Scalpel (Data Carving / Forensics) :: Tools

<div style="text-align: justify;"> <div class="separator" style="clear: both; text-align: center;"> <img alt="Scalpel File Carving" border="0" height="401" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj3VpA7fvHWtvtTu1En4hyKfrQQ-P789lCCdh2-IYD099ppsXp5Vhruf9DLfp_3pcxvEU9irpL6sjH0wpQQua8wSJVqplQItpzc4tlOPDG__ydIAUTBDybUKBMBHnVX60mxAi3pbZ0zZSJD/s1600-rw/Scalpel+Forensics.jpg" title="Scalpel File Carving" width="640" /></div> <br /> <b>Scalpel</b> is a <b>file carving and indexing application</b> that runs on <a href="http://www.toolwar.com/search/label/Linux" target="_blank">Linux</a> and <a href="http://www.toolwar.com/search/label/Windows" target="_blank">Windows</a>.  The first version of <b>Scalpel</b>, released in 2005, was based on <a href="http://www.toolwar.com/2013/11/foremost-tools.html" target="_blank">Foremost</a> 0.69. There have been a number of internal releases since the last public release, 1.60, primarily to support our own research.  The newest public release v2.0, has a number of additional features, including:<br /> <ul> <li>Minimum carve sizes.</li> <li>Multithreading for quicker execution on multicore CPUs.</li> <li>Asynchronous I/O that allows disk operations to overlap with pattern matching--this results in a substantial performance improvement.</li> <li>Regular expression support for headers/footers.</li> <li>Embedded header/footer matching for better processing of structured file types that may contain embedded files.</li> <li>For advanced users, support for massively-threaded execution on Graphics Processing Units (GPUs).  This feature is available only on Linux and requires installation of the NVIDIA CUDA SDK, modification of scalpel.h to enable the GPU threading mode, and compilation with the CUDA toolchain.  Our implementation also requires an NVIDIA GPU with compute capability >= 1.2, so older CUDA-capable cards probably won't work.  The NVIDIA GTX 260 is relatively inexpensive and powerful and has the appropriate compute capability.  The GPU-enhanced version of Scalpel is able to do preview carving at rates that exceed the disk bandwidth of most file servers, so for big jobs, it may be worth the extra effort required to use this feature.  Note that regular expression-based headers and footers are NOT currently supported when GPU acceleration is in use!  We might address this in a future release.</li> </ul> <br /> <b>Scalpel</b> performs <a href="http://www.toolwar.com/search/label/Carving" target="_blank">file carving</a> operations based on patterns that describe particular file or data fragment "types".  These patterns may be based on either fixed binary strings or regular expressions. A number of default patterns are included in the configuration file included in the distribution, <b>"scalpel.conf"</b>.  The comments in the configuration file explain the format of the file carving patterns supported by <b>Scalpel</b>.<br /> <br /> Important note: The default configuration file, "scalpel.conf", has all supported file patterns commented out--you must edit this file before running Scalpel to activate some patterns.  Resist the urge to simply uncomment all file carving patterns; this wastes time and will generate a huge number of false positives.  Instead, uncomment only the patterns for the file types you need.<br /> <br /> <b>Scalpel </b>options are described in the <b>Scalpel</b> man page, "scalpel.1". You may also execute Scalpel w/o any <a href="http://www.toolwar.com/search/label/CLI" target="_blank">command line</a> arguments to see a list of options.<br /> <br /> NOTE: Compilation is necessary on Unix platforms and on <a href="http://www.toolwar.com/search/label/Mac" target="_blank">Mac OS X</a>.  For Windows platforms, a precompiled scalpel.exe is provided.  If you do wish to recompile <b>Scalpel</b> on Windows, you'll need a mingw (gcc) setup. Scalpel will not compile using Visual Studio C compilers.  Note that our compilation environment for <a href="http://www.toolwar.com/search/label/Windows" target="_blank">Windows</a> is currently 32-bit; we haven't tested on the 64-bit version of mingw, but will address this int the future.<br /> <br /> <b>Other Supportive Platforms :: </b></div> <div style="text-align: justify;"> <br /> We are not currently supporting <b>Scalpel</b> on <a href="http://www.toolwar.com/search/label/Unix" target="_blank">Unix</a> variants other than Linux. Go ahead and try a ./configure and make and see what happens, but be sure to do thorough testing before using <b>Scalpel</b> in production work.  If you are interested in supporting a version of <b>Scalpel </b>on an alternate platforms, please contact us.  If you are interested in supporting a GPU-enhanced version of Scalpel on Windows, we are also interesting in hearing from you.<br /> <br /> <b>Limitations ::</b> <br /> <br /> Carving Windows physical and logical device files (e.g., \\.\physicaldrive0 or \\.\c:) isn't currently supported because it requires us to rewrite some portions of <b>Scalpel </b>to use Windows file I/O functions rather than standard Unix calls.  This may be supported in a future release.<br /> <br /> Block map features are currently disabled, as we are rewriting this subsystem to enhance interoperability with the <a href="http://www.toolwar.com/2014/01/the-sleuth-kit-tsk-forensics-framework.html" target="_blank">Sleuthkit</a>.  An improved version of the block map features will return in a subsequent release. The -s command line option ("skip") has been removed and will be replaced with a more robust facility in the next major release.<br /> <br /> <br /> <b>Dependencies ::</b><br /> <br /> Scalpel uses the POSIX threads library.  On Win32, Scalpel is distributed with the Pthreads-win32 - POSIX Threads Library for Win32, which is Copyright(C) 1998 John E. Bossom and Copyright(C) 1999,2005 by Pthreads-win32 contributors.  This library is licensed under the LGPL.<br /> <br /> Scalpel for Win32 uses the tre regular expression library and is distributed with tre-0.7.5, which is licensed under the LGPL.</div> <div style="text-align: justify;"> </div> <div style="text-align: justify;"> <h3> Tutorials :: </h3> <b>COMPILE INSTRUCTIONS ON SUPPORTED PLATFORMS :: </b><br /> <b>Linux/Mac OS X ::</b> <br /> <div style="text-align: justify;"> <span style="font-family: "Courier New",Courier,monospace;">./configure and then make</span><br /> <br /> <b>Windows :: </b> </div> cd to src directory and then:<br /> <span style="font-family: "Courier New",Courier,monospace;">mingw32-make -f Makefile.win</span><br /> <br /> and enjoy.  If you want to install the binary and man page in a more permanent place, just copy "scalpel" (or "scalpel.exe") and "scalpel.1" to appropriate locations, e.g., on Linux, "/usr/local/bin" and "/usr/local/man/man1", respectively.  On Windows, you'll also need to copy the pthreads and tre regular expression library dlls into the same directory as "scalpel.exe".<br /> <br /> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/5Z9JsBazOdw?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3> Download ::</h3> </div> <div style="text-align: justify;"> <b>Linux | Windows | Mac :: </b><a href="https://github.com/sleuthkit/scalpel/archive/master.zip" target="_blank">Scalpel</a> (.zip)<b> </b></div> <div style="text-align: justify;"> <b>Official Website :: </b> <a href="https://github.com/sleuthkit/scalpel">https://github.com/sleuthkit/scalpel</a></div>

Scalpel (Data Carving / Forensics) :: Tools

Scalpel is a file carving and indexing application that runs on Linux and Windows .  The first version of Scalpel , released in 2005,...

Read more »

Bulk Extractor (Computer Forensics) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <img alt="Bulk Extractor" border="0" height="267" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjSwFRjzP4nYzs-ILiilqCBkm5oZiif74oCtqJU8AR5h2mTI_uHT4qyVykTzAKntroljTwfaPMVl2vcJLfpgcd6GaTRTidtiwi8dgXrG0Sp6F0pMD2_DCiaA94q7R02Bz4t8-nz_dhg07WE/s1600-rw/computer-forensic-analysis.jpg" title="Bulk Extractor" width="400" /></div> <div style="text-align: justify;"> <b>Bulk Extractor</b> is a <b>computer forensics tool</b> that scans a disk image, a file, or a directory of files and extracts useful information without parsing the file system or file system structures. The results can be easily inspected, parsed, or processed with automated tools. <b>Bulk Extractor</b> also created a histograms of features that it finds, as features that are more common tend to be more important. The program can be used for law enforcement, defense, intelligence, and <a href="http://www.toolwar.com/search/label/Forensics" target="_blank">cyber-investigation</a> applications. </div> <div style="text-align: justify;"> bulk_extractor is distinguished from other forensic tools by its speed and thoroughness. Because it ignores file system structure, <b>Bulk Extractor</b> can process different parts of the disk in parallel. In practice, the program splits the disk up into 16MiByte pages and processes one page on each available core. This means that 24-core machines process a disk roughly 24 times faster than a 1-core machine. <b>Bulk Extractor</b> is also thorough. That’s because <b>Bulk Extractor</b> automatically detects, decompresses, and recursively re-processes compressed data that is compressed with a variety of algorithms. Our <a href="http://www.toolwar.com/search/label/Testing" target="_blank">testing</a> has shown that there is a significant amount of compressed data in the unallocated regions of file systems that is missed by most <a href="http://www.toolwar.com/search/label/Forensics" target="_blank">forensic tools</a> that are commonly in use today. </div> <div style="text-align: justify;"> Another advantage of ignoring file systems is that <b>Bulk Extractor</b> can be used to process any digital media. We have used the program to process hard drives, SSDs, optical media, camera cards, <a href="http://www.toolwar.com/search/label/Phone" target="_blank">cell phones</a>, network packet dumps, and other kinds of digital information. </div> <h3 style="text-align: justify;"> Tutorials ::</h3> <div style="text-align: justify;"> <span style="font-family: inherit;"><span style="font-size: small;"><b>Compiling for MacOS or Linux</b> :: </span></span></div> <div style="text-align: justify;"> <span style="font-family: inherit;"><span style="font-size: small;">From the downloaded source directory run bootstrap.sh, configure and make: </span></span> </div> <ul style="text-align: justify;"> <li><span style="font-family: "Courier New",Courier,monospace;">$ cd bulk_extractor </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ sh bootstrap.sh </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ sh configure </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ make </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ sudo make install </span></li> </ul> <div style="text-align: justify;"> <b>Compiling for Windows :: </b></div> <div style="text-align: justify;"> There are three ways to compile for Windows: </div> <div style="text-align: justify;"> 1. Cross-compiling from a Linux or Mac system with mingw. </div> <div style="text-align: justify;"> 2. Compiling natively on Windows using mingw. </div> <div style="text-align: justify;"> 3. Compiling natively on Windows using cygwin (untested)</div> <div style="text-align: justify;"> <br /></div> <div style="text-align: justify;"> <b>Cross-compiling for Windows using Debian Testing (wheezy) or Ubuntu 12.04 LTS (with mingw) :: </b></div> <div style="text-align: justify;"> You will need to install mingw-w64 and zlib-dev: </div> <ul style="text-align: justify;"> <li><span style="font-family: "Courier New",Courier,monospace;">$ sudo apt-get update </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ sudo apt-get upgrade </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ sudo apt-get -y install mingw-w64 </span></li> </ul> <div style="text-align: justify;"> Next, download zlib from zlib.net </div> <ul style="text-align: justify;"> <li><span style="font-family: "Courier New",Courier,monospace;">$ ./configure --host=i686-w64-mingw32 </span></li> </ul> <div style="text-align: justify;"> This allows the cross-compiling of the 64-bit and the 32-bit bulk_extractor.exe, although we do not recommend running the 32-bit version. </div> <div style="text-align: justify;"> Now you are ready to compile: </div> <ul style="text-align: justify;"> <li><span style="font-family: "Courier New",Courier,monospace;">$ git clone --recursive https://github.com/simsong/bulk_extractor.git </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ cd bulk_extractor </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ sh bootstrap.sh </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ mingw64-configure</span></li> </ul> <div style="text-align: justify;"> <br /></div> <div style="text-align: justify;"> <b>Installing on a Linux/MacOS/Mingw system :: </b></div> <ul style="text-align: justify;"> <li><span style="font-family: "Courier New",Courier,monospace;">$ ./configure </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ make </span></li> <li><span style="font-family: "Courier New",Courier,monospace;">$ sudo make install  </span></li> </ul> <div style="text-align: justify;"> <b>Usages :: </b> </div> <div style="text-align: justify;"> To get started and send an extract of image.raw to OUTPUT, use this command: </div> <ul style="text-align: justify;"> <li><span style="font-family: "Courier New",Courier,monospace;">$ /usr/local/bin/bulk_extractor -o OUTPUT image.raw </span> </li> </ul> <div style="text-align: justify;"> <b>For more & Troubleshooting :: </b><a href="https://github.com/simsong/bulk_extractor" target="_blank">Click Here</a><br /> </div> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/wTBHM9DeLq4?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <div style="text-align: justify;"> </div> <h3 style="text-align: justify;"> Download ::</h3> <div style="text-align: justify;"> <b>Linux | Mac | Windows :: </b><a href="https://github.com/simsong/bulk_extractor/archive/master.zip" target="_blank">Bulk Extractor</a> (tarball)<b> | </b><a href="http://digitalcorpora.org/downloads/bulk_extractor/bulk_extractor-1.4.1-windowsinstaller.exe" target="_blank">Bulk Extractor</a> (.exe)<b> | </b><a href="http://digitalcorpora.org/downloads/bulk_extractor/bulk_extractor-1.4.4.tar.gz" target="_blank">Bulk Extractor</a> (.tar.gz)<b> </b></div> <div style="text-align: justify;"> <b>Official Website :: </b><a href="https://github.com/simsong/bulk_extractor">https://github.com/simsong/bulk_extractor</a></div>

