ToolWar | Information Security (InfoSec) Tools: Testing

BlueMaho (Bluetooth Devices Security Testing) :: Tools

<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhNVahVyEcfeuzVD5lawFbk1swmp1o1H7I7v9E-pH4ejkRPZhlmFkUjvKXrBJxfz9ompBZO3fgIelIXorjmjWxOxR6sP7Oeyr968W6YoaZ1rdyC2xxbsgMJUT4ysmHVpx8skquk_Zn5LVOb/s1600/bluemaho+screenshot.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="bluemaho screenshot" border="0" height="240" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhNVahVyEcfeuzVD5lawFbk1swmp1o1H7I7v9E-pH4ejkRPZhlmFkUjvKXrBJxfz9ompBZO3fgIelIXorjmjWxOxR6sP7Oeyr968W6YoaZ1rdyC2xxbsgMJUT4ysmHVpx8skquk_Zn5LVOb/s320/bluemaho+screenshot.jpg" title="bluemaho screenshot" width="320" /></a></div>
<div style="text-align: justify;">
<b>BlueMaho</b> is GUI-shell (interface) for suite of <a href="http://www.toolwar.com/search/label/Tools" target="_blank">tools</a>  for <i>testing security of bluetooth devices</i>. It is freeware, opensource,  written on <a href="http://www.toolwar.com/search/label/Python" target="_blank">python</a>, uses wxPyhon. It can be used for testing BT-devices  for known vulnerabilities and major thing to do - testing to find  unknown vulns. Also it can form nice statistics. </div>
<h3 id="head-679ba20470ace2c0c9be33f0c0f8dc38db4b8bae" style="text-align: justify;">
What it can do? (features)</h3>
<div style="text-align: justify;">
<span class="anchor" id="line-18"></span></div>
<ul style="text-align: justify;">
<li><a href="http://www.toolwar.com/search/label/Scanner" target="_blank">Scan</a> for devices, show advanced info, SDP records, vendor etc <span class="anchor" id="line-19"></span></li>
<li>Track devices - show where and how much times device was seen, its name changes <span class="anchor" id="line-20"></span></li>
<li>loop scan - it can scan all time, showing you online devices <span class="anchor" id="line-21"></span></li>
<li>alerts with sound if new device found <span class="anchor" id="line-22"></span></li>
<li>on_new_device - you can spacify what command should it run when it founds new device <span class="anchor" id="line-23"></span></li>
<li>it can use separate dongles - one for scaning (loop scan) and one for running tools or exploits <span class="anchor" id="line-24"></span></li>
<li>send files <span class="anchor" id="line-25"></span></li>
<li>change name, class, mode, BD_ADDR of local HCI devices <span class="anchor" id="line-26"></span></li>
<li>save results in database <span class="anchor" id="line-27"></span></li>
<li>form nice statistics (uniq devices by day/hour, vendors, services etc) <span class="anchor" id="line-28"></span></li>
<li>test remote device for known vulnerabilities (see <a href="http://www.toolwar.com/search/label/Exploitation" target="_blank">exploits</a> for more details) <span class="anchor" id="line-29"></span></li>
<li>test remote device for unknown vulnerabilities (see tools for more details) <span class="anchor" id="line-30"></span></li>
<li>themes! you can customize it  <span class="anchor" id="line-31"></span><span class="anchor" id="line-32"></span></li>
</ul>
<div class="line867" style="text-align: justify;">
</div>
<h3 id="head-be34a21c5d08001e482450faeb1c54cf3a8d0fab" style="text-align: justify;">
What tools and exploits it consist of?</h3>
<div style="text-align: justify;">
<span class="anchor" id="line-33"></span></div>
