Penetration Testing mailing list archives
Tools Update - last week of november 2009
From: "SD List" <list () security-database com>
Date: Sun, 29 Nov 2009 11:33:29 +0100 (CET)
Hello Here is the site's newsletter "Security Database Tools Watch" (http://www.security-database.com/toolswatch). This letter summarizes the articles and news items published since 7 days. We also announce 3 new features : - Vulnerability Dashboard is fully integrated the OSVDB API. Now with each CVE comes the available OSVDB entry(ies). - Vulnerability Dashboard is now linking to SAINT Corporation Exploits. When available, the CVE displays with CVSS, CPE, CAPEC, CWE, OVAL, OSVDB and SaintExploit ID. - ToolsWatch Process (6 categories : Vulnerability Scanner & Management, Penetration testing & Ethical Hacking, IDS, Code Auditing, Application Scanner) is now mapped with to the appropriate standard or regulation as well as PCI DSS, GLBA, HIPAA, ISO 27001/27002, SOX, and FISMA New articles -------------------------- ** Eclipse HTTP Client (HTTP4e) v2.0 available ** by Tools Tracker Team - 28 November 2009 Eclipse HTTP Client (HTTP4e) is an Eclipse plugin formaking HTTP and RESTful calls. Build with user experience in mind, it simplifies the developer/QA job of testing Web Services, REST, JSON and HTTP. It is a useful tool for your daily job of HTTP header tampering and hacking. Features: Making/Replaying an HTTP call directly from Eclipse IDE Visual Editor Panels for headers, parameters and http packet body Tabbed browsing (allowing replaying different RESTful, HTTP calls on separate (...) -> http://www.security-database.com/toolswatch/Eclipse-HTTP-Client-HTTP4e-v2.html ** History of Hacking - Part 1 ** by Tools Tracker Team - 28 November 2009 Every culture has its beginning somewhere, Computer hacking is no exception. The History of Hacking video series is a 5 part documentary which runs down memory lane and presents important figures, facts and personalities of the Hacking culture. In History of Hacking Part 1, we will look at Phone Phreaking and John Draper a.k.a Captain Crunch and try and understand the string of events which molded the Phone Phreaking culture. Those of you who have not heard of John, he is the guy who (...) -> http://www.security-database.com/toolswatch/History-of-Hacking-Part-1.html ** Security Acts Magazine Issue 1 released ** by Tools Tracker Team - 27 November 2009 Security Acts is the challenge of producing a high-quality magazine for profes- sionals in IT Security, which is made by and issued for the people involved in IT Security. This online magazine is free of charge and will finance itself through adverts. In this 1st issue AJAX makes applications more difficult to secure by Manu Cohen AJAX is the new hot technology concerning web applications. It allows the client to do much more than before and have a much better user experience. An (...) -> http://www.security-database.com/toolswatch/Security-Acts-Magazine-Issue-1.html ** vmap v0.7 released - identifying remotely daemons ** by ToolsTracker - 26 November 2009 vmap lets you remotely ident the version of a daemon. It currently works for ftp, smtp, pop3, imap and http. Version 0.7 Code cleanup Fixed lots of bugs Added support for nmap and amap logs Added a "make install" (public dir is /usr/local/share/vmap) Got rid of that damn rn-stuff, now every line ends just with n How does it work? Every daemon has it's own reply on commands. For example, the HELP command sends different replies on different FTP daemons. This can be (...) -> http://www.security-database.com/toolswatch/vmap-v0-7-released-identifying.html ** Slitaz Aircrack-ng Distribution v20091117 released ** by ToolsTracker - 26 November 2009 The Slitaz Aircrack-ng Distribution is the base Slitaz cooking version plus the latest Aircrack-ng SVN version, wireless drivers patched for injection and other related tools. The custom distribution is especially tuned for the Acer Aspire One netbooks but will work well on virtually all desktops, notebooks and netbooks. Version November 17/2009 Updated aircrack-ng suite to 1.0 final including sqlite airolib-ng support Updated all Slitaz packages as of November 16/2009. This is Slitaz (...) -> http://www.security-database.com/toolswatch/Slitaz-Aircrack-ng-Distribution,885.html ** log2timeline v0.40 released ** by ToolsTracker - 26 November 2009 log2timeline is a framework for artifact timeline creation and analysis. The main purpose is to provide a single tool to parse various log files and artifacts found on suspect systems (and supporting systems, such as network equipment) and produce a body file that can be used to create a timeline, using tools such as mactime from TSK, for forensic investigators. Version 0.40 [CFTL output] Fixed few bugs in the cftl.pm output module, didn't