Bulk Extractor (Computer Forensics) :: Tools

Bulk Extractor is a computer forensics tool that scans a disk image, a file, or a directory of files and extracts useful information ...

Read more »

AndiParos (Web Application Security Assessments) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjH1vpXX0DjZZItydH0KB9zNnfXlCbRkY7UWHW5FiqbE4Hx-kZMJEJs4iZIKQXj74FOKOYKrBbA0ws0u1Dw5qCx02GfzGD3M8_BRJhHOetEmnneVAQP2WANvMYpwj_5WJdX8W1M8Ndcsq2S/s1600/Andiparos_Screenshot.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="AndiParos Screenshot" border="0" height="307" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjH1vpXX0DjZZItydH0KB9zNnfXlCbRkY7UWHW5FiqbE4Hx-kZMJEJs4iZIKQXj74FOKOYKrBbA0ws0u1Dw5qCx02GfzGD3M8_BRJhHOetEmnneVAQP2WANvMYpwj_5WJdX8W1M8Ndcsq2S/s1600-rw/Andiparos_Screenshot.png" title="AndiParos Screenshot" width="400" /></a></div> <div style="text-align: justify;"> <b>Andiparos</b> is a fork of the famous <a href="http://www.toolwar.com/2013/09/paros-proxy-tools.html" rel="" target="_blank">Paros Proxy</a>. It is an open source <b>web application security assessment tool</b> that gives <a href="http://www.toolwar.com/search/label/Penetration" target="_blank">penetration</a> testers the ability to spider websites, analyze content, intercept and modify requests, etc. </div> <div style="text-align: justify;"> The advantage of <b>Andiparos</b> is mainly the support of Client Certificates on Smartcards. Moreover it has several small interface enhancements, making the life easier for penetration testers... </div> <div style="text-align: justify;"> Features: </div> <ul style="text-align: justify;"> <li>Smartcard support </li> <li>BeanShell support </li> <li>History Filter (URLs) </li> <li>Passive Scanner </li> <li>Advanced search functionality </li> <li>MultiTags for request/response </li> <li>Mark Request/Response </li> <li>Better<a href="http://www.toolwar.com/search/label/Mac" target="_blank"> Mac OS X</a> integration </li> <li>other nice enhancements... </li> </ul> <h3> Tutorials ::</h3> <b>Wiki ::</b> <a href="https://code.google.com/p/andiparos/w/list" target="_blank">Click Here</a>  <br /> <h3> Download ::</h3> <b>Linux | Windows | Mac :: </b><a href="https://code.google.com/p/andiparos/downloads/detail?name=Andiparos-1.0.6.zip" target="_blank">Andiparos v1.0.6</a> (.zip) | <a href="https://code.google.com/p/andiparos/downloads/detail?name=Andiparos-1.0.6-Installer.exe" target="_blank">Andiparos v1.0.6</a> (.exe) | <a href="https://code.google.com/p/andiparos/downloads/detail?name=Andiparos-v1.0.6.dmg" target="_blank">Andiparos v1.0.6</a> (.dmg) <br /> <b>Source Website :: </b><a href="https://code.google.com/p/andiparos/">https://code.google.com/p/andiparos/</a>

AndiParos (Web Application Security Assessments) :: Tools

Andiparos is a fork of the famous Paros Proxy . It is an open source web application security assessment tool that gives penetration ...

Read more »

XVI32 (Hex Editor) :: Tools

<div style="text-align: justify;"> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhfKbk21vbvXwrLz_cmg0bxQMruPCPz2nvYnXxCk0sGxdW_whra8hYD4-XctyMjpvphrhLmUTc5-BXdHG-0e4EvoZxnwCbNAiK9EGQ3-83G9vab2BkutNSQZnQsPXFbnxtipbJvB2WVb9Rw/s1600/XVI32+Hex+Editor+Screenshot.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="XVI32 Hex Editor Screenshot" border="0" height="265" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhfKbk21vbvXwrLz_cmg0bxQMruPCPz2nvYnXxCk0sGxdW_whra8hYD4-XctyMjpvphrhLmUTc5-BXdHG-0e4EvoZxnwCbNAiK9EGQ3-83G9vab2BkutNSQZnQsPXFbnxtipbJvB2WVb9Rw/s1600-rw/XVI32+Hex+Editor+Screenshot.gif" title="XVI32 Hex Editor Screenshot" width="400" /></a></div> </div> <div style="text-align: justify;"> <span style="font-family: inherit;"><span style="font-size: small;"><b>XVI32</b> is a freeware hex editor running under <a href="http://www.toolwar.com/search/label/Windows" target="_blank">Windows</a> 9x/NT/2000/XP/Vista/7. The name <b>XVI32</b> is derived from <i>XVI</i>, the roman notation for the number 16. XVI32 and all of its components are developed by myself. </span></span></div> <div style="text-align: justify;"> <span style="font-family: inherit;"><span style="font-size: small;">The current release 2.55 is available since June 26, 2012. It comes with a complete online help and requires only 1.02 MB of hard disk space. There is no setup program needed - just unzip the downloaded archive to your hard disk! <b>XVI32</b> doesn't write any data to your registry. </span></span></div> <h2 style="text-align: justify;"> <span style="font-family: inherit;"><span style="font-size: small;">Features</span></span></h2> <div style="text-align: justify;"> <span style="font-family: inherit;"><span style="font-size: small;"> <b>XVI32</b> has the following main features. Especially note the <b>highlighted</b> advantages of XVI32. </span></span></div> <ul style="text-align: justify;"> <li><span style="font-family: inherit;"><span style="font-size: small;">XVI32 is a <b>portable application</b>, i.e. no setup program is needed, you can run <b>XVI32</b> from your <a href="http://www.toolwar.com/search/label/USB" target="_blank">USB</a> stick, no data is written to the registry </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>data inspector</b> to view decoded numbers (see screen shot; can be turned off). </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Has <b>built-in script interpreter</b>. </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Easily works with huge files.</b> Try to open a 60 MB sized text file with some other hex editor (not to speak about Wordpad), then use XVI32... If you don't have such a huge text file, use my <a href="http://www.toolwar.com/search/label/Tools" target="_blank">freeware tool</a> RndFile to create one </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>XVI32</b> allows to edit files <b>up to 2 GB</b> (enough virtual memory provided, of course) </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">For your convenience, <b>XVI32 stores settings</b> and last used search strings etc. in XVI32.INI file </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Progress indication in percent</b> for most operations </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">You can <b>abort nearly all operations</b> (reading/writing files, search, replace, print...) </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Display of both text (ASCII/ANSI) and hexadecimal representation </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Two synchronous cursors</b> in text and hex area </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Fully resizeable window (change number of rows and columns) </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Font and font size adjustable </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Overwrite or <b>insert</b> characters </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Insert text or hex string <b>n times</b></span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Switch byte offset (address) of first byte between <b>0 or 1</b> to examine also record structure of plain text files </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Search text or hex string</b>, e.g. find "this text" or find "0D 0A" </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Simplified search for Unicode Latin (UTF-16) strings</b></span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Search optionally with joker (wildcard) char</b> that will match any character, e.g. find "A.C" or "00 2E 2E 00" where "." = "2E" (user-defined) stands for any character </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Fast searching algorithm <b>(Quicksearch)</b> for <b>both</b> search directions (down/up) </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Count</b> occurences of text or hex string </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Replace</b> text or hex string, e.g. replace "0D 0A" by "0A" or replace "0D 0A" by text "EOL" </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Extremely fast "replace all"</b> mode (if needed, additional memory is allocated <i>beforehead</i>, not at every single replacing operation) </span></span></li> <li><span style="font-family: inherit;"><span style="font-size: small;">Menu item <b><i>Shredder data</i></b> to overwrite all bytes of a file with binary zeroes </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Auto-fill</b> feature to copy bytes from current address into input field for hex string using right arrow key </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Character conversion using self-defined character table</b></span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Easy <b>converting of text to hex string</b> in dialogs (e.g. "abc" -> "61 62 63") </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Decoding and encoding of 1, 2, 4, and 8 byte integers or 4/8 byte floats</b> in 2 possible byte orders </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Bit manipulation</b> (view or set bits) </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Open file in <b>Read Only Mode</b> (e.g. if opened by another application or to avoid unintentional modifications) </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Insert file contents</b> into file </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Write block to file</b></span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Copy, move or delete block </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Clipboard support </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Goto address <b>(absolute or relative up/down)</b></span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Up to <b>9 named bookmarks</b></span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Enter jump width and jump up/down <b>(useful for files with fixed record length)</b></span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Patch BORLAND PASCAL 7.0 EXE files</b> for execution on processors > 200 MHz </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;"><b>Printing with preview</b> or print to file </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Simplified search for Unicode Latin (UTF-16) strings </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Command "Reload" to open current file again </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">Easily access most recently used files </span></span> </li> <li><span style="font-family: inherit;"><span style="font-size: small;">And last, but not least: <b>XVI32 is free!</b></span></span> </li> </ul> <h3 style="text-align: justify;"> <span style="font-family: inherit;"><span style="font-size: small;">Tutorials ::</span></span></h3> <div style="text-align: justify;"> <span style="font-size: small;"> <span style="font-weight: normal;"><b>Installation :: </b></span></span></div> <h3 style="text-align: justify;"> <span style="font-size: small;"><span style="font-weight: normal;">You don't need to execute a setup programm writing obscure data to your registry or updating DLLs in your Windows system folder. Simply proceed as follows: </span><ol> <li><span style="font-weight: normal;">Create a directory on your hard disk, e.g. C:\Program Files\XVI32</span> </li> <li><span style="font-weight: normal;">Unzip the downloaded archive xvi32.zip completely into this directory</span> </li> <li><span style="font-weight: normal;">Run XVI32.EXE </span> </li> </ol> </span></h3> <span style="font-size: small;"><b>Screenshots :: </b><a href="http://www.chmaas.handshake.de/delphi/freeware/xvi32/xvi32.htm#screenshots" target="_blank">Click Here</a> </span><br /> <b>Video Tutorials ::</b> <a href="https://www.youtube.com/watch?v=MLRayJkJUCQ" target="_blank">Click Here</a><br /> <h3 style="text-align: justify;"> <span style="font-size: small;">Download ::</span></h3> <div style="text-align: justify;"> <span style="font-family: inherit;"><b><span style="font-size: small;">Windows :: </span></b><span style="font-size: small;"><a href="http://www.handshake.de/user/chmaas/delphi/download/xvi32.zip" target="_blank">XVI32</a> (.zip)</span></span></div> <div style="text-align: justify;"> <span style="font-family: inherit;"><span style="font-size: small;"><b>Official Website :: </b><a href="http://www.chmaas.handshake.de/delphi/freeware/xvi32/xvi32.htm">http://www.chmaas.handshake.de/delphi/freeware/xvi32/xvi32.htm</a></span></span></div>

XVI32 (Hex Editor) :: Tools

XVI32 is a freeware hex editor running under Windows 9x/NT/2000/XP/Vista/7. The name XVI32 is derived from XVI , the roman notation ...