<ul style="text-align: justify;">
<li style="list-style-type: none;"><b>Tools: </b><span class="anchor" id="line-34"></span></li>
<li>atshell.c by Bastian Ballmann (modified attest.c by Marcel Holtmann) <span class="anchor" id="line-35"></span></li>
<li>bccmd by Marcel Holtmann <span class="anchor" id="line-36"></span></li>
<li>bdaddr.c by Marcel Holtmann <span class="anchor" id="line-37"></span></li>
<li>bluetracker.py by smiley <span class="anchor" id="line-38"></span></li>
<li>carwhisperer v0.2 by Martin Herfurt <span class="anchor" id="line-39"></span></li>
<li>psm_scan and rfcomm_scan from bt_audit-0.1.1 by Collin R. Mulliner <span class="anchor" id="line-40"></span></li>
<li>BSS (Bluetooth Stack Smasher) v0.8 by Pierre Betouin <span class="anchor" id="line-41"></span></li>
<li>btftp v0.1 by Marcel Holtmann <span class="anchor" id="line-42"></span></li>
<li>btobex v0.1 by Marcel Holtmann <span class="anchor" id="line-43"></span></li>
<li>greenplaque v1.5 by digitalmunition.com <span class="anchor" id="line-44"></span></li>
<li>L2CAP packetgenerator by Bastian Ballmann <span class="anchor" id="line-45"></span></li>
<li>obex stress tests 0.1 <span class="anchor" id="line-46"></span></li>
<li>redfang v2.50 by Ollie Whitehouse <span class="anchor" id="line-47"></span></li>
<li>ussp-push v0.10 by Davide Libenzi <span class="anchor" id="line-48"></span><span class="anchor" id="line-49"></span></li>
<li class="gap" style="list-style-type: none;">exploits/attacks: <span class="anchor" id="line-50"></span></li>
<li>Bluebugger v0.1 by Martin J. Muench <span class="anchor" id="line-51"></span></li>
<li>bluePIMp by Kevin Finisterre <span class="anchor" id="line-52"></span></li>
<li>BlueZ hcidump v1.29 DoS PoC by Pierre Betouin <span class="anchor" id="line-53"></span></li>
<li>helomoto by Adam Laurie <span class="anchor" id="line-54"></span></li>
<li>hidattack v0.1 by Collin R. Mulliner <span class="anchor" id="line-55"></span></li>
<li>Mode 3 abuse attack <span class="anchor" id="line-56"></span></li>
<li>Nokia N70 l2cap packet DoS PoC Pierre Betouin <span class="anchor" id="line-57"></span></li>
<li>opush abuse (prompts flood) DoS attack <span class="anchor" id="line-58"></span></li>
<li>Sony-Ericsson reset display PoC by Pierre Betouin <span class="anchor" id="line-59"></span><span class="anchor" id="line-60"></span></li>
<li class="gap" style="list-style-type: none;">you can add your own tools by editing 'exploits/exploits.lst' and 'tools/tools.lst' <span class="anchor" id="line-61"></span><span class="anchor" id="line-62"></span></li>
</ul>
<div class="line867" style="text-align: justify;">
</div>
<h3 id="head-e627522f4fdfdbf663d44878db163eb1f1439774" style="text-align: justify;">
Requirements</h3>
<div style="text-align: justify;">
<span class="anchor" id="line-63"></span></div>
<ul style="text-align: justify;">
<li>OS (tested with Debian 4.0 Etch / 2.6.18) <span class="anchor" id="line-64"></span></li>
<li><div class="line862">
<a href="http://www.toolwar.com/search/label/Python" target="_blank">python</a> (python 2.4 http://www.python.org) <span class="anchor" id="line-65"></span></div>
</li>
<li><div class="line862">
wxPython (python-wxgtk2.6 http://www.wxpython.org) <span class="anchor" id="line-66"></span></div>
</li>
<li><div class="line862">
BlueZ (3.9/3.24) http://www.bluez.org <span class="anchor" id="line-67"></span></div>
