xsschecker.py.txt
May 15th, 2008Cross site scripting fuzzing utility written in Python.
View original here:
xsschecker.py.txt
Exploits Spy
The newest exploits, code, and pen-testing tools
sqlfuzzer.py.txt
May 15th, 2008SQL Injector version 1.0 is a fuzzing utility written in Python.
Read the original here:
sqlfuzzer.py.txt
nipper-0.11.7.zip
May 12th, 2008nipper is a Network Infrastructure Configuration Parser. nipper takes a network infrastructure device configuration, processes the file and details security-related issues with the configuration together with detailed recommendations. nipper was previous known as CiscoParse. nipper currently supports Cisco switches (IOS), Cisco Routers (IOS), Cisco Firewalls (PIX/ASA/FWSM) and Juniper NetScreen (ScreenOS). Output is in HTML, Latex, XML and Text. Encrypted passwords can be output to a John-the-Ripper file for strength testing. This is the Windows version.
The rest is here:
nipper-0.11.7.zip
nipper-0.11.7.tgz
May 12th, 2008nipper is a Network Infrastructure Configuration Parser. nipper takes a network infrastructure device configuration, processes the file and details security-related issues with the configuration …
See the rest here:
nipper-0.11.7.tgz
browserrecon-1.0-php.tar.gz
May 10th, 2008browserrecon is a framework that performs client-side HTTP fingerprinting. Be sure to hit their site to download the latest fingerprints database.
The rest is here:
browserrecon-1.0-php.tar.gz
dradis-v1.2.tar.gz
May 7th, 2008dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of information is essential to avoid duplication of efforts.
View original post here:
dradis-v1.2.tar.gz
plash_1.19.orig.tar.gz
May 7th, 2008Plash is a sandbox for running GNU/Linux programs with minimum privileges. It is suitable for running both command line and GUI programs. It can dynamically grant Gtk-based GUI applications access rights to individual files that you want to open or edit. This happens transparently through the Open/Save file chooser dialog box, by replacing GtkFileChooserDialog. Plash virtualizes the file namespace and provides per-process/per-sandbox namespaces. It can grant processes read-only or read-write access to specific files and directories, mapped at any point in the filesystem namespace. It does not require modifications …
Original post:
plash_1.19.orig.tar.gz
wtmpclean-0.6.3.tar.bz2
April 30th, 2008wtmpClean is a tool for Unix which clears a given user from the wtmp database.
See more here:
wtmpclean-0.6.3.tar.bz2
ZoneMinder-1.23.3.tar.gz
April 30th, 2008ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of …
See original here:
ZoneMinder-1.23.3.tar.gz
scnc-1.00.tgz
April 29th, 2008SSL Capable NetCat is just what it sounds like. It’s a perl script that works just like netcat but has SSL capabilities.
See original here:
scnc-1.00.tgz