|
(Page 3 of 3) < Prev 1 2 3 Category: Auditing » Source Code BFBTester Added 2001-10-22 BFBTester is great for doing quick, proactive, security checks of binary programs. BFBTester will perform checks of single and multiple argument command line overflows and environment variable overflows. Versions 2.0-BETA and higher can also watch for tempfile creation activity to alert the user of any programs using unsafe tempfile names. While BFBTester cannot test all overflows in software, it is useful for detecting initial mistakes that can red flag dangerous software. IPWatch.dll Added 2001-10-22 IPWatch.dll - Audit data generated by Netstat output. This version fixes a bug with (default)name conflicts. Written for VB, but should also work with C++ using Declarative function calls. A complete description is available at the home page. PScan (Problem Scanner) Added 2001-10-22 Are you tired of yet more externally exploitable buffer overflows in C programs? Do you want to audit your source for common mistakes? If so, PScan is for you. What PScan does: Scans C source files for problematic uses of printf style functions. e.g.: sprintf(buffer, variable); Bad! Possible security breach! sprintf(buffer, "%s", variable); Ok Fuzz for Linux Added 2001-10-22 The overall goal is to improve the overall security of Linux by fixing bugs. Paraphrasing Theo DeRaadt, the head of the OpenBSD project, If you go about fixing bugs, then security is one of the benefits. initd_.sh Added 2001-10-22 A automated script to test binary executables of any type for buffer overflows while you kick back and sip Guinness. Wrapper Added 2001-10-22 This wrapper is intended to protect SUID/SGID programs that may either be susceptible to buffer overflows on commandline arguments, or inappropriately trust certain environment variables. This wrapper does not fix file race-conditions, nor does it help with other bugs/problems. qaudit.pl Added 2001-10-22 qaudit.pl is a simple source file auditing tool to check for possible security holes in C/C++ code. It checks for possible buffer overflows, format bugs, execution calls, and other potentially dangerous calls. VisualSoft FileSecure Added 2001-10-22 VisualSoft FileSecure 1.0 is a cute cryptographic product that helps encrypt/decrypt files and/or folders using symmetric key mechanism. It incorporates powerful Blowfish algorithm for the process of encryption and decryption. It supports file compression and secure file transfer using FTP. It encrypts selected files and/or folders and produces a self-decryption archive. The encrypted file can be decrypted simply by double clicking the archive with the given passphrase. Browse by category |
|
|
Privacy Statement |