</li>
<li>Eterm  to open tools somewhere, you can set another term in  'config/defaul.conf' changing the value of 'cmd_term' variable. (tested  with 1.1 ver) <span class="anchor" id="line-68"></span></li>
<li>pkg-config(0.21), 'tee' used in tools/showmaxlocaldevinfo.sh, openobex, obexftp <span class="anchor" id="line-69"></span></li>
<li>libopenobex1 + libopenobex-dev (needed by ussp-push) <span class="anchor" id="line-70"></span></li>
<li>libxml2, libxml2-dev (needed by btftp) <span class="anchor" id="line-71"></span></li>
<li>libusb-dev (needed by bccmd) <span class="anchor" id="line-72"></span></li>
<li>libreadline5-dev (needed by atshell.c) <span class="anchor" id="line-73"></span></li>
<li>lightblue-0.3.3 (needed by obexstress.py) <span class="anchor" id="line-74"></span></li>
<li>hardware: any bluez compatible bluetooth-device <span class="anchor" id="line-75"></span><span class="anchor" id="line-76"></span></li>
</ul>
<div class="line867" style="text-align: justify;">
</div>
<h3 id="head-24caaa99fac9202edff5973b243c88b76a030b49" style="text-align: justify;">
Configuration</h3>
<div style="text-align: justify;">
<span class="anchor" id="line-77"></span></div>
<ol style="text-align: justify;" type="1">
<li>all configuration is in 'config' dir. <span class="anchor" id="line-78"></span></li>
<li>for  using bluemaho propertly you need to build tools and exploits. check if  you satisfy 'requirements' for bluemaho. then run 'build.sh'. if you  see 'Building complete!' message, than all went OK. if not - try to play  around requirements. <span class="anchor" id="line-79"></span></li>
<li>'default.conf'  is a default configuration file, you can edit it if you need to change  some options, path to files and commands used by bluemaho, theme etc. by  default you don't need to change it if you do all from 'requirements'  chapter. but, please, view it, for example just for setting  'user_location' variable for defining you location, which will be used  for tracking function. <span class="anchor" id="line-80"></span></li>
<li>'themes' - directory with themes for bluemaho GUI. You can set path to default theme with 'theme' variable in 'default.conf'  <span class="anchor" id="line-81"></span><span class="anchor" id="line-82"></span></li>
</ol>
<div class="line867" style="text-align: justify;">
</div>
<h3 id="head-2670038111a3c9008f5b357412c4e536fda3337a" style="text-align: justify;">
Run and use</h3>
<div style="text-align: justify;">
<span class="anchor" id="line-83"></span><br />
<div class="line862">
you can run <b>BlueMaho</b>  typing in console 'bluemaho.py'. For verbose output in console (and  redirecting std_err and std_out) run 'bluemaho.py -v'. it saves founded  devices to 'bluemaho.log' by default, you can change it in  'config/defaul.conf'. <span class="anchor" id="line-84"></span>enjoy! </div>
<h3 class="line862">
Download ::</h3>
<div class="line862">
<b>Linux :: </b> <a href="https://wiki.thc.org/BlueMaho?action=AttachFile&do=get&target=bluemaho_v090417.tgz" target="_blank">BlueMaho.tgz</a></div>
<div class="line862">
<br /></div>
<h3 class="line862">
Tutorial ::</h3>
<div class="line862">
Text :: <a class="external text" href="http://www.digitalmunition.com/DMA%5B2005-1214a%5D.txt" rel="nofollow">Bluetooth for Windows Remote Audio Eavesdropping</a></div>
</div>