Read more »

KisMAC (Sniffer/Scanner for Mac OS X) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <img alt="KisMAC Logo" border="0" height="277" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhT0hq_xqF0S3TgubdqI2kXMyQJdIa4Xw5tz6EqhN_X9lUnO1W1Dy4wjcwJ9tMbIWnyC8-GYuHFmw13erY5ILu7_KOBlGEksaYGYIK-_qu-pDLXXY2SdMuEAG8TXkP4qSN0eOa4tJo6OGPl/s1600-rw/kisMAC+logo.png" title="KisMAC Logo" width="320" /></div> <div style="text-align: justify;"> <b>KisMAC</b> is a popular <b>wireless stumbler for Mac OS X</b> offers many of the features of its namesake <a class="local" href="http://www.toolwar.com/2013/09/kismet-tools.html" target="_blank">Kismet</a>, though the codebase is entirely different. Unlike console-based Kismet, <b>KisMAC</b> offers a pretty <a href="http://www.toolwar.com/search/label/GUI" target="_blank">GUI</a> and was around before Kismet was ported to OS X. It also offers mapping, Pcap-format import and logging, and even some decryption and deauthentication attacks.</div> <div style="text-align: justify;"> <br /></div> <div style="text-align: justify;"> <b>KisMAC</b> is an open-source and free <a href="http://www.toolwar.com/search/label/Sniffer" target="_blank">sniffer</a>/<a href="http://www.toolwar.com/search/label/Scanner" target="_blank">scanner</a> application for <a href="http://www.toolwar.com/search/label/Mac" target="_blank">Mac OS X</a>. It has an advantage over MacStumbler / iStumbler / <a href="http://www.toolwar.com/2013/09/netstumbler-tools.html" target="_blank">NetStumbler</a> in that it uses monitor mode and passive scanning. </div> <div style="text-align: justify;"> KisMAC supports many third party <a href="http://www.toolwar.com/search/label/USB" target="_blank">USB</a> devices: Intersil Prism2, Ralink rt2570, rt73, and Realtek rtl8187 chipsets. All of the internal AirPort hardware is supported for scanning. </div> <div style="text-align: justify;"> The rest of this wiki assumes you are prepared for advanced topics and know what you are doing with your system. </div> <h3 id="Features" style="text-align: justify;"> Features ::</h3> <ul style="text-align: justify;"> <li>Reveals hidden / cloaked / closed SSIDs </li> <li>Shows logged in clients (with MAC Addresses, IP addresses and signal strengths) </li> <li>Mapping and GPS support </li> <li>Can draw area maps of network coverage </li> <li>PCAP import and export </li> <li>Support for 802.11b/g </li> <li>Different attacks against encrypted networks </li> <li>Deauthentication attacks </li> <li>AppleScript-able </li> <li>Kismet drone support (capture from a Kismet drone) </li> </ul> <h3 id="Supportedhardwarechipsets" style="text-align: justify;"> Supported Hardware Chipsets :: </h3> <ul style="text-align: justify;"> <li>Apple AirPort and AirPort Extreme (dependent upon Apple's drivers) </li> <li>Intersil Prism 2, 2.5, 3 USB devices </li> <li>Ralink rt2570 and rt73 USB devices </li> <li>Realtek RTL8187L USB (such as the Alfa AWUS036H, which does not work on Mac OS 10.6.7 or later) </li> </ul> <h3 id="Cryptosupport" style="text-align: justify;"> Crypto Support :: </h3> <ul style="text-align: justify;"> <li>Bruteforce attacks against LEAP, WPA and WEP </li> <li>Weak scheduling attack against WEP </li> <li>Newsham 21-bit attack against WEP </li> </ul> <h3 style="text-align: justify;"> Tutorials :: </h3> <div style="text-align: justify;"> <b>Wiki ::</b> <a href="http://trac.kismac-ng.org/" target="_blank">Click Here</a></div> <div style="text-align: justify;"> <b>Forum ::</b> <a href="http://forum.kismac-ng.org/" target="_blank">Click Here </a></div> <div style="text-align: justify;"> <br /></div> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/lBGN5OGCPgI?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3 style="text-align: justify;"> Download :: </h3> <div style="text-align: justify;"> <b>Mac :: </b><a href="http://update.kismacmirror.com/binaries/KisMAC-0.3.3.dmg" target="_blank">KisMAC v0.3.3</a> (.dmg)<b> </b></div> <div style="text-align: justify;"> <b>Official Website ::  </b><a href="http://kismac-ng.org/">http://kismac-ng.org/</a></div>

KisMAC (Sniffer/Scanner for Mac OS X) :: Tools

KisMAC is a popular wireless stumbler for Mac OS X offers many of the features of its namesake Kismet , though the codebase is entirel...

Read more »

FS-NyarL (Pentesting and Forensics) :: Framework

<div class="separator" style="clear: both; text-align: center;"> <img alt="FS-NyarL Logo" border="0" height="400" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjyvqhfIV1vfEKDsDPoTq-IY5y6kdJuGAIfRzvtSPL90-6xtK2hDdppU1kPwgvztn_cudPZFcOqOalRYynOeDEflS5wufjqugLOyzJNrbZhqLjb34aHNnZuPJhRLZ_SInYW0BFppZeFQqDm/s1600-rw/FS-NyarL+Logo.jpg" title="FS-NyarL Logo" width="248" /></div> <div style="text-align: justify;"> <b>NyarL</b> it's Nyarlathotep, a mitological chaotic deity of the writer HP. Lovecraft's cosmogony.  It's represent Crawling Chaos and <b>FS-NyarL</b> it's The <b>Crawling Chaos of Cyber Security</b>. A <a href="http://www.toolwar.com/search/label/Network" target="_blank">network</a> takeover & <a href="http://www.toolwar.com/search/label/Forensics" target="_blank">forensic analysis tool</a> - useful to advanced PenTest tasks & for fun and profit - but use it at your own risk! </div> <ul style="text-align: justify;"> <li>Interactive Console</li> <li>Real Time Passwords Found</li> <li>Real Time Hosts Enumeration</li> <li>Tuned Injections & Client Side Attacks</li> <li>ARP Poisoning & SSL Hijacking</li> <li>Automated HTTP Report Generator</li> </ul> <div style="text-align: justify;"> <b>ATTACKS IMPLEMENTED:</b> </div> <ul style="text-align: justify;"> <li>MITM (Arp Poisoning)</li> <li>Sniffing (With & Without Arp Poisoning)</li> <li>SSL Hijacking (Full SSL/TLS Control)</li> <li>HTTP Session Hijaking (Take & Use Session Cookies)</li> <li>Client Browser Takeover (with Filter Injection in data stream)</li> <li>Browser AutoPwn (with Filter Injection in data steam)</li> <li>Evil Java Applet (with Filter Injection in data stream)</li> <li>DNS Spoofing</li> <li>Port Scanning</li> </ul> <table class="notableborder" style="margin-left: 0px; margin-right: 0px; text-align: left;"><tbody> <tr><td colspan="2"><b>POST ATTACKS DATA OBTAINED:</b><br /> <ul> <li>Passwords extracted from data stream</li> <li>Pcap file with whole data stream for deep analysis</li> <li>Session flows extracted from data stream (Xplico & Chaosreader)</li> <li>Files extracted from data stream</li> <li>Hosts enumeration (IP,MAC,OS)</li> <li>URLs extracted from data stream</li> <li>Cookies extracted from data stream</li> <li>Images extracted from data stream</li> <li>List of HTTP files downloaded extracted from URLs</li> </ul> </td> </tr> <tr><td><b>DEPENDENCIES (aka USED TOOLS):</b><br /> <ul> <li>Chaosreader (already in bin folder)</li> <li><a href="http://www.toolwar.com/2013/11/xplico-tools.html" target="_blank">Xplico</a></li> <li><a href="http://www.toolwar.com/2013/09/ettercap-076-tools.html" target="_blank">Ettercap</a></li> <li>Arpspoof</li> <li>Arp-scan</li> <li>Mitmproxy</li> <li><a href="http://www.toolwar.com/2014/02/nmap-and-zenmap-network-discovery-and.html" target="_blank">Nmap</a></li> <li><a href="http://www.toolwar.com/2013/09/tcpdump-is-network-sniffer-we-all-used.html" target="_blank">Tcpdump</a></li> <li><a href="http://www.toolwar.com/2013/09/beef-browser-exploitation-framework.html" target="_blank">Beef</a></li> </ul> </td> <td><ul> <li><a href="http://www.toolwar.com/2013/10/social-engineering-toolkit-set-tools.html" target="_blank">SET</a></li> <li><a href="http://www.toolwar.com/2013/09/metasploit-framework.html" target="_blank">Metasploit</a></li> <li><a href="http://www.toolwar.com/2013/09/dsniff-tools.html" target="_blank">Dsniff</a></li> <li><a href="http://www.toolwar.com/2013/10/technitium-mac-address-changer-v6-tools.html" target="_blank">Macchanger</a></li> <li>Hamster</li> <li>Ferret</li> <li><a href="http://www.toolwar.com/2013/10/p0f-tools.html" target="_blank">P0f</a></li> <li><a href="http://www.toolwar.com/2013/11/foremost-tools.html" target="_blank">Foremost</a></li> <li>SSLStrip</li> <li><a href="http://www.toolwar.com/2014/02/sslsplit-mitm-attack-against-ssltls.html" target="_blank">SSLSplit</a></li> </ul> </td></tr> </tbody></table> <br /> <table class="notableborder" style="margin-left: 0px; margin-right: 0px; text-align: left;"><tbody> <tr><td><h3> Tutorials ::</h3> <b>Screenshots ::  </b><a href="http://www.fulgursecurity.com/en/content/fs-nyarl" target="_blank">Click Here</a> <br /> <h3> Download ::</h3> <b>Linux ::</b> <a href="http://www.fulgursecurity.com/tools/fs-nyarl/FS-NyarL_v1.0-kali.tar.gz" target="_blank">FS-NyarL v1.0</a> (.tar.gz)<br /> <b>Official Website :: </b><a href="http://www.fulgursecurity.com/en/content/fs-nyarl">http://www.fulgursecurity.com/en/content/fs-nyarl</a></td></tr> </tbody></table>

FS-NyarL (Pentesting and Forensics) :: Framework

NyarL it's Nyarlathotep, a mitological chaotic deity of the writer HP. Lovecraft's cosmogony.  It's represent Crawling Chaos...

