Gyan - Law relating to Cyberterrorism
Matriux Vibhag - OWASP Mantra’s MoC Crawler
Poster - Ravan
Download PDF
http://chmag.in/issue/nov2011.pdf
Tech Gyan - Looking Into the Eye of the Bits
Tool Gyan - Ravan – JavaScript Distributed Computing System
Mom's Guide - Best Practices of Web Application Security
Legal Gyan - Law relating to Cyberterrorism
Matriux Vibhag - OWASP Mantra’s MoC Crawler
Poster - Ravan
Download PDF
http://chmag.in/issue/nov2011.pdf
Sunday, 6. November 2011
VanishCrypt
Am Sunday, 6. Nov 2011 im Topic 'Tools'
SecurityLabs Experts from India release a new Virtual Encryption Tool called "VanishCrypt". A Freeware Utility to Secure Your Data. It creates a virtual disk that contains your secret files. Data is protected with a Encrypted Password. The files are completely inaccessible without the correct password. Stored files are encrypted with strong CryptoAPI.
Download
http://code.google.com/p/vanishcrypt/downloads/detail?name=Vanish%20Crypt.rar&can=2&q=#makechanges
Download
http://code.google.com/p/vanishcrypt/downloads/detail?name=Vanish%20Crypt.rar&can=2&q=#makechanges
... ältere Einträge