BlueMaho (Bluetooth Devices Security Testing) :: Tools

BlueMaho is GUI-shell (interface) for suite of tools for testing security of bluetooth devices . It is freeware, opensource, written ...

IKE Scan (Fingerprinting IPsec VPN Systems) :: Tools

<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgcR9RJFPXN5Woh63bjnW3K4BL8h78YqmsHhjWw9_sn02RfyPePlHARZxNahjALBnhYKNjFeKswsJ3T1wySPXaFBVwqG2gLt_wYMPhB-PuL_5toZ39tExguNXw4UEOw9NciozR-f1XQkl3l/s1600/ike+scan+screenshot.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Ike-scan-screenshot" border="0" height="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgcR9RJFPXN5Woh63bjnW3K4BL8h78YqmsHhjWw9_sn02RfyPePlHARZxNahjALBnhYKNjFeKswsJ3T1wySPXaFBVwqG2gLt_wYMPhB-PuL_5toZ39tExguNXw4UEOw9NciozR-f1XQkl3l/s400/ike+scan+screenshot.png" title="Ike-scan-screenshot" width="400" /></a></div>
<div style="text-align: justify;">
<b><i>IKE Scan</i></b> is a command-line tool for <i>discovering, 
fingerprinting and testing IPsec VPN systems</i>.  It constructs and sends 
IKE Phase-1 packets to the specified hosts, and displays any responses 
that are received.
</div>
<div style="text-align: justify;">
<b><i>ike-scan</i> </b>allows you to:
</div>
<ul>
<li style="text-align: justify;"> Send IKE packets to any number of destination hosts, using a configurable output bandwidth or packet rate.
<dl><dd>This is useful for VPN detection, when you may need to scan large address spaces.
</dd></dl>
</li>
<li style="text-align: justify;"> Construct the outgoing IKE packet in a flexible way.
<dl><dd>This includes IKE packets which do not comply with the RFC requirements.
</dd></dl>
</li>
<li style="text-align: justify;"> Decode and display any returned packets.
</li>
<li><div style="text-align: justify;">
Crack aggressive mode pre-shared keys. You can use ike-scan to obtain the PSK hash data, and then use <i>psk-crack</i> to obtain the key.
</div>
</li>
</ul>
<div style="text-align: justify;">
</div>
<h3 style="text-align: justify;">
<b>Download :: </b></h3>
<ul style="text-align: justify;">
<li>for Linux : <span class="wf_file_text"><a class="wf_file" href="http://www.nta-monitor.com/files/ike-scan/ike-scan-1.9.tar.gz"><span class="wf_file_text">ike-scan-1.9.tar.gz</span></a></span></li>
<li><span class="wf_file_text"><span class="wf_file_text">Github: <a href="https://github.com/royhills/ike-scan" title="https://github.com/royhills/ike-scan">https://github.com/royhills/ike-scan</a></span></span></li>
</ul>
<div style="text-align: justify;">
This will compile on Unix and Linux systems as well as Windows 
systems with Cygwin. You will need a C compiler, the "make" utility and 
the appropriate system header files to compile ike-scan. It uses 
autoconf and automake, so compilation and installation is the normal 
./configure; make; make install process.</div>
<ul style="text-align: justify;">
<li>Windows : <a class="wf_file" href="http://www.nta-monitor.com/files/ike-scan/ike-scan-win32-1.9.zip"><span class="wf_file_text">ike-scan-win32-1.9.zip</span></a></li>
</ul>
<div style="text-align: justify;">
This is a zip file containing a Win-32 binary version of ike-scan 
together with the Cygwin DLL which provides posix support. It runs on 
Win-9x, NT, 2000 and XP. The executable was produced by compiling the 
ike-scan source on a Windows system running Cygwin.</div>
<h3 style="text-align: justify;">
Tutorial ::  </h3>
<div style="text-align: justify;">
<b><span style="font-size: small;">IKE-Scan User Guide</span>  ::</b> <a href="http://www.nta-monitor.com/wiki/index.php/Ike-scan_User_Guide" target="_blank">Click Here</a></div>

IKE Scan (Fingerprinting IPsec VPN Systems) :: Tools

IKE Scan is a command-line tool for discovering, fingerprinting and testing IPsec VPN systems . It constructs and sends IKE Phase-1 p...

Open Port Check :: Tools

<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEicOHIjv0sZ6FWi82BD2iuD-v4RVC7PrOOwgcyjOEffZhUsxMYw0_jC8qZH0d7S5vNhLSpa_JhSkdOz07kcikEL7iGBp-VTN6buPqChCQk80D1dFP8ODW8IUMlyGELXXpqIKtR8XqszQgxZ/s1600/open+port+check.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="open port checker logo" border="0" height="172" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEicOHIjv0sZ6FWi82BD2iuD-v4RVC7PrOOwgcyjOEffZhUsxMYw0_jC8qZH0d7S5vNhLSpa_JhSkdOz07kcikEL7iGBp-VTN6buPqChCQk80D1dFP8ODW8IUMlyGELXXpqIKtR8XqszQgxZ/s400/open+port+check.JPG" title="open port checker logo" width="400" /></a></div>
<div style="text-align: justify;">
The <b>open port checker</b> is a tool you can use to<i> check your external IP 
address</i> and <i>detect open ports on your connection</i>. <b>Open Port Check</b> tool is useful 
for finding out if your port forwarding is setup correctly or if your 
server applications are being blocked by a firewall. This tool may also 
be used as a port scanner to scan your network for ports that are 
commonly forwarded. It is important to note that some ports, such as 
port 25, are often blocked at the ISP level in an attempt to prevent 
malicious activity. </div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<b>Online ::</b> <a href="http://www.yougetsignal.com/tools/open-ports/" target="_blank">Open Port Check Here</a></div>
<div style="text-align: justify;">
<b>Official Website :: </b>http://www.yougetsignal.com/</div>

Open Port Check :: Tools

The open port checker is a tool you can use to check your external IP address and detect open ports on your connection . Open Port Ch...