Read more »

FARADAY (Integrated Penetration Testing IDE) :: Framework

<div style="text-align: justify;"> <div class="separator" style="clear: both; text-align: center;"> <img alt="FARADAY Logo" border="0" height="91" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj03zjrenjfh3-P90KLn_GSw8ONyaQLqXdR6otoyPAiIMj1ETcLzdJpofOdDKILtTGY6U_4FS4zlEyLZEVF0IEjyTWLMkZrm9wa3U-YS1L8K8A1NQO_j0muNmj9wiuSaqph9OyYKddiOc-f/s1600-rw/Faraday-Logo.png" title="FARADAY Logo" width="400" /></div> <b>Faraday</b> introduces a new concept (IPE) <b>Integrated Penetration-Test Environment</b> a multiuser <b>Penetration test IDE</b>. Designed for distribution, indexation and analysis of the generated data during the process of a <a href="http://www.toolwar.com/search/label/Security" target="_blank"> security audit</a>.</div> <div style="text-align: justify;"> The main purpose of <b>Faraday</b> is to re-use the available tools in the community to take advantage of them in a multiuser way.</div> <div style="text-align: justify;"> Design for simplicity, users should feel no difference between their own terminal application and the one included in <b>Faraday</b>. Developed with a specialized set of functionalities that help users improve their own work. Do you remember yourself programming without an IDE? Well, <b>Faraday</b> does the same an IDE does for you when programming, but from the perspective of a <a href="http://www.toolwar.com/search/label/Penetration" target="_blank">penetration test</a>.</div> <div style="text-align: justify;"> <br /> <b>Requirement ::  </b></div> <div style="text-align: justify;"> <a href="http://www.toolwar.com/search/label/Linux" target="_blank">Modern Linux</a> (Tested Debian / Ubuntu * / <a href="http://www.toolwar.com/2013/09/kali-linux-toolwar.html" target="_blank">Kali</a> / <a href="http://www.toolwar.com/2013/09/backtrack-5-r3-distribution.html" target="_blank">Backtrack</a>)</div> <ul style="text-align: justify;"> <li>Python 2.6.x and 2.7.x</li> <li>Qt3</li> <li>CouchDB >= 1.2.0<br /> </li> <li>The following python libs: <ul> <li>mockito </li> <li>couchdbkit </li> <li>whoosh </li> <li>argparse </li> <li>psycopg2</li> <li>IPy</li> <li>requests</li> </ul> <h3> </h3> </li> </ul> <h3 style="text-align: justify;"> Tutorials :: </h3> <div style="text-align: justify;"> <b>Installation :: </b> </div> <div style="text-align: justify;"> Preferably, you can download faraday by cloning the Git repository:</div> <div style="text-align: justify;"> <pre><code>$ git clone https://github.com/infobyte/faraday.git faraday-dev $ cd faraday-dev $ ./install </code></pre> </div> <div style="text-align: justify;"> <br /></div> <div style="text-align: justify;"> <b>Usage :: </b></div> <div style="text-align: justify;"> To get started, simply execute faraday and use the new console to start working in the pentest: </div> <div style="text-align: justify;"> <pre><code>$ ./faraday</code></pre> <pre><code> </code></pre> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/EBz0g6ya7Mg?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> </div> <h3 style="text-align: justify;"> Download :: </h3> <div style="text-align: justify;"> <b>Linux :: </b><a href="https://github.com/infobyte/faraday/archive/master.zip" target="_blank">Faraday</a> (tarball) <b> </b></div> <div style="text-align: justify;"> <b>Source Website :: </b><a href="https://github.com/infobyte/faraday">https://github.com/infobyte/faraday</a></div> <div style="text-align: justify;"> <b>Official Website :: </b><a href="http://www.faradaysec.com/">http://www.faradaysec.com/</a></div>

FARADAY (Integrated Penetration Testing IDE) :: Framework

Faraday introduces a new concept (IPE) Integrated Penetration-Test Environment a multiuser Penetration test IDE . Designed for distrib...

Read more »

Cloud Cracker (Online WPA/WPA2 and Hash Cracker) :: Tools

<div style="text-align: justify;"> <div class="separator" style="clear: both; text-align: center;"> <img border="0" height="360" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiVFL3einLDFs5tDqL8eAuXhoGPJQrptNIIRuTPXL1eIi8qGVslIyvatgz3avdggGXMvql_LWYckXFASVLqyvgKqt8rXQXBwWcXGHS32SSdSewaltZzS7hF8f2Bvzw3wh5yNTrS1vK3ToYD/s1600-rw/password-cracking.jpg" width="640" /></div> </div> <div style="text-align: justify;"> <b>Cloud Cracker</b> is an <a href="http://www.toolwar.com/search/label/Online" target="_blank">online</a> <b>password cracking service</b> for penetration testers and network auditors who need to check the security of WPA protected <a href="http://www.toolwar.com/search/label/Wireless" target="_blank">wireless</a> networks, crack password <a href="http://www.toolwar.com/search/label/Hash" target="_blank">hashes</a> or break document encryption. </div> <div style="text-align: justify;"> <h3> Features :: </h3> </div> <ul style="text-align: justify;"> <li>Ease to use</li> <li>Save money, save time</li> <li>Support WPA/WPA2, NTLM, SHA-512, MD5, MS-CHAPv2 </li> <li>Secure transmission</li> <li>Fast password cracking service</li> </ul> <div style="text-align: justify;"> <b>Online Website ::</b> <a href="https://www.cloudcracker.com/" target="_blank">https://www.cloudcracker.com/ </a></div>

Cloud Cracker (Online WPA/WPA2 and Hash Cracker) :: Tools

Cloud Cracker is an online password cracking service for penetration testers and network auditors who need to check the secu...

Read more »

SIPVicious (Auditing SIP Based VoIP System) :: Tools

<div style="text-align: justify;"><div class="separator" style="clear: both; text-align: center;"><img alt="SIP VoIP " border="0" height="324" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgs5pKQQ6VdyR7URrQT6nS1VVL0igxhRv5L4g9jfkKRkBLjfBegI6eKZANJ63AqMiWYIf8m2YEb8azNj4j9bwx-gCWo_jYM66n1k2GggJOHg0mLwLS0hJ7h7UWskxn3gWk6PAqEtxcvgABJ/s1600-rw/SIP+VoIP.png" title="SIP VoIP " width="640" /></div><b>SVMAP</b> is a part of a suite of tools called <b>SIPVicious</b> and it’s my favorite <a href="http://www.toolwar.com/search/label/Scanner" target="_blank">scanner</a> of choice It can be used to scan identify and fingerprint a single IP or a range of IP addresses. <b>Svmap</b> allows specifying the request method which is being used for scanning, the default method is OPTIONS, it offers debug and verbosity options and even allows scanning the SRV records for SIP on the destination domain. You can use the <b>./svmap –h</b> in order to view all the available arguments </div><div style="text-align: justify;"><b>SIPVicious suite</b> is a set of <a href="http://www.toolwar.com/search/label/Tools" target="_blank">tools</a> that can be used to audit SIP based <a href="http://www.toolwar.com/search/label/VOIP" target="_blank">VoIP systems</a>. It currently consists of four tools: </div><ul style="text-align: justify;"><li>svmap - this is a sip scanner. Lists SIP devices found on an IP range </li> <li>svwar - identifies active extensions on a PBX </li> <li>svcrack - an online password cracker for SIP PBX </li> <li>svreport - manages sessions and exports reports to various formats </li> <li>svcrash - attempts to stop unauthorized svwar and svcrack scans </li> </ul><div style="text-align: justify;">It was tested on the following systems: </div><ul style="text-align: justify;"><li><a href="http://www.toolwar.com/search/label/Linux" target="_blank">Linux </a></li> <li><a href="http://www.toolwar.com/search/label/Mac" target="_blank">Mac OS X </a></li> <li><a href="http://www.toolwar.com/search/label/Windows" target="_blank">Windows </a></li> <li><a href="http://www.toolwar.com/search/label/FreeBSD" target="_blank">FreeBSD 6.2 </a></li> <li>Jailbroken iPhone with python installed </li> </ul><div style="text-align: justify;">If you use it on systems that are not mentioned here please let me know goes it goes. </div><h3 style="text-align: justify;">Tutorials ::</h3><div class="separator" style="clear: both; text-align: center;"><iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/Zp_gzjV8l4c?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div><div style="text-align: justify;"></div><div class="separator" style="clear: both; text-align: center;"><iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/3a7xJeNQfOk?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div><h3 style="text-align: justify;"> </h3><h3 style="text-align: justify;">Download ::</h3><div style="text-align: justify;"><b>Linux | Windows | Mac | FreeBSD :: </b><a href="http://sipvicious.googlecode.com/files/sipvicious-0.2.8.zip" target="_blank">SIPVicious v0.2.8</a> (.zip) | <a href="http://sipvicious.googlecode.com/files/sipvicious-0.2.8.tar.gz" target="_blank">SIPVicious v0.2.8</a> (.tar.gz)<b> </b></div><div style="text-align: justify;"><b>Official Website :: </b> <a href="http://code.google.com/p/sipvicious/">http://code.google.com/p/sipvicious/</a></div>

SIPVicious (Auditing SIP Based VoIP System) :: Tools

SVMAP is a part of a suite of tools called SIPVicious and it’s my favorite scanner of choice It can be used to scan identify and fingerp...

Read more »

VoIPong (VoIP Sniffer and Call Detector) :: Tools

<div class="separator" style="clear: both; text-align: center;"><img alt="VoIP Hacking " border="0" height="337" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjBxH793kkyuODvT2YM2SvDUf4q_9lL0i3cTdtxNEAo0qVv-QShCchSo0Ehnp75muGHbqnHldC6K2_wNn69CsW7RtQY-YphAkIyGJe1_VtlepwwSyy73nzn1i4ezE1fZdcy-tCJ8QdLUlCp/s1600-rw/VoIP+Hacking.jpg" title="VoIP Hacking " width="640" /></div><div class="style3" style="text-align: justify;"><b>VoIPong</b> is a utility which detects all <b><a href="http://www.toolwar.com/search/label/VOIP" target="_blank">Voice Over IP</a> calls on a pipeline</b>, and for those which are G711 encoded, dumps actual conversation to seperate wave files. It supports SIP, H323, Cisco's Skinny Client Protocol, RTP and RTCP. </div><div class="style3" style="text-align: justify;">It's been written in C language for performance reasons, proved to be running on Solaris, <a href="http://www.toolwar.com/search/label/Linux" target="_blank">Linux</a> and <a href="http://www.toolwar.com/search/label/FreeBSD" target="_blank">FreeBSD</a>; though it's thought to compile and run on other platforms as well. </div><div class="style3" style="text-align: justify;">On a 45 Mbit/sec network traffic, it's been verified that <b>VoIPong</b> successfully detected all <a href="http://www.toolwar.com/search/label/VOIP" target="_blank">VoIP </a>gateways and the VoIP calls. CPU utilization during the run has been found ranging between 66% - 80% on a 256MB RAM, Celeron 1700 Mhz Toshiba notebook. </div><span class="style1"><b>Features :: </b></span><br /> <ul><li class="style2">Produces real .Wav files for direct audio hearing. </li> <li class="style2">Simple, optimized, extandable fast code </li> <li class="style2">The algorithm doesn't depend on signalling but on RTP/RTCP </li> <li class="style2">Detailed logging. (Comfortable for 'cut' and 'cat' operations to produce statistics.) </li> <li class="style2">Powerful management console interface </li> <li class="style2">Easy installation and administration</li> <li class="style2">Easy debugging. </li> </ul><h3 class="style3" style="text-align: justify;">Tutorials ::</h3><b>Users Manual ::</b> <a href="http://www.enderunix.org/voipong/users-manual/" target="_blank">Click Here</a><br />   <br /> <div class="separator" style="clear: both; text-align: center;"><iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/ow1bRp6E8og?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3 class="style3" style="text-align: justify;">Download ::</h3><div class="style3" style="text-align: justify;"><b>Linux :: </b><a href="https://github.com/EnderUNIX/VoIPong/archive/master.zip" target="_blank">VoIPong v2.0</a></div><div class="style3" style="text-align: justify;"><b>Official Website :: </b><a href="http://www.enderunix.org/voipong/">http://www.enderunix.org/voipong/</a></div>

VoIPong (VoIP Sniffer and Call Detector) :: Tools

VoIPong is a utility which detects all Voice Over IP calls on a pipeline , and for those which are G711 encoded, dumps actual conversati...

