AccesChk
This tool shows you the accesses the user or group you specify has to files, Registry keys or Windows services. As a part of ensuring that they've created a secure environment Windows administrators often need to know what kind of accesses specific users or groups have to resources including files, directories, Registry keys, and Windows services. AccessChk quickly answers these questions with an intuitive interface and output.
Read the Article
|
AIRT - Advanced Incident Response Tool
AIRT- Advanced incident response tool, is a set of incident response assistant tools which works on linux platform. It's useful when you want to know what evil kernel backdoor or malicious program is on your broken system and what it is.
Read the Article
|
ATK - Attack Tool Kit
It was first developed to provide a very small and handy tool for Windows to realize fast checks for dedicated vulnerabilities. In the meanwhile it is a combination of security scanner (e.g. Nessus) and exploiting framework (e.g. MetaSploit). The special thing about ATK is that the tool is able to do the work without great interaction. But there is also always the possibility to vary and change the behaviour of the software. This concern the plugins, checking, enumeration and reporting. The user is not dependent of the ideas of the developers - If needed because of the modularity nearly every change can be done within a few seconds. ATK is written in Visual Basic, underlies the General Public License (GPL) and is absolutely free to use and distribute.
Read the Article
|
BobCat - SQL Injection Exploitation Tool
BobCat is a tool to aid a security consultant in taking full advantage of SQL injection vulnerabilities. It is based on a tool named "Data Thief" that was published as PoC by appsecinc. BobCat can list the linked severs, database schema, and allow the retrieval of data from any table that the current application user has access to.
Read the Article
|
CCSAT
CCSAT (Cisco Configuration Security Auditing Tool) is a script to allow automated audit of configuration security of large numbers of Cisco routers and switches. The tool is based upon industry best practices including Cisco, NSA and SANS security guides and recommendations. CCSAT is flexible and can report details down to individual device interfaces, lines, ACL's, AS's, etc.
Read the Article
|
chkrootkit
chkrootkit is a tool to locally check for signs of a rootkit.
Read the Article
|
Collapse
Collapse allows web administrators to perform aggressive and comprehensive scans of an organization's web server to isolate vulnerabilities and identify security holes. The Collapse scanner requires basic inputs such as host names and port numbers to scan a complete web site and test all the web applications for security vulnerabilities. The Collapse scanner is part of an integrated suite of products from Syhunt Security designed to help organizations identify flaws in their custom applications.
Read the Article
|
IPAudit
IPAudit monitors network activity on a network by host, protocol and port. IPAudit listens to a network device in promiscuous mode, and records every connection between two ip addresses. A unique connection is determined by the ip addresses of the two machines, the protocol used between them, and the port numbers (if they are communicating via udp or tcp). IPAudit can be used to monitor network activity for a variety of purposes. It has proved useful for monitoring intrusion detection, bandwith consumption and denial of service attacks. It can be used with IPAudit-Web to provide web based network reports.
Read the Article
|
IRCR
The Incident Response Collection Report is a script to call a collection of tools that gathers and/or analyzes data on a Microsoft Windows system. You can think of this as a snapshot of the system in the past. Most of the tools are oriented towards data collection rather than analysis. The idea of IRCR is that anyone could run the tool and send the output to a skilled computer security professional for further analysis. IRCR v2 is a complete code change from Perl to DOS batch file. Anyone should be able to modify the batch file to their needs.
Read the Article
|
Kojoney - A honeypot for the SSH Service
Kojoney is a low level interaction honeypot that emulates an SSH server. The daemon is written in Python using the Twisted Conch libraries.
Read the Article
|