KOLKATA (Web Application Fingerprinting) :: Tools

<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
<img alt="kolkata web application fingerpriniting tool" border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjblh7okaX78YSdEtAzJwG8C6OYlRXWupeC8svbS39nXWePEaV3Mo3xwGCYqinIFajRoXhBNxjZq6rPBWvgB2KbTQUATdjhFPRbPkVyKrcJykmaOUlLLJs27Q6mzqszFpUXleLMIcCjPYT-/s1600/Web-App-fingerprint-sized-293x150.jpg" title="kolkata web application fingerpriniting tool" /></div>
<div style="text-align: justify;">
<b>Kolkata</b> is a <i>web application fingerprinting engine</i> written in <a href="http://www.toolwar.com/2013/09/perl-language.html" target="_blank" title="Perl">Perl</a> that combines cryptography with IDS evasion. Kolkata uses session splicing for IDS evasion and configurable checksums of static files in order to determine the version of a web application. </div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<b>Download Here ::</b> <a href="http://www.blackhatlibrary.net/releases/kolkata.tgz" target="_blank">Kolkata.tgz</a> </div>
<div style="text-align: justify;">
<b>Official Website ::</b> http://www.blackhatlibrary.net/Kolkata</div>
</div>

KOLKATA (Web Application Fingerprinting) :: Tools

Kolkata is a web application fingerprinting engine written in Perl that combines cryptography with IDS evasion. Kolkata uses session ...

SSL Vulnerability Analyzer :: Tools

<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiH12DB6_ms3O3s1_td8BwM7StWC_nv4S2ExjursWZTouuu445awygxmJEjwkFBQ0YsXbsZFoHvtP3lH0D5vlc-ZXpPbRGp9kb5moG1o_dK7LjMhPelK6CgYkRdbRcbRtGtRxmmoQ5qcQGU/s1600/ssl+vulnerability+analyzer+toolwar.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="SSL Vulnerability Analyzer toolwar" border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiH12DB6_ms3O3s1_td8BwM7StWC_nv4S2ExjursWZTouuu445awygxmJEjwkFBQ0YsXbsZFoHvtP3lH0D5vlc-ZXpPbRGp9kb5moG1o_dK7LjMhPelK6CgYkRdbRcbRtGtRxmmoQ5qcQGU/s320/ssl+vulnerability+analyzer+toolwar.png" title="SSL Vulnerability Analyzer toolwar" width="264" /></a></div>
<div style="text-align: justify;">
The <b>SSL Vulnerabilities Analyzer</b> is designed for website owners and 
security testers. The tool takes a domain and/or IP address, tests the 
encryptions and algorithms supported by them and analyzes the results in
 a graphic form, reporting problematic encryption methods.</div>
<div style="text-align: justify;">
PS, the browser may warn you about a danger file, but it's because that the zip file contains an installation file.</div>
<div style="text-align: justify;">
</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<b>Help/Tutorial :: </b><a href="https://appsec-labs.com/SSL_Analyzer/help" target="_blank">Click Here</a> </div>
<div style="text-align: justify;">
<b>Download Here :: </b><a href="https://appsec-labs.com/sites/default/files/d/tools/SSL_Vulnerabilities_analyzer/SSL_Analyzer_v1.1.zip" target="_blank">SSL Vulnerability Analyzer</a></div>
<div style="text-align: justify;">
<b>Official Website :: </b>https://appsec-labs.com/ </div>
</div>

SSL Vulnerability Analyzer :: Tools

The SSL Vulnerabilities Analyzer is designed for website owners and security testers. The tool takes a domain and/or IP address, tes...

