|
(Page 6 of 47) < Prev 1 2 3 4 5 6 7 8 9 10 11 Next > Platform: Windows XP Activity and Authentication Analyzer Added 2007-03-13 Security software destined to comprehensive analysis of the user traces (evidences) left after work. AAAnalyzer allows user to search the traces left in system registry, edit registry keys related to the activity and authentication analysis, eradicate them in safe way, keep search log-files, and backup made changes. Utility works in 9x/NT/2000/XP/2003 Windows - and needs additionally only Internet Explorer version 4 or higher ViPNet OFFICE Added 2007-03-13 ViPNet OFFICE is an IP VPN and designed as unique client-to-client or client-to-site VPN software with build-in secure business applications: encrypted Instant Messaging (IM), encrypted file exchange, build-in mail system - a stand-alone solution for a standard e-mail environment to keep your Inbox 100% free-of-spam, build-in personal firewall with IDS, tunnel securing Internet traffic between your offices, online visibility of vpn users, etc. ViPNet Safe Disk Added 2007-03-13 ViPNet Safe Disk keeps your confidential data (files, folders, etc.) in a strongly encrypted form on your disk and provides you with a transparent access to it as if your files or folders are on the usual disk drive. ViPNet Safe Disk secures your data on your notebook or desktops by creating virtual encrypted disks. Each encrypted disk resides in a single file, which is easy to backup to any media in order to protect it from data loss. Site Notifier Added 2007-03-06 Site Notifier is the perfect website monitoring tool for the busy executive, marketing manager or entrepreneur; anyone really who is responsible for one or more websites but doesn't have the time to continuously check to see if a site is up throughout the day. Scuba by Imperva Added 2007-03-05 Scuba by Imperva is a free, lightweight Java utility that scans Oracle, DB2, MS-SQL, and Sybase databases for known vulnerabilities and configuration flaws. Based on its assessment results, Scuba creates clear, informative reports with detailed test descriptions. Summary reports, available in Java and HTML format, illustrate overall risk level. With Scuba by Imperva, you are quickly on your way to meeting industry-leading best practices for database configuration and management. SSA Security System Analyzer Added 2007-02-21 A local vulnerabilty analyzer based on OVAL concept. http://www.security-database.com/ssa.php 1.5 Final Release * NOW SSA Security System Analyzer in added to OVAL.mitre.org compatibility program o http://oval.mitre.org/compatible/questionnaires/21.html * NOW fully based on OVAL 5.2 Interpreter. * Added OVAL XML Database Plug-in. o View OVAL ID Information o Search by OS and OVAL ID + Double click on entry and get more information (linked to OVAL.mitre.org and security-database.com) o More information about CVE (CVSS, Related sources, Related missed patches....) * Added function Stop/Reload in SSA * Improved performance in SSA Core Scanner * Fixed bugs (function checks, abnormal scan abort...) * Fixed bugs in Updater Plug-in * Added second progress bar in Updater Plug-in to indicate the stages left to be processed. Windows Privacy Tray (WinPT) Added 2007-02-13 WinPT is a taskbar front-end for GnuPG which includes key management, encryption via the clipboard, direct file encryption and support for OpenPGP smartcards. S.I.T.H. 2048bit Secure Client Added 2007-01-25 PROTEXX (SITH) Secure Wireless Secure Information Technology Highway (SITH)™ is next generation wireless technology, developed by PROTEXX, that provides enhanced levels of security and greater user authentication to eliminates the ability of anyone from monitoring your Internet activity or stealing your personal or corporate data.The Secure Information Technology Highway™ ensures that server, client and remote communications are done with a secured environment with more than 10X the security level by today's standards. Source Security Added 2007-01-15 sourcesec.com provides Web-based access to code auditing applications, and was created to assist developers and users in auditing their programs for vulnerabilities. You can upload your code for static analysis by RATS, Flawfinder and ITS4 as applicable - the C/C++, PHP Python and Perl languages are supported. Additionally, a simplified search function is available which easily allows efficient Web searches for security-related information. Venak & Avenak Detection Scanner Added 2007-01-10 Introduction Venak & Avenak scanner is tool for protection your system form some threat files likes spys, viruses, worm and rootkits. It reality this is a detection tool. This tool also use from a new technology that called MPS (Main Protection System). In fact Main Protection System or MPS is a cause and effect system. MPS is a logical system. The MPS like a tracer, any Service, process or Driver has own File, with this method we will trace route any threat or function on windows. Basic Features All events likes: • Processes (Heaps, Modules, Handlers, Threads, Processes Addresses and Process Sign) • Md5 Signature • List of Derivers in system with their states • Unloading Kernel Drivers • Services • All active Ports ( TCP/UDP) • Files types • Give Handlers ( Explorer's name , Page's Name , Hwnds) • Event log monitoring • Startup files • Explorer files • Explorer Registry keys – Beta 2 • Monitoring ports and users – Beta 2 Extra Features • Sensitive strings The sensitive string is way for finding some viruses that makes same name likes Svchost, Lsass, Winlogon and many other original windows functions, if any process has same name like those the Program makes an alert and shows a security threat. For example if any process be in "C:\windows\" and have "svchost" name it's already a threat. You can audit this method and make the special sensitive for yours. When the system finds any problem, makes an alert. • Analyzing the Processes with PID Brute Force Some rookits try to hide own Process PID, with this trick we can find these processes. Some tools like Fu and some Hidden Processes with an SSDT Hook use this method to hide them self. Also these tool use by changing in NewZwQuerySystemInformation functions and analysis the results and filter them. They try to change the query of these process lists and when we are using by some basic function in "kernel32.dll" we see the filter result. As this point we can find the other tools like some protection tool for example: Rootkit removers and some Viruses scanners. Some files that didn't have any path string are a threat. • IAT ( Import Address Table) IAT is a global table that contains a list of all the function pointers to any function mapped into the running process. With this tool you can see all these value for per process. • Online Testing Online testing is a powerful part of this program. Like most antivirus this program have a potential method with using from shell programming in windows. With online searching, when you're open your Explorer like IE or Windows Explorer the system fined your current target (Folder). The system searching for all Executable files likes DLLs and EXE files in current folder. After finding these files the program makes a MD5 Signature from all files and start searching in Threat List, when find same Sign, makes an alert. • Twice extension The old trick using by viruses programmers is two extensions for one file like: document.txt.exe. In searching directories when the system find these type files makes an alert and give the signature of file in threat list. • MD5 Signature You can see the MD5 signature of any loaded processes and modules in system with this option. In Beta 1 version finding the threat is manually type but in Beta 2 we have online and automatic testing and detection. • Path Checking Path checking is a simple way to detect some loading processes into system as threat. When In loading processes we have a process with null path file and it isn't be an original services that we detect before ,the system make an alert for this process and it show with Magenta color. good luck , nima Browse by category |
|
|
Privacy Statement |