work in the current CFTL version without these (...) -> http://www.security-database.com/toolswatch/log2timeline-v0-40-released.html ** Websecurify v0.4 released ** by ToolsTracker - 26 November 2009 Websecurify Security Testing Framework identifies web security vulnerabilities by using advanced browser automation, discovery and fuzzing technologies. The framework is written in JavaScript and successfully executes in numerous platforms including modern browsers with support for HTML5, xulrunner, xpcshell, Java, V8 and others. What's New in Websecurify better, more responsive UI support for Workspaces nicer looking tasks netter reporting with ability to export to various formats (...) -> http://www.security-database.com/toolswatch/Websecurify-v0-4-released.html ** SAINT v7.2.1 released ** by ToolsTracker - 26 November 2009 SAINT is the Security Administrators Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINTs data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of (...) -> http://www.security-database.com/toolswatch/SAINT-v7-2-1-released.html ** Graudit v1.4 released ** by ToolsTracker - 25 November 2009 Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility grep. It's comparable to other static analysis applications like RATS, SWAAT and flaw-finder while keeping the technical requirements to a minimum and being very flexible. Version 1.4 New and improved signatures Graceful detection of grep version graudit /path/to/scan The following options are available: -h prints a short help text -v prints version number (...) -> http://www.security-database.com/toolswatch/Graudit-v1-4-released.html ** (updated) SHODAN - Computer Search Engine released ** by Tools Tracker Team - 25 November 2009 SHODAN lets you find servers/ routers/ etc. by using the simple search bar up above. Most of the data in the index covers web servers at the moment, but there is some data on FTP, Telnet and SSH services as well. I've just looked upon the new search engine. My first impression was : Holy s.., it could find a lot of buggy servers, websites, devices and so on. But when playing again with google dorks (GHDB), it happens to look (hope i'm not mistaken), that Shodan is a kind of GUI for (...) -> http://www.security-database.com/toolswatch/SHODAN-Computer-Search-Engine.html ** Acunetix WVS Version 6.5 build 20091124 released ** by Tools Tracker Team - 24 November 2009 Acunetix Web Vulnerability Scanner (WVS) is an automated web application security testing tool that audits your web applications by checking for exploitable hacking vulnerabilities. Automated scans may be supplemented and cross-checked with the variety of manual tools to allow for comprehensive web site and web application penetration testing An updated build for Acunetix WVS Version 6.5 has been released with a number of improvements, bug fixes, and most important of all, a good number of (...) -> http://www.security-database.com/toolswatch/Acunetix-WVS-Version-6-5-build,879.html ** Focus on Pangolin SQL Injection Tool ** by Tools Tracker Team - 24 November 2009 Pangolin is an automatic SQL injection penetration testing tool developed by NOSEC. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specific (...) -> http://www.security-database.com/toolswatch/Focus-on-Pangolin-SQL-Injection.html ** OSSEC v2.3 BETA available ** by Tools Tracker Team - 24 November 2009 OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS). It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking, Windows registry monitoring, centralized policy enforcement, rootkit detection, real-time alerting and active respons New features - v2.3 Added support for the Nginx web server. Added support for Suhosin (Hardened PHP). Added support for real time integrity monitoring on Windows systems Added (...) -> http://www.security-database.com/toolswatch/OSSEC-v2-3-BETA-available.html ** Nmap 5.10BETA1 released ** by Tools Tracker Team - 24 November 2009 Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other (...) -> http://www.security-database.com/toolswatch/Nmap-5-10BETA1-released.html ** Security-Database integrates OSVDB ** by Tools Tracker Team - 23 November 2009 Security-Database provides a continuous IT vulnerability XML feed based on open security standards for classification, scoring, enumeration and exploitation. It also provides a well maintained repository for latest security and auditing tools and utilities. We are happy (again) to announce that we have fully integrated the OSVDB API with our Vulnerability Crosslinker Engine. Now with each CVE comes its appropriate OSVDB entry. Here is an example. For this MS09-68 Microsoft bulletin, you (...) -> http://www.security-database.com/toolswatch/Security-Database-integrates-OSVDB.html ** RISK IT Framework and Practitioner Guide