OWASP Bricks (Web Application Security Learning Platform) :: Framework

<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
<img alt="owasp bricks logo toolwar" border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjxsW3jxRxCdfOllufBaZ0_uBwcmN-L7j2Fru8xOc1lTFeRLUMkcvyN_lnUYOrjG-Cv-Kr7b_qYk_j1a9LcRAikKyTgFkdJ9FQiNFFmJxMlrHdzndXtyTN6QhxPsCgBWGFX6oyy1lcxLLeR/s200/owasp+bricks+logo+toolwar.png" title="owasp bricks logo toolwar" width="199" /></div>
<div style="text-align: justify;">
<b>OWASP Bricks</b> is a <i>Web application security learning platform</i> built on PHP and MySQL. <b>Bricks</b> is a deliberately vulnerable web application built on PHP and MySQL. The project focuses on variations of commonly seen application security vulnerabilities and exploits. Each 'brick' has some sort of vulnerability which can be exploited using tools (Mantra and ZAP). The mission is to 'break the bricks' and thus learn the various aspects of web application security.<br />
<br />
<b>Bricks</b> is a web application security learning platform built on PHP and MySQL. The project focuses on variations of commonly seen application security issues. Each 'Brick' has some sort of security issue which can be leveraged manually or using automated software tools. The mission is to 'Break the Bricks' and thus learn the various aspects of web application security.<br />
<br />
<b>Bricks</b> is a completely free and open source project brought to you by OWASP. The complete documentation and instruction videos can also be accessed or downloaded for free. Bricks are classified into three different sections: login pages, file upload pages and content pages.</div>
<b></b><br />
<b></b><br />
<b></b><br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/j5I0wPvQxTg?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div>
<div class="separator" style="clear: both; text-align: center;">
<iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/mCo6ajvBv50?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div>
<br />
<b>D</b><b>ownload Here :: </b><a href="http://sourceforge.net/projects/owaspbricks/files/Atrai%20-%201.8/OWASP%20Bricks%20-%20Atrai.zip/download" target="_blank">OWASP Bricks v1.8</a><br />
<b>Official Website :: </b>http://sechow.com/<b><br /></b></div>

OWASP Bricks (Web Application Security Learning Platform) :: Framework

OWASP Bricks is a Web application security learning platform built on PHP and MySQL. Bricks is a deliberately vulnerable web applicat...

Yara (Malware Identification and Classification) :: Tools

<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
<img alt="yara logo toolwar" border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjKAYkHKynInHb6UvL_uNSYygzssfvA8Usl6A5CEKTElTLxrhw14_GJ2R_-QH8rkImx08HK67pJi4trQH6Osr7rRBGdHk631OfVQLHOgusXNlZKrc_EdCURJUhlOA8pc3i1axVRFoAyaLpH/s200/yara+logo+toolwar.png" title="yara logo toolwar" width="180" /></div>
<div style="text-align: justify;">
<b>YARA</b> is a tool aimed at helping malware researchers to identify and  classify malware  samples. With <b>YARA</b> you can create descriptions of  malware families based on textual or  binary patterns contained on  samples of those families. Each description consists of a set of strings  and a Boolean expression which determines its logic.</div>
<div style="text-align: justify;">
This is just a simple example, more complex and powerful rules can be  created by using binary strings with wild-cards, case-insensitive text  strings, special operators, regular expressions and many other features  that you can find explained in <b>YARA's </b>documentation. </div>
<div style="text-align: justify;">
<b>YARA</b>  is multi-platform, running on Windows, Linux and Mac OS X, and can be  used through its command-line interface or from your own Python scripts  with the yara-python extension.  </div>
<div style="text-align: justify;">
Python users can also use yara-ctypes  by Michael Dorman. He has also written a multi-threaded command-line  YARA scanner based on yara-ctypes that can exploit the benefits of  current multi-core CPUs when scanning big file collections. </div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<div class="separator" style="clear: both; text-align: center;">
<iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/JyS3bnGBErw?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div>
</div>
<div style="text-align: justify;">
</div>
<div style="text-align: justify;">
<br />
<b>Download Here ::</b> <a href="http://yara-project.googlecode.com/files/yara-1.7.tar.gz" target="_blank">Yara 1.7.tar.gz</a> (for Linux)<br />
                               <a href="http://yara-project.googlecode.com/files/yara-1.7-win32.zip" target="_blank">Yara 1.7 win32.zip</a> (for Windows)</div>
<div style="text-align: justify;">
<b>Source :: </b>http://code.google.com/p/yara-project/ </div>
</div>

Yara (Malware Identification and Classification) :: Tools

YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA you can create descriptions ...