Read more »

SNMPCheck (SNMP Enumeration) :: Tools

<div style="text-align: justify;"> <div class="separator" style="clear: both; text-align: center;"> <img alt="SNMPCheck" border="0" height="316" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjNQCGr22VHfWJI20ydnqXWT0FpVBP1u6mdLTIESgT_IN6QGduciK1QWIlWG0O__y2nvACefsDE1DFwXrHO973XbWbfbepc3FXB2bD_TX7jy6oZwLrfRXAkd_PCKf9C_28TD-klFE3QJk_P/s1600-rw/SNMPCheck.jpg" title="SNMPCheck" width="400" /></div> <b>SNMPCheck</b> allows you to <b>enumerate the SNMP</b> devices and places the output in a very human readable friendly format. It could be useful for <a href="http://www.toolwar.com/search/label/Penetration" target="_blank">penetration testing</a> or <a href="http://www.toolwar.com/search/label/Monitoring" target="_blank">systems monitoring</a>. Distributed under GPL license and based on "Athena-2k" script by jshaw.</div> <h3 style="text-align: justify;"> Features :: </h3> <div style="text-align: justify;"> SNMPCheck supports the following enumerations:</div> <ul style="text-align: justify;"> <li> contact</li> <li>description</li> <li> detect write access (separate action by enumeration)|</li> <li> devices</li> <li> domain</li> <li> hardware and storage informations</li> <li> hostname</li> <li> IIS statistics</li> <li> IP forwarding</li> <li> listening UDP ports</li> <li> location</li> <li> motd</li> <li> mountpoints</li> <li> network interfaces</li> <li> network services</li> <li> processes</li> <li> routing information</li> <li> software components</li> <li> system uptime</li> <li> TCP connections</li> <li> total memory</li> <li> uptime</li> <li> user accounts</li> </ul> <h3> Tutorials ::</h3> <b>Report Examples :: </b><a href="http://www.nothink.org/codes/snmpcheck/report_windows_xp.txt" target="_blank">Windows XP</a> | <a href="http://www.nothink.org/codes/snmpcheck/report_linux_ubuntu.txt" target="_blank">Linux Ubuntu</a><b><br /></b><br /> <br /> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/RIVV4--m4dU?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3> Download ::</h3> <b>Perl Script :: </b><a href="http://www.nothink.org/codes/snmpcheck/snmpcheck-1.8.pl" target="_blank">SNMPCheck</a> (.pl) <b> </b><br /> <b>Official Website ::</b> <a href="http://www.nothink.org/codes/snmpcheck/">http://www.nothink.org/codes/snmpcheck/</a> <br /> <div class="alert alert-success" style="text-align: justify;"> </div>

SNMPCheck (SNMP Enumeration) :: Tools

SNMPCheck allows you to enumerate the SNMP devices and places the output in a very human readable friendly format. It could be useful ...

Read more »

NBTScan (Scans for Open NETBIOS Name Servers) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjdxS-BqEkVq8gRluzMKok1FYN4f43CO1Nnia5lF4ZTvXelpQ-Z0lC0lJaBxzhpiwFLZgrk16y7re7wk-pbt1ZcUl405HynotcqrIyBXTQdkdqkzndKFNmdELfpOXIW8jXlCv-B8F8Geaxp/s1600/nbtscan+screenshot.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="nbtscan screenshot windows" border="0" height="333" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjdxS-BqEkVq8gRluzMKok1FYN4f43CO1Nnia5lF4ZTvXelpQ-Z0lC0lJaBxzhpiwFLZgrk16y7re7wk-pbt1ZcUl405HynotcqrIyBXTQdkdqkzndKFNmdELfpOXIW8jXlCv-B8F8Geaxp/s1600-rw/nbtscan+screenshot.gif" title="nbtscan screenshot windows" width="400" /></a></div> <div style="text-align: justify;"> <b>nbtscan</b> is a <a href="http://www.toolwar.com/search/label/CLI" target="_blank">command-line tool</a> that scans for open <b>NETBIOS nameservers</b> on a local or remote TCP/IP <a href="http://www.toolwar.com/search/label/Network" target="_blank">network</a>, and this is a first step in finding of open shares. It is based on the functionality of the standard <a href="http://www.toolwar.com/search/label/Windows" target="_blank">Windows tool</a> nbtstat, but it operates on a range of addresses instead of just one. I wrote this <a href="http://www.toolwar.com/search/label/Tools" target="_blank">tool</a> because the existing tools either didn't do what I wanted or ran only on the Windows platforms: mine runs on just about everything.</div> <div style="text-align: justify;"> <b>Windows</b> - The Win32 version of the tool, which works well on Windows 9x, NT and 2000, is available below as nbtscan.exe. It's written in portable C and is less than 40 kbytes, requires no special libraries or DLLs, and is run in an MS-DOS command window. I promise that the tools have no viruses, backdoors, or any other kind of overt bad behavior. I don't promise that there are no bugs. </div> <div style="text-align: justify;"> <b>LINUX</b> - the code works fine on <a href="http://www.toolwar.com/search/label/Linux" target="_blank">Linux</a>, and a version built on Red Hat Linux 6.2 is available as well. I have reports that this binary works on Red Hat Linux 6.0 - 8.0, Debian "woody", and Mandrake 8.1 (we don't think we've found a Red Hat, CentOS, or Fedora system that it didn't run on). </div> <div style="text-align: justify;"> <br /></div> <h3 style="text-align: justify;"> Tutorials ::</h3> <pre class="codeblock">C:\> <b>nbtstat -A 192.168.1.99</b> NetBIOS Remote Machine Name Table Name Type Status --------------------------------------------- XPDEV <00> UNIQUE Registered UNIXWIX <00> GROUP Registered XPDEV <03> UNIQUE Registered XPDEV <20> UNIQUE Registered UNIXWIX <1E> GROUP Registered MAC Address = 00-50-04-6D-50-37</pre> <pre class="codeblock"> </pre> <pre class="codeblock">C:\> <b>nbtscan 192.168.1.0/24</b> 192.168.1.3 MTNDEW\WINDEV SHARING DC 192.168.1.5 MTNDEW\TESTING 192.168.1.9 MTNDEW\WIZ SHARING U=STEVE 192.168.1.99 MTNDEW\XPDEV SHARING </pre> <h3 style="text-align: justify;"> </h3> <h3 style="text-align: justify;"> Download ::</h3> <div style="text-align: justify;"> <b>Windows | Linux :: </b><a href="http://www.unixwiz.net/tools/nbtscan-1.0.35.exe" target="_blank">NBTScan</a> (.exe)<b> | </b><a href="http://www.unixwiz.net/tools/nbtscan-source-1.0.35.tgz" target="_blank">NBTScan</a> (.tgz)</div> <div style="text-align: justify;"> <b>Official Website :: </b><a href="http://www.unixwiz.net/tools/nbtscan.html">http://www.unixwiz.net/tools/nbtscan.html</a></div>

NBTScan (Scans for Open NETBIOS Name Servers) :: Tools

nbtscan is a command-line tool that scans for open NETBIOS nameservers on a local or remote TCP/IP network , and this is a first step ...

Read more »

Maligno (Penetration Testing) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7dM_W5x1h5uszgk0spEosIclT4KmaGO2uPukBWl2ETl36hFooZ0Eb50A3PfpPjjzUqZ2HTI5NHF-L7q4sAxnRD14MGiXgvHkHLi_zCKB5hs8jd0TiUAyaYrsEJ5M4nq67pzu47VcLwRET/s1600/PenTest_Image.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="maligno image" border="0" height="307" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7dM_W5x1h5uszgk0spEosIclT4KmaGO2uPukBWl2ETl36hFooZ0Eb50A3PfpPjjzUqZ2HTI5NHF-L7q4sAxnRD14MGiXgvHkHLi_zCKB5hs8jd0TiUAyaYrsEJ5M4nq67pzu47VcLwRET/s1600-rw/PenTest_Image.png" title="maligno image" width="400" /></a></div> <div style="text-align: justify;"> <b>Maligno</b> is an open source <b>penetration testing tool</b> written in python, that serves <a href="http://www.toolwar.com/2013/09/metasploit-framework.html" target="_blank">Metasploit</a> payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. The shellcode is encrypted with AES and encoded with Base64 prior to transmission.</div> <div style="text-align: justify;"> <br /></div> <h3 style="text-align: justify;"> Tutorials ::</h3> <h3 style="text-align: justify;"> Download ::</h3> <div style="text-align: justify;"> <b>Linux :: </b><a href="http://www.encripto.no/tools/maligno-1.0.tar.gz" target="_blank">Maligno v1.0</a> (.tar.gz)</div> <div style="text-align: justify;"> <b>Official Website :: </b> <a href="http://www.encripto.no/tools/">http://www.encripto.no/tools/</a></div>

Maligno (Penetration Testing) :: Tools

Maligno is an open source penetration testing tool written in python, that serves Metasploit payloads. It generates shellcode with ms...

Read more »

URLCrazy (Check for Mistyped Domain Names) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhyLyWDBoVsveQYb2dGL_PuWnsuRw1nokIuQKd_361RbcaREom6CLNFECgU-VoE2dThMoAADFfaWbckc79TaK68iLysT77s5PgM_l4a921ztqCrvKcHKXbTMWJbRjSlQJx2KE-BebY_gUjr/s1600/URLCrazy+Screenshot.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="URLCrazy Screenshot" border="0" height="339" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhyLyWDBoVsveQYb2dGL_PuWnsuRw1nokIuQKd_361RbcaREom6CLNFECgU-VoE2dThMoAADFfaWbckc79TaK68iLysT77s5PgM_l4a921ztqCrvKcHKXbTMWJbRjSlQJx2KE-BebY_gUjr/s1600-rw/URLCrazy+Screenshot.png" title="URLCrazy Screenshot" width="640" /></a></div> <div style="text-align: justify;"> <b>URLCrazy</b> checks for mistyped domain names of websites. It can detect typo domain squatters and help protect your domain <a href="http://www.toolwar.com/search/label/Security" target="_blank">security</a> by identifying domain names to preemptively register. It generates 15 types of typos, including bitflipped domains, knows over 8,000 common misspellings and over 450 homophones, supports multiple keyboard layouts, checks whether a typo is a valid domain, and can test whether domain typos are in use and estimate the popularity of a typo. Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.</div> <h3 style="text-align: justify;"> Usage </h3> <div style="text-align: justify;"> * Detect typo squatters profiting from typos on your domain name<br /> * Protect your brand by registering popular typos<br /> * Identify typo domain names that will receive traffic intended for another domain<br /> * Conduct phishing attacks during a <a href="http://www.toolwar.com/search/label/Penetration" target="_blank">penetration test</a></div> <h3 style="text-align: justify;"> Features</h3> <div style="text-align: justify;"> * Generates 15 types of domain variants<br /> * Knows over 8000 common misspellings<br /> * Supports cosmic ray induced bit flipping<br /> * Multiple keyboard layouts (qwerty, azerty, qwertz, dvorak)<br /> * Checks if a domain variant is valid<br /> * Test if domain variants are in use<br /> * Estimate popularity of a domain variant<br /> * URLCrazy requires Linux and the Ruby interpreter.</div> <div style="text-align: justify;"> <br /></div> <h3 style="text-align: justify;"> Tutorials ::</h3> <b>Installation :: </b><br /> <span style="font-family: "Courier New",Courier,monospace;">If you are using Ubuntu or Debian try:<br /> $ sudo apt-get install ruby-1.8</span><br />   <br /> <h3> Download ::</h3> <div style="text-align: justify;"> <b>Linux :: </b><a href="http://www.morningstarsecurity.com/downloads/urlcrazy-0.5.tar.gz" target="_blank">URLCrazy v0.5</a> (.tar.gz)</div> <div style="text-align: justify;"> <b>Official Website :: </b><a href="http://www.morningstarsecurity.com/research/urlcrazy">http://www.morningstarsecurity.com/research/urlcrazy</a></div>

URLCrazy (Check for Mistyped Domain Names) :: Tools

URLCrazy checks for mistyped domain names of websites. It can detect typo domain squatters and help protect your domain security by ...