published ** by Tools Tracker Team - 23 November 2009 The Risk IT Framework fills the gap between generic risk management frameworks and detailed (primarily security-related) IT risk management frameworks. It provides an end-to-end, comprehensive view of all risks related to the use of IT and a similarly thorough treatment of risk management, from the tone and culture at the top, to operational issues. In summary, the framework will enable enterprises to understand and manage all significant IT risk types, building upon the existing risk (...) -> http://www.security-database.com/toolswatch/RISK-IT-Framework-and-Practitioner.html ** "Compliance Mandates" feature added to ToolsWatch Process ** by Tools Tracker Team - 22 November 2009 ToolsWatch Process is a free service started by Security-Database in Sept 2006. ToolsWatch is tracking hundreds of software and utilities divided into different categories. We are happy to announce that we've just implemented a new feature called "Compliance Mandatory". In fact, we took as basis for our work the excellent reference SANS WhatWorks. Now along with a category, we provide a mapping to the appropriate standard or regulation as well as PCI DSS, GLBA, HIPAA, ISO 27001/27002, SOX, (...) -> http://www.security-database.com/toolswatch/Compliance-Mandates-feature-added.html ** NetworkMiner updated to v0.91 ** by Tools Tracker Team - 22 November 2009 NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates from PCAP files. The purpose of NetworkMiner is to collect data (such as forensic evidence) about (...) -> http://www.security-database.com/toolswatch/NetworkMiner-updated-to-v0-91.html ** ISO 31000:2009 risk management standard released ** by Tools Tracker Team - 22 November 2009 ISO 31000:2009 provides principles and generic guidelines on risk management. ISO 31000:2009 can be used by any public, private or community enterprise, association, group or individual. Therefore, ISO 31000:2009 is not specific to any industry or sector. ISO 31000:2009 can be applied throughout the life of an organization, and to a wide range of activities, including strategies and decisions, operations, processes, functions, projects, products, services and assets. ISO 31000:2009 can be (...) -> http://www.security-database.com/toolswatch/ISO-31000-2009-risk-management.html ** Process Hacker v1.7 released ** by ToolsTracker - 21 November 2009 Process Hacker is a free and open source process viewer and memory editor with unique features such as powerful process termination and a Regex memory searcher. It can show services, processes and their threads, modules, handles and memory regions. Version 1.7 NEW/IMPROVED #2873973 - "Columns window improvements" New settings system - settings can now be saved anywhere Decreased memory and CPU usage Process Hacker probably runs on Windows 2000 now FIXED #2880368 - "Highlight Option (...) -> http://www.security-database.com/toolswatch/Process-Hacker-v1-7-released.html ** Hyena v8.0 32-bit & 64-bit released ** by ToolsTracker - 21 November 2009 Hyena is a tool for day-to-day administration of Windows NT and Windows XP/2000/2003 systems. Now Windows 7 too. Hyena brings together all of the administrative tools from Windows NT such as User Manager, Server Manager, and File Manager/Explorer, and many of the MMC components from Windows 2000/2003 into a single, easy-to-use, centralized program. Hyena arranges all system objects, such as users, servers, and groups, in a hierarchical tree for easy and logical system administration. (...) -> http://www.security-database.com/toolswatch/Hyena-v8-32-bit-64-bit-released.html New news items -------------------------- * Security-Database integrates OSVDB * - 23 November 2009 We are happy (again) to announce that we have fully integrated the OSVDB API with our Vulnerability Crosslinker Engine. Now with each CVE comes its appropriate OSVDB entry. Here is an example. For this MS09-68 Microsoft bulletin, you have very nice information: CVE CVSS v2.0 CWE CAPEC (...) -> http://www.security-database.com/toolswatch/+Security-Database-integrates-OSVDB+.html * Mapping Tools with Standards and Regulations feature added * - 22 November 2009 We are happy to announce that we've just implemented a new feature called "Compliance Mandatory". In fact, we took as basis for our work the excellent reference SANS WhatWorks. Now along with a category, we provide a mapping to the appropriate standard or regulation as well as PCI DSS, GLBA, (...) -> http://www.security-database.com/toolswatch/+Mapping-Tools-with-Standards-and+.html Regards Nabil OUCHN CEO & Founder Security-Database France Maximiliano Soler ToolWatch Leader Security-Database Argentina ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Tools Update - last week of november 2009 SD List (Nov 30)