Web-Sorrow (Web Security Scanner) :: Tools

<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
<img alt="web-sorrow logo toolwar" border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhnOHBqWrrM6YdiWnHWuSXu1hw29NNTVhSAjq4r1DQIgKad8aYZSfNdcOvACdnf8mUPaNbFAYLbM1Tt853Lb_tpG0qgN_XQLCNnSFMsuNr8A1JT216rUO42Z3DHdJwp6-OoBk1VmU4cdoRt/s1600/websorrow+logo+toolwar.jpg" title="web-sorrow logo toolwar" /></div>
<div style="text-align: justify;">
<b>Web-Sorrow </b>is a<span itemprop="description"> <i>versatile security scanner</i> for the <i>information disclosure and fingerprinting</i> phases of pentesting.</span><b>Web-Sorrow</b> is a perl based tool for misconfiguration, version detection,   enumeration,  and server information scanning. It's entirely focused  on Enumeration and collecting Info  on the target server. <b>Web-Sorrow</b> is a  "safe to run" program, meaning it is not  designed to be an exploit or  perform any harmful attacks. </div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<span style="font-size: large;">Basic overview of capabilities:</span></div>
<ul style="text-align: justify;">
<li><b>Web Services:</b> a CMS and it's version number, Social media widgets and buttons, Hosting provider, CMS plugins, and favicon fingerprints.</li>
<li><b>Authentication areas:</b> logins, admin logins, email webapps.</li>
<li><b>Bruteforce:</b> Subdomains, Files and Directories.</li>
<li><b>Stealth:</b> with -ninja you can gather valuable info on the target with as few as 6 requests, with -shadow you can request pages via google cache instead of from the host.</li>
<li><b>AND MORE:</b> Sensitive files, default files, source disclosure, directory indexing, banner grabbing (see below for full capabilities) </li>
</ul>
<div class="separator" style="clear: both; text-align: center;">
<iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/1n1zKEi6BF8?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div>
<br />
<b>Download Here :: </b><a href="http://web-sorrow.googlecode.com/files/Web-Sorrow_v1.5.0FINAL%28patched_version%29.zip" target="_blank">Web-Sorrow 1.5.0.zip</a><br />
<b>Source ::</b> http://code.google.com/p/web-sorrow/<br />
<ul style="text-align: justify;">
</ul>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
</div>
</div>

Web-Sorrow (Web Security Scanner) :: Tools

Web-Sorrow is a versatile security scanner for the information disclosure and fingerprinting phases of pentesting. Web-Sorrow is a p...

RAFT (Response Analysis and Further Testing Tool) :: Tools

<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
<img alt="raft screenshot toolwar" border="0" height="234" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEimx_ZNEI51-G8nYISMge30CIKHECpzubYpi9piek4_sk1Vx-fycO9fyXjDqnJonrPsM9JtQnHlVYfLJherJ3izDMfofh8e8Io_SK8VHPH0kXza5Dzz389c2CdCyGPhWSsUJwgEhDhOo7Fi/s320/raft+logo+toolwar.png" title="raft screenshot toolwar" width="320" /></div>
<div style="text-align: justify;">
<span style="font-family: Arial,Helvetica,sans-serif;"><b>RAFT</b> is a<i> Response Analysis and Further Testing Tool</i>. <b>RAFT</b> is a testing tool for the identification of vulnerabilities in 
web applications. <b>RAFT</b> is a suite of tools that utilize common shared 
elements to make testing and analysis easier. The tool provides 
visibility in to areas that other tools do not such as various client 
side storage.<b> RAFT</b> uses markup to create templates for fuzz testing. </span></div>
<div style="text-align: justify;">
<b><br /></b></div>
<div style="text-align: justify;">
<b>Download Here :: </b><a href="http://raft.googlecode.com/files/RAFT-3.0.1-win32-setup.exe" target="_blank">RAFT 3.0.1.exe</a></div>
<div style="text-align: justify;">
<b>Source ::</b> http://code.google.com/p/raft/</div>
</div>

RAFT (Response Analysis and Further Testing Tool) :: Tools

RAFT is a Response Analysis and Further Testing Tool . RAFT is a testing tool for the identification of vulnerabilities in web appli...

Subscribe to: Posts ( Atom )