Read more »

Vyatta (Vitrual Router, Firewall and VPN) :: Framework

<div class="block-content content" style="text-align: justify;"> <div style="text-align: justify;"> <br /> <article class="article article-type-page clearfix" id="article-6745" role="article"> <div class="article-content"> <div class="field field-name-body field-type-text-with-summary field-label-hidden"> <div class="field-items"> <div class="field-item even"> <div class="separator" style="clear: both; text-align: center;"> <img alt="Vyatta Logo" border="0" height="320" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhjZ08VeGbo_xXjPTm80en0xpKtHVEsztocx4UkyNj8XcEOklwOsoLpOrOJ9RIi5nqp4y9IlAQ4uUUssHWFzDRGtuowfzaD9ujUFVSNWPnhTLhA8CJf3JethTM45UNfDaSOy-aplzk6SivT/s1600-rw/vyatta+logo.png" title="Vyatta Logo" width="320" /></div> The free community <b>Vyatta Core software(VC)</b> is an award-winning open source <a href="http://www.toolwar.com/search/label/Network" target="_blank"> network</a> operating system providing advanced IPv4 and IPv6 routing, stateful <a href="http://www.toolwar.com/search/label/Firewalls" target="_blank">firewalling</a>, IPSec and SSL OpenVPN, and more. When you add <b>Vyatta</b> to a standard x86 hardware system, you can create an enterprise grade network appliance that easily scales from DSL to 10Gbps. <b>Vyatta</b> is also optimized to run in VMware, Citrix XenServer, Xen, KVM, and Hyper V, providing networking and <a href="http://www.toolwar.com/search/label/Security" target="_blank">security</a> services to <a href="http://www.toolwar.com/search/label/Virutal" target="_blank">virtual machines</a> and cloud computing environments. <b>Vyatta</b> has been downloaded over 1,000,000 times, has a community of hundreds of thousands of registered users and counts dozens of fortune 500 businesses among its commercial customers.<br /> On this site, you'll find all the downloads, <a href="http://www.toolwar.com/search/label/Tools" target="_blank">tools</a>, documentation, and community resources to help you get up and running with your own <b>Vyatta-based</b> system. Ask questions in the Forums. Propose new features and vote on existing proposals. Participate and have fun. We have been working together with our community for over five years to continue to enhance the world's leading software-based network OS.<br /> A commercial version of the <b>Vyatta network OS</b> (Vyatta Subscription Edition) is also available with enterprise-ready management and security product extensions and complete engineering support including proactive notifications of security alerts and software releases as well as priority access to patches & bug fixes.<br /> <b>Vyatta's </b>open, software-based approach to networking has created a complete network OS that can connect and secure physical <a href="http://www.toolwar.com/search/label/Network" target="_blank">networks</a> as well as virtual and cloud computing infrastructures. <b>Vyatta</b> software and appliances offer users a flexible, affordable alternative to proprietary, hardware-based routers, firewalls, and VPN devices.<br /> Vyatta can help you: <br /> <ul> <li>Affordably scale large BGP implementations </li> <li>Keep your network safe with a stateful-inspection firewall </li> <li>Securely connect remote offices with <a href="http://www.toolwar.com/search/label/VPN" target="_blank">VPN </a></li> <li>Scale from DSL to 10-Gbps with a single software package</li> <li>Avoid costly proprietary networking upgrades </li> <li>Run virtualized networking environments in Xen, KVM and VMware </li> <li>Add networking and security to blade servers in your data center </li> <li>Offer cloud based managed security services </li> <li>Add network redundancy regardless of vendor equipment </li> <li>Build your own best-of-breed Branch office solution </li> </ul> <br /> The <b>Vyatta Core</b> is an integration of a number of components from a variety of different sources, much the same way as a standard Linux distribution. Many of the components are licensed under the GNU GPL. Others carry a BSD license. Still others carry less-popular licenses. All components of the <b>Vyatta Core</b> carry licenses defined as open source.<br /> License files are included with every package installed in the system and can be viewed in the /usr/share/doc/package/copyright file.<br /> <br /> <h3> Tutorials ::</h3> <b>Use Tips and Tricks :: </b><a href="http://www.vyatta.org/documentation/tips-tricks" target="_blank">Click Here</a><b><br /> </b><br /> <b>Documentations :: </b><a href="http://www.vyatta.org/documentation/translated-docs" target="_blank">Click Here</a><br /> <b>Vyatta Forum :: </b><a href="http://www.vyatta.org/forum" target="_blank">Click Here</a> <br /> <div class="separator" style="clear: both; text-align: center;"> <br /></div> <div style="text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/5JJOE5zeVbM?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <div class="separator" style="clear: both; text-align: center;"> </div> <div class="separator" style="clear: both; text-align: center;"> </div> <h3> Download ::</h3> <b>Live CD :: </b><a href="http://packages.vyatta.com/vyatta/iso/VC6.6/vyatta-livecd_VC6.6R1_i386.iso" target="_blank">Vyatta Live CD v6.6</a> (.iso)<b></b><br /> <b>Visualization ISO :: </b><a href="http://packages.vyatta.com/vyatta/iso/VC6.6/vyatta-livecd_VC6.6R1_i386.iso" target="_blank">Vyatta Visualization v6.6</a> (.iso)<b> </b> <b> </b><br /> <b>Official Website ::<a href="https://www.blogger.com/goog_2084089245"> </a></b><a href="http://www.vyatta.org/">http://www.vyatta.org/</a> </div> </div> </div> </div> </article></div> </div>

Vyatta (Vitrual Router, Firewall and VPN) :: Framework

The free community Vyatta Core software(VC) is an award-winning open source network operating system providing...

Read more »

Nagios XI (System and Network Monitoring) :: Tools

<div style="text-align: justify;"><div class="separator" style="clear: both; text-align: center;"><img alt="Nagios Logo" border="0" height="139" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEijPJbT23GqEsND51gYYV9dlritrv4VMN0Y_kXrjsPpMF35HF9jV7QqyVxhKZU5jyF825HFNPBEghQzSXXvo9xLLhE3Hc1ybP9g6HiYYyh2rdXCLL-4OPuEAaCQhLgw9nJ8CBXoG1BT6l5L/s1600-rw/xi-logo-large.png" title="Nagios Logo" width="320" /></div><b>Nagios XI </b>is a system and <a href="http://www.toolwar.com/search/label/Monitoring" target="_blank">network monitoring</a> application. It watches hosts and services that you specify, alerting you when things go bad and when they get better. Some of its many features include monitoring of <a href="http://www.toolwar.com/search/label/Network" target="_blank">network</a> services (SMTP, POP3, HTTP, NNTP, ICMP, etc.), monitoring of host resources (processor load, disk usage, etc.), and contact notifications when service or host problems occur and get resolved (via email, pager, or user-defined method).</div><div style="text-align: justify;"><b>With Nagios you can:</b> </div><ul style="padding-left: 25px;"><li>Monitor your entire IT infrastructure</li> <li>Spot problems <i>before</i> they occur</li> <li>Know immediately when problems arise</li> <li>Share availability data with stakeholders</li> <li>Detect security breaches</li> <li>Plan and budget for IT upgrades</li> <li>Reduce downtime and business losses</li> </ul><div style="text-align: justify;"><br /> </div><h3 style="text-align: justify;">Tutorials ::</h3><div style="text-align: justify;"><b>Text Tutorials :: </b><a href="http://library.nagios.com/library/products/nagiosxi/tutorials/" target="_blank">Click Here </a> </div><div style="text-align: justify;"><b>Documentation :: </b><a href="http://library.nagios.com/library/products/nagiosxi/documentation" target="_blank">Click Here</a> </div><div class="separator" style="clear: both; text-align: center;"><iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/mXUxXV17Nd4?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div><div style="text-align: justify;"> </div><h3 style="text-align: justify;">Download ::</h3><div style="text-align: justify;"><b>Windows | Linux  :: </b><a href="http://library.nagios.com/library/products/nagiosxi/downloads/main" target="_blank">Nagios XI</a><b> </b></div><div style="text-align: justify;"><b>Official Website :: </b> <a href="http://www.nagios.org/">http://www.nagios.org/</a></div>

Nagios XI (System and Network Monitoring) :: Tools

Nagios XI is a system and network monitoring application. It watches hosts and services that you specify, alerting you when things go bad ...

Read more »

Nipper Studio (Network Security Audit for Firewall, Switches and Router) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjog3YqJ3FIoxb_rLEWgJPXiIWYhWS7Ihd2IOrLYGhAqOaRm7ioEB6gatr6PgzNw7OJf7ol2pC-Z9-TVfpQewGb_ryDyAt_h2uNqzrlhRtW194rN4xFfH7jYM3ivYb0TPmgsj7rIChoKIYR/s1600/Nipper+Home+Report+2.2.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="nipper tutorial" border="0" height="333" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjog3YqJ3FIoxb_rLEWgJPXiIWYhWS7Ihd2IOrLYGhAqOaRm7ioEB6gatr6PgzNw7OJf7ol2pC-Z9-TVfpQewGb_ryDyAt_h2uNqzrlhRtW194rN4xFfH7jYM3ivYb0TPmgsj7rIChoKIYR/s1600-rw/Nipper+Home+Report+2.2.jpg" title="nipper tutorial" width="400" /></a></div> <div style="text-align: justify;"> <b>Nipper (short for Network Infrastructure Parser, previously known as CiscoParse)</b> audits the security of network devices such as switches, routers, and firewalls. It works by parsing and analyzing device configuration file which the <b>Nipper</b> user must supply. This was an open source tool until its developer (Titania) released a commercial version and tried to hide their old GPL releases. During a <b>network audit Nipper Studio</b> processes the devices’ native configurations and enables you to create a variety of different audit reports. By using traditional methodology for your <a href="http://www.toolwar.com/search/label/Network" target="_blank">network audit</a>, such as manual <a href="http://www.toolwar.com/search/label/Penetration" target="_blank">Penetration Testing</a>, Agent-based software and <a href="http://www.toolwar.com/search/label/Scanner" target="_blank">Network Scanners</a>, you could experience various drawbacks, which does not affect Nipper Studio <a href="http://www.toolwar.com/search/label/Security" target="_blank">security</a> audit software:<br /> <ul> <li>Network scanners send huge numbers of network probes to a device and can impact performance. Only exposed vulnerabilities are identified, potentially missing many issues.</li> <li>Agent-based audit software requires software to be installed on the devices during the network audit. This is not possible for all devices and can introduce additional security vulnerabilities.</li> <li>Manual Penetration Tests examine individual <a href="http://www.toolwar.com/search/label/Network" target="_blank">network</a> devices in detail. However this is slow, expensive and results in point in time audits of only a sample of devices.</li> <li>Flatten the <a href="http://www.toolwar.com/search/label/Vulnerability" target="_blank">vulnerability assessment</a> process and reduce human error by automatically producing an instant, device specific configuration report, readable by non-technical experts.  </li> <li>Achieve significant cost savings by automating a detailed configuration vulnerability analysis, typically provided by costly external Penetration Testing. </li> <li>Improve the productivity and scope of the network audit by quickly performing a thorough vulnerability assessment of multiple complex network devices, providing a detailed security audit report, unachievable with vulnerability scanning technologies. </li> <li>Stay secure as our security audit software requires no additional services on the device or agents to be installed and can audit the network devices without connecting or scanning them</li> </ul> <h3> Tutorials ::</h3> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/wUtAmowwVD8?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3>  </h3> <h3> Download ::</h3> <b>Windows | Linux | Mac :: </b> <b> </b><br /> <b>Buy :: </b><a href="https://www.titania.com/shop" target="_blank">Click Here</a><b> </b> <b> </b><br /> <b>Evaluate Copy :: </b><a href="https://www.titania.com/evaluate" target="_blank">Click Here</a><b>  </b> <b> </b><br /> <b>Official Website :: </b><a href="https://www.titania.com/nipperstudio" target="_blank">https://www.titania.com/nipperstudio </a></div>

Nipper Studio (Network Security Audit for Firewall, Switches and Router) :: Tools

Nipper (short for Network Infrastructure Parser, previously known as CiscoParse) audits the security of network devices such as switche...

