NTP fingerprinting utility
ntp-fingerprint is an active fingerprinting utility specifically designed to identify the OS the NTP server is running on.
|
|
NSAT - Network Security Analysis Tool
NSAT is a robust scanner which is designed for: Different kinds of wide-ranging scans, Scanning on multi-user boxes, Professional-grade penetration testing and comprehensive auditing, Easy full-scale archiving of vulnerability and version information for further purposes, Time-less configuration - as a banner scanner for many known services and protocols, Virtual host support, Flexibility and configurable scanning, and Distributed scanning.
|
|
Metasploit Framework
It is an advanced open-source platform for developing, testing, and using exploit code. The extensible model through which payloads, encoders, no-op generators, and exploits can be integrated has made it possible to use the Metasploit Framework as an outlet for cutting-edge exploitation research. It ships with hundreds of exploits, as you can see in their online exploit building demo. This makes writing your own exploits easier, and it certainly beats scouring the darkest corners of the Internet for illicit shellcode of dubious quality.
|
|
md5sum
The md5sum command performs file integrity operations on files by creating oneway hashes (message-digest) for each file. These hashes can then be used to run checks on the installed files on the system. Md5sum has been very popular in the use on verifying various types of downloaded files and programs.
|
|
MacPork
MacPork is a small program that allow you to scan a server for tracking holes and exploiting them. MacPork scans over 271 vulnerabilities and retrieve passwd/informations in 175 differents manners. MacPork has been conceived to find 177 trojans installed on differents servers. MacPork including an intelligent SearchEngine who can find eventuals exploitables servers in two secs. MacPork knows 66 ways to overflow a system and 86 holes in UNIX protocols (Ftp, Smtp, NetBios, Finger, Rservices and RPC). Many many many more features exists It's the best scanner/auditing tool ever made on macintosh.
|
|
Lynis
Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems. It can be run without prior installation, so inclusion on read only storage is no problem (USB stick, cd/dvd).
|
|
LogManager
LogManager was created with an aim of collecting, of filing and of analyzing the messages of log resulting from your applications and/or your equipment network. Moreover, it makes it possible to "third" programs to correlate them. To collect these messages of log implies to support the protocols of journalizing. For the moment, LogManager supports the protocols Syslog , VipLog and EventLog. It will support soon the protocols SNMP and CheckPoint LEA .
|
|
Kr4cker II
This new release of Kr4ck3r comes equipped with many new features which enhance and simplify the process of auditing MD5 hash. We have built on the concept of clones by introducing Virtual Clones which run logically in the background while auditing. Also, we've included hands-free progression through-out the entire auditing process. Knowing the last line of defense is a strong password, we have included a totally new feature to allow operators to audit Md5 hash stored in a remote database. With a totally new design and focus on detail, this version has certainly become the ultimate Md5 hash auditor.
|
|
Kojoney
Kojoney is a low level interaction honeypot that emulates an SSH server. The daemon is written in Python using the Twisted Conch libraries.
|
|
IRCR
The Incident Response Collection Report is a script to call a collection of tools that gathers and/or analyzes data on a Microsoft Windows system. You can think of this as a snapshot of the system in the past. Most of the tools are oriented towards data collection rather than analysis. The idea of IRCR is that anyone could run the tool and send the output to a skilled computer security professional for further analysis. IRCR v2 is a complete code change from Perl to DOS batch file. Anyone should be able to modify the batch file to their needs.
|
|
IPAudit
IPAudit monitors network activity on a network by host, protocol and port. IPAudit listens to a network device in promiscuous mode, and records every connection between two ip addresses. A unique connection is determined by the ip addresses of the two machines, the protocol used between them, and the port numbers (if they are communicating via udp or tcp). IPAudit can be used to monitor network activity for a variety of purposes. It has proved useful for monitoring intrusion detection, bandwith consumption and denial of service attacks. It can be used with IPAudit-Web to provide web based network reports.
|
|
Graudit
Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility grep. It's comparable to other static analysis applications like RATS, SWAAT and flaw-finder while keeping the technical requirements to a minimum and being very flexible.
|
|
Collapse
Collapse allows web administrators to perform aggressive and comprehensive scans of an organization's web server to isolate vulnerabilities and identify security holes. The Collapse scanner requires basic inputs such as host names and port numbers to scan a complete web site and test all the web applications for security vulnerabilities. The Collapse scanner is part of an integrated suite of products from Syhunt Security designed to help organizations identify flaws in their custom applications.
|
|
CCSAT
CCSAT (Cisco Configuration Security Auditing Tool) is a script to allow automated audit of configuration security of large numbers of Cisco routers and switches. The tool is based upon industry best practices including Cisco, NSA and SANS security guides and recommendations. CCSAT is flexible and can report details down to individual device interfaces, lines, ACL's, AS's, etc.
|
|
Actions
Category Stats