Os-sim attempts to unify network monitoring, security, correlation, and qualification in one single tool. It combines Snort, Acid, MRTG, NTOP, OpenNMS, nmap, nessus, and rrdtool to provide the user with full control over every aspect of networking or security. Supported platform is Linux.
Read more:
os-sim-0.9.9.tar.gz
creddump is a python tool to extract various credentials and secrets from Windows registry hives. It currently extracts LM and NT hashes (SYSKEY protected), cached domain passwords, and LSA secrets. It essentially performs all the functions that bkhive/samdump2, cachedump, and lsadump2 do, but in a platform-independent way.
View original here:
creddump-0.1.tar.bz2
Test program that reads chip and PIN credit cards using the ENV standard. This will most …
Go here to read the rest:
ChAP.py.txt
Goolag Scanner version 1.0. This tool has been released by the Cult of the Dead Cow to automate Google hacking using 1,500 predefined search queries.
Read the original here:
GS1.0.0.40OfficialRelease.rar
Yahoo Profile Redirection Weakness can lead to many Attacks. Recently discovered hole in Yahoo profile system allows attackers to craft a specific URL to mislead the user in executing the received link. Attackers can exploit these issues via a web client.The redirection hole lies in eval_profile?.done=[Any URL] This allows attacker to do the following:
Vulnerabilities in Wordpress, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.Input passed to certain parameters in various scripts isn’t properly verified before it is returned to the user. This can be exploited to execute arbitrary HTML or script code in …
See the original post here:
WordPress Multiple Cross-Site Scripting Vulnerabilities
wtmpClean is a tool for Unix which clears a given user from the wtmp database.
Originally posted here:
wtmpclean-0.6.1.tar.bz2
ndisc consists or two small command line tools (ndisc and rdisc) that perform ICMPv6 Neighbor Discovery and ICMPv6 Router Discovery …
More here:
ndisc6-0.9.6.tar.bz2
OpenStego is a tool implemented in Java for image based steganography, with support for password-based encryption of the data. It currently supports embedding of messages/files in a 24bpp images.
Here is the original post:
openstego-0.4.0.zip
Pound is a reverse HTTP proxy, load balancer, and SSL wrapper. It proxies client HTTPS requests to HTTP backend servers, distributes the requests among several servers while keeping sessions, supports HTTP/1.1 requests even if the backend server(s) are HTTP/1.0, and sanitizes requests.
Continued here:
Pound-2.4.tgz