Read more »

Argus (Auditing Network Activity) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <img alt="Argus Logo" border="0" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhB9EePKFj7bOOAmUlulpXxUps3bKmylywSIIPNjOKR95TlmXfzBpotmDPvTpombemgv5gs8g-qGAFLcjAB8y7S0iSCjatcaY9LTAFt-OoP0EOMiONWPCNZ_119wIkga4ZTRn1ILz9jhpfa/s1600-rw/ArgusOptimizationCycle.gif" title="Argus Logo" /></div> <div style="text-align: justify;"> <b>Argus</b> is a fixed-model Real Time Flow <a href="http://www.toolwar.com/search/label/Monitoring" target="_blank">Monitor</a> designed to track and report on the status and performance of all network transactions seen in a data <a href="http://www.toolwar.com/search/label/Network" target="_blank">network</a> traffic stream. Argus provides a common data format for reporting flow metrics such as connectivity, capacity, demand, loss, delay, and jitter on a per transaction basis. The record format that Argus uses is flexible and extensible, supporting generic flow identifiers and metrics, as well as application/protocol specific information.</div> <div style="text-align: justify;"> <br /></div> <div class="plaintext" style="text-align: justify;"> <b>Argus </b>is composed of an advanced comprehensive network flow data generator, the<b> Argus</b> sensor, which processes packets (either capture files or live <a href="http://www.toolwar.com/search/label/Packet" target="_blank">packet</a> data) and generates detailed network flow status reports of all the flows in the packet stream. Argus captures much of the packet dynamics and semantics of each flow, with a great deal of data reduction, so you can store, process, inspect and <a href="http://www.toolwar.com/search/label/Analysis" target="_blank">analyze</a> large amounts of network data efficiently. <b>Argus</b> provides reachability, availability, connectivity, duration, rate, load, good-put, loss, jitter, retransmission, and delay metrics for all network flows, and captures most attributes that are available from the packet contents, such as L2 addresses, tunnel identifiers (MPLS, GRE, ESP, etc...), <a href="http://www.toolwar.com/search/label/IDS" target="_blank">protocol ids</a>, SAP's, hop-count, options, L4 transport identification (RTP, RTCP detection), host flow control indications, etc...</div> <div class="plaintext" style="text-align: justify;"> <br /></div> <div class="plaintext" style="text-align: justify;"> Argus is used by many sites to generate network activity reports for every network transaction on their networks. The network audit data that <b>Argus</b> generates is great for <a href="http://www.toolwar.com/search/label/Security" target="_blank">security</a>, operations and performance management. The data is used for network forensics, non-repudiation, network asset and service inventory, behavioral baselining of server and client relationships, detecting covert channels, and analyzing Zero day events.</div> <div class="plaintext" style="text-align: justify;"> <br /></div> <div class="plaintext" style="text-align: justify;"> Argus is an Open Source project, currently running on <a href="http://www.toolwar.com/search/label/Mac" target="_blank">Mac OS X,</a> <a href="http://www.toolwar.com/search/label/Linux" target="_blank">Linux</a>, Solaris, FreeBSD, OpenBSD, NetBSD, AIX, IRIX, <a href="http://www.toolwar.com/search/label/Windows" target="_blank">Windows</a> (under Cygwin) and OpenWrt, and has been ported to many hardware accelerated platforms, such as Bivio, Pluribus, Arista, and Tilera. The software should be portable to many other environments with littleor no modifications. Performance is such that auditing an entire enterprise's Internet activity can be accomplished using modest computing resources.</div> <div style="text-align: justify;"> <br /></div> <h3 style="text-align: justify;"> Tutorials ::</h3> <div style="text-align: justify;"> <b>How To :: </b><a href="http://www.qosient.com/argus/howto.shtml" target="_blank">Click Here</a><b><br /></b></div> <b>Wiki :: </b><a href="http://nsmwiki.org/index.php?title=Argus" target="_blank">Click Here</a><br /> <h3 style="text-align: justify;"> Download ::</h3> <div style="text-align: justify;"> <b>Windows | Mac | Linux ::  </b><a href="http://qosient.com/argus/src/argus-3.0.6.1.tar.gz" target="_blank">Argus v3.0.6.1</a><b> | </b><a href="http://qosient.com/argus/src/argus-clients-3.0.6.2.tar.gz" target="_blank">Argus v3.0.6.1 Client</a><b> </b></div> <div style="text-align: justify;"> <b>Official Website :: </b><a href="http://www.qosient.com/argus/">http://www.qosient.com/argus/</a><b><br /></b></div> <div style="text-align: justify;"> <br /></div>

Argus (Auditing Network Activity) :: Tools

Argus is a fixed-model Real Time Flow Monitor designed to track and report on the status and performance of all network transactions s...

Read more »

Fiddler (Web Debugger Proxy) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgoMGV0ZYokZLN2EHLK6qkK_j46ll8DxX5tNAWsuTWrfhCFoHDzxx4SUQFYGKOWgGNkc3p12cIAU1IWKWCKRo16-Ffc1JXOnqM6M60CPkbbxgDqnRKDKo0SJjH0htwNuFreOKr16MRNlihG/s1600/Fiddler+logo.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="251" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgoMGV0ZYokZLN2EHLK6qkK_j46ll8DxX5tNAWsuTWrfhCFoHDzxx4SUQFYGKOWgGNkc3p12cIAU1IWKWCKRo16-Ffc1JXOnqM6M60CPkbbxgDqnRKDKo0SJjH0htwNuFreOKr16MRNlihG/s1600-rw/Fiddler+logo.png" width="400" /></a></div> <div style="text-align: justify;"> <b>Fiddler</b> is a <b>Web Debugging Proxy</b> which logs all HTTP(S) traffic between your computer and the Internet. <b>Fiddler</b> allows you to inspect all HTTP(S) traffic, set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem, and can be extended using any .NET language.</div> <ul style="text-align: justify;"> <li><b>HTTP/HTTPS Traffic Recording :: </b>Fiddler is a free <a href="http://www.toolwar.com/search/label/Web" target="_blank">web</a> <a href="http://www.toolwar.com/search/label/Debugger" target="_blank">debugging</a> proxy which logs all HTTP(s) traffic between your computer and the Internet. Use it to debug traffic from virtually any application that supports a proxy like IE, Chrome, Safari, Firefox, Opera and more.</li> <li><b>Web Session Manipulation ::</b> Easily manipulate and edit web sessions. All you need to do is set a breakpoints to pause the processing of the session and permit alteration of the request/response. You can also compose your own HTTP requests to run through <b>Fiddler</b>.</li> <li><b>Web Debugging :: </b>Debug traffic from PC, <a href="http://www.toolwar.com/search/label/Mac" target="_blank">Mac</a> or <a href="http://www.toolwar.com/search/label/Linux" target="_blank">Linux systems</a> and <a href="http://www.toolwar.com/search/label/Mobile" target="_blank">mobile devices</a>. Ensure the proper cookies, headers and cache directives are transferred between the client and server. Supports any framework, including .NET, Java, Ruby, etc.</li> <li><b> Security Testing :: </b>Use <b>Fiddler</b> for <a href="http://www.toolwar.com/search/label/Security" target="_blank">security testing</a> your web applications -- decrypt HTTPS traffic, and display and modify requests using a man-in-the-middle decryption technique. Configure Fiddler to decrypt all traffic, or only specific sessions.</li> <li><b>Performance Testing :: </b>Fiddler lets you see the “total page weight,” HTTP caching and compression at a glance. Isolate performance bottlenecks with rules like “Flag any uncompressed responses larger than 25kb.”</li> <li><b>Customizing Fiddler :: </b>Benefit from a rich extensibility model, ranging from simple FiddlerScript to powerful Extensions which can be developed using any .NET language.  </li> <li><div class="sfContentBlock"> <b>Simulate Real User Load Using Fiddler Captures ::</b> Fiddler is an excellent tool for understanding the performance of your website, but how does your performance change when lots of users are hitting the site? Check out Telerik Test Studio powered by Fiddler to get an in-depth understanding of how your site performance degrades as the number of users increases.</div> </li> </ul> <h3 style="text-align: justify;"> Tutorials ::</h3> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/gujBKFGwjd4?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3 style="text-align: justify;">  </h3> <h3 style="text-align: justify;"> Download ::</h3> <div style="text-align: justify;"> <b>Windows :: </b><a href="http://www.telerik.com/docs/default-source/fiddler/fiddler4setup.exe?sfvrsn=2" target="_blank">Fiddler v4.4.6.2</a> (.exe) <b> </b></div> <div style="text-align: justify;"> <b>Official Website ::</b> <a href="http://www.telerik.com/download/fiddler">http://www.telerik.com/download/fiddler</a></div>

Fiddler (Web Debugger Proxy) :: Tools

Fiddler is a Web Debugging Proxy which logs all HTTP(S) traffic between your computer and the Internet. Fiddler allows you to inspect...

Read more »

Foremost (File Carving) :: Tools

<div style="text-align: justify;"> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgdkN2Ugs8yPIpW9bdhSCRtfTQisB-mmEgSeRyCTN_07YHLjIom3zkuOAPeUS8z8s7WHAT-qFoxrqYH6hrVHV9q-40PTsRzLLn9SMc0DbYBMNR944nbfhqU8fPWiPYTWV_PcywGGNhbEMS8/s1600/foremost+screenshot.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="foremost screenshot" border="0" height="275" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgdkN2Ugs8yPIpW9bdhSCRtfTQisB-mmEgSeRyCTN_07YHLjIom3zkuOAPeUS8z8s7WHAT-qFoxrqYH6hrVHV9q-40PTsRzLLn9SMc0DbYBMNR944nbfhqU8fPWiPYTWV_PcywGGNhbEMS8/s400-rw/foremost+screenshot.jpg" title="foremost screenshot" width="400" /></a></div> <br /> <b>Foremost</b> is a <b><i>console program to recover files</i></b> based on their headers, footers, and internal data structures. This process is commonly referred to as data carving. <b> Foremost</b> can work on image files, such as those generated by dd, Safeback, <a href="http://www.toolwar.com/2013/09/encase-forensics-v7-tools.html" target="_blank">Encase</a>, etc, or directly on a drive. The headers and footers can be specified by a configuration file or you can use <a href="http://www.toolwar.com/search/label/CLI" target="_blank">command line</a> switches to specify built-in file types. These built-in types look at the data structures of a given file format allowing for a more reliable and faster recovery. </div> <div style="text-align: justify;"> <br /> <h3> Tutorial ::</h3> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/9AkY-IefI4Q?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3> </h3> </div> <h3 style="text-align: justify;"> Download :: </h3> <div style="text-align: justify;"> <b>Linux ::</b> <a href="http://foremost.sourceforge.net/pkg/foremost-1.5.7.tar.gz" target="_blank">Foremost 1.5.7 (.tar.gz)</a><br /> <b>Official Website :: </b><a href="http://foremost.sourceforge.net/" target="_blank">http://foremost.sourceforge.net/ </a></div>

Foremost (File Carving) :: Tools

Foremost is a console program to recover files based on their headers, footers, and internal data structures. This process is common...

Read more »

Immunity Canvas (Vulnerability Exploitation) :: Tools

<div style="text-align: justify;"> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhqwXRB2JW_wTRBZeFsPrNZqP7KK7Xyn3JC7nG4SvaFbLePxH0hRCMjN9Qmahzts9eQvlEvfqI-ZtbOgvXHS6d2EBgXNSHvEgPXs_l3QYQyy_cg2IrSmwwJThp4ddWSXS5oV4GoJEOJbLUo/s1600/img-canvas.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Immunity Canvas" border="0" height="171" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhqwXRB2JW_wTRBZeFsPrNZqP7KK7Xyn3JC7nG4SvaFbLePxH0hRCMjN9Qmahzts9eQvlEvfqI-ZtbOgvXHS6d2EBgXNSHvEgPXs_l3QYQyy_cg2IrSmwwJThp4ddWSXS5oV4GoJEOJbLUo/s1600-rw/img-canvas.gif" title="Immunity Canvas" width="400" /></a></div> <b>Immunity Canvas</b> is a commercial <b>vulnerability exploitation tool </b>from Dave Aitel's ImmunitySec. It includes more than 370 exploits and is less expensive than Core Impact or the commercial versions of <a href="http://www.toolwar.com/2013/09/metasploit-framework.html" target="_blank">Metasploit</a>. It comes with full source code, and occasionally even includes zero-day exploits.<b> </b><br /> <b>Immunity's CANVAS</b> makes available hundreds of exploits, an automated <a href="http://www.toolwar.com/search/label/Exploitation" target="_blank">exploitation</a> system, and a comprehensive, reliable exploit development framework to <a href="http://www.toolwar.com/search/label/Penetration" target="_blank">penetration</a> testers and <a href="http://www.toolwar.com/search/label/Security" target="_blank">security</a> professionals worldwide. To see CANVAS in action please see our movies. For users new to CANVAS or experienced users looking to get just a little more out of CANVAS we have <a href="http://www.toolwar.com/search/label/PDF" target="_blank">PDF</a> based tutorials available for download.</div> <div style="text-align: justify;">   </div> <div style="text-align: justify;"> <b>Supported Platforms and Installations</b><br /> - <a href="http://www.toolwar.com/search/label/Windows" target="_blank">Windows</a> (requires Python & PyGTK)<br /> - <a href="http://www.toolwar.com/search/label/Linux" target="_blank">Linux</a><br /> - <a href="http://www.toolwar.com/search/label/Mac" target="_blank">MacOSX</a> (requires PyGTK)<br /> - All other <a href="http://www.toolwar.com/search/label/Python" target="_blank">Python</a> environments such as mobile phones and commercial Unixes (command line version only supported, GUI may also be available)</div> <div style="text-align: justify;"> <b>Architecture</b><br /> - CANVAS' completely open design allows a team to adapt CANVAS to their environment and needs. </div> <div style="text-align: justify;"> <b>Documentation</b><br /> - all documentation is delivered in the form of demonstration movies<br /> - exploit modules have additional information windows</div> <div style="text-align: justify;"> <b> Exploits</b><br /> - currently over 490 exploits, an average of 4 exploits added every monthly release<br /> - Immunity carefully selects vulnerabilities for inclusion as CANVAS exploits. Top priorities are high-value vulnerabilities such as remote, pre-authentication, and new vulnerabilities in mainstream software.<br /> - Exploits span all common platforms and applications</div> <div style="text-align: justify;"> <b> Payload Options</b><br /> - to provide maximum reliability, exploits always attempt to reuse socket<br /> - if socket reuse is not suitable, connect-back is used<br /> - subsequent MOSDEF session allows arbitrary code execution, and provides a listener shell for common actions (file management, screenshots, etc)<br /> - bouncing and split-bouncing automatically available via MOSDEF<br /> - adjustable covertness level</div> <div style="text-align: justify;"> <b> Exploit Delivery</b><br /> - regular monthly updates made available via <a href="http://www.toolwar.com/search/label/Web" target="_blank">web</a><br /> - exploit modules and CANVAS engine are updated simultaneously<br /> - customers reminded of monthly updates via email</div> <div style="text-align: justify;"> <b> Exploit Creation Time</b><br /> - exploits included in next release as soon as they are stable</div> <div style="text-align: justify;"> <b> Effectiveness of Exploits</b><br /> - all exploits fully QA'd prior to release<br /> - exploits demonstrated via flash movies<br /> - exploit development team available via direct email for support</div> <div style="text-align: justify;"> <b> Ability to make Custom Exploits</b><br /> - unique MOSDEF development environment allows rapid exploit development</div> <div style="text-align: justify;"> <b> Product Support and Maintenance</b><br /> - subscriptions include email and phone support M-F 9am - 5pm EST, directly with development team<br /> - minimum monthly updates</div> <div style="text-align: justify;"> </div> <div style="text-align: justify;"> <h3> Tutorials ::</h3> <ol> <li><a href="http://www.immunitysec.com/documentation/tutorials/Windows_Install.pdf">Detailed Windows Installation Instructions</a></li> <li><a href="http://www.immunitysec.com/documentation/tutorials/canvas101-part1.pdf">CANVAS 101 (Part 1)</a></li> <li><a href="http://www.immunitysec.com/documentation/tutorials/canvas101-part2.pdf">CANVAS 101 (Part 2)</a></li> <li><a href="http://www.immunitysec.com/documentation/tutorials/HCN-Part1.pdf">HCN Rootkit (Part 1)</a></li> <li><a href="http://www.immunitysec.com/documentation/tutorials/ties-that-binder-dot-py.pdf">The Ties That Binder.py</a></li> </ol> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/FAz-Bek4RfU?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <ol></ol> </div> <div style="text-align: justify;"> <h3> Download ::</h3> </div> <div style="text-align: justify;"> <b>Linux | Mac | Windows :: Contact Here ::</b> sales@immunityinc.com <b> </b><br /> <b>Official Website ::</b> <a href="https://www.immunitysec.com/products-canvas.shtml">https://www.immunitysec.com/products-canvas.shtml</a></div>

Immunity Canvas (Vulnerability Exploitation) :: Tools

Immunity Canvas is a commercial vulnerability exploitation tool from Dave Aitel's ImmunitySec. It includes more than 370 exploits an...

Read more »

QualysGuard (Cloud Security) :: Framework

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEghdzpjPZX2FLqOdTxqOBOsBcHPK-BGXs4z6FvMDEBWtOdSSQDhFqcOvSs8HLf2_C0gGeR9JzfehTMjygryKrJFU1Andf_8LVNhhNiAMihWAnzULkz0Qj63VCASwzVjkCQVNBGQnopmccia/s1600/qualys-logo.jpeg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Qualys logo" border="0" height="306" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEghdzpjPZX2FLqOdTxqOBOsBcHPK-BGXs4z6FvMDEBWtOdSSQDhFqcOvSs8HLf2_C0gGeR9JzfehTMjygryKrJFU1Andf_8LVNhhNiAMihWAnzULkz0Qj63VCASwzVjkCQVNBGQnopmccia/s1600-rw/qualys-logo.jpeg" title="Qualys logo" width="320" /></a></div> <div style="text-align: justify;"> <b>QualysGuard</b> is a popular <b>SaaS (software as a service) vulnerability management</b> offering. It's web-based UI offers <a href="http://www.toolwar.com/search/label/Network" target="_blank">network</a> discovery and mapping, asset prioritization, <a href="http://www.toolwar.com/search/label/Vulnerability" target="_blank">vulnerability</a> assessment reporting and remediation tracking according to business risk. Internal scans are handled by Qualys appliances which communicate back to the <a href="http://www.toolwar.com/search/label/Cloud" target="_blank">cloud-based</a> system.</div> <h3 style="text-align: justify;"> Tutorials ::</h3> <h3 style="text-align: justify;"> </h3> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/XfeyNLb7ZDc?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/5Cbq5wudtZE?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3 style="text-align: justify;"> Download ::</h3> <div style="text-align: justify;"> <b>Trial Linux | Mac | Windows :: </b><a href="http://www.qualys.com/forms/trials/qualysguard/" target="_blank">QualysGuard</a><b> </b></div> <div style="text-align: justify;"> <b>Official Website :: </b><a href="http://www.qualys.com/" target="_blank">http://www.qualys.com/ </a></div>

QualysGuard (Cloud Security) :: Framework

QualysGuard is a popular SaaS (software as a service) vulnerability management offering. It's web-based UI offers network discov...

Read more »

Skipfish (Web Application Security Scanner) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhWet3cqxS_RaHFSPFgDcVyLfRIrD075ildwUJOYxN7KDyiHkwz5nOjJPSSvtMoZzRLq_g1vGKdWJsR2avZ_xoeGfBYB4C_YjX_Ulr5xlGhii4h2OWhJ_f2_3UkGgBCQ6pOtci-zTNqau4-/s1600/skipfish+screenshot.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Skipfish Screenshot" border="0" height="329" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhWet3cqxS_RaHFSPFgDcVyLfRIrD075ildwUJOYxN7KDyiHkwz5nOjJPSSvtMoZzRLq_g1vGKdWJsR2avZ_xoeGfBYB4C_YjX_Ulr5xlGhii4h2OWhJ_f2_3UkGgBCQ6pOtci-zTNqau4-/s1600-rw/skipfish+screenshot.png" title="Skipfish Screenshot" width="640" /></a></div> <div style="text-align: justify;"> <b><i>Skipfish</i></b> is an active <b>web application security reconnaissance tool</b>. It prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes. The resulting map is then annotated with the output from a number of active (but hopefully non-disruptive) <a href="http://www.toolwar.com/search/label/Security" target="_blank">security</a> checks. The final report generated by the tool is meant to serve as a foundation for professional <a href="http://www.toolwar.com/search/label/Web" target="_blank">web application</a> security assessments. </div> <div style="text-align: justify;"> Key features: </div> <ul style="text-align: justify;"> <li><b>High speed</b>: pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets. </li> </ul> <ul style="text-align: justify;"> <li><b>Ease of use</b>: heuristics to support a variety of quirky web <a href="http://www.toolwar.com/search/label/Frameworks" target="_blank">frameworks</a> and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion. </li> </ul> <ul style="text-align: justify;"> <li><b>Cutting-edge security logic</b>: high quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors. </li> </ul> <div style="text-align: justify;"> The tool is believed to support <a href="http://www.toolwar.com/search/label/Linux" target="_blank">Linux</a>, FreeBSD, <a href="http://www.toolwar.com/search/label/Mac" target="_blank">MacOS X</a>, and <a href="http://www.toolwar.com/search/label/Windows" target="_blank">Windows</a> (Cygwin) environments. </div> <h3 style="text-align: justify;"> Tutorials ::</h3> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="allowfullscreen" frameborder="0" height="266" mozallowfullscreen="mozallowfullscreen" src="https://www.youtube.com/embed/kqx8rp7Cnwc?feature=player_embedded" webkitallowfullscreen="webkitallowfullscreen" width="320"></iframe></div> <h3 style="text-align: justify;">  </h3> <h3 style="text-align: justify;"> Download ::</h3> <div style="text-align: justify;"> <b>Windows | Mac | Linux ::</b> <a href="http://skipfish.googlecode.com/files/skipfish-2.10b.tgz" target="_blank">Skipfish v2.10b</a> (.tgz)</div> <div style="text-align: justify;"> <b>Official Website :: </b><a href="http://code.google.com/p/skipfish/">http://code.google.com/p/skipfish/</a></div>

Skipfish (Web Application Security Scanner) :: Tools

Skipfish is an active web application security reconnaissance tool . It prepares an interactive sitemap for the targeted site by carryi...

Read more »