|
(Page 6 of 18) < Prev 1 2 3 4 5 6 7 8 9 10 11 Next > Category: Auditing » Network » General IIS Unicode Scanner Added 2001-12-11 This tool scans IIS servers for over 224 varieties of Unicode and Decode vulnerabilities. In addition, it is packed with other features that make it a worthwhile tool for Security Administrators. SQL Auditing Tools Added 2001-12-10 SQLAT is a suite of tools which could be usefull for pentesting a MS SQL Server. The tools are still in development but tend to be quite stable. The tools do dictionary attacks, upload files, read registry and dump the SAM. They do this by wrapping extended stored procedures. There is also a tool for doing a minimal analysis of a SQL Server with output as HTML. You need to be 'sa' to run some of the tools, but this usually isn't a problem. The tool temporarily restores the xp_cmdshell if it is removed and the dll is still left on the system. SQLAT works over port 1433, it doesn't do named pipes. It doesn't do integrated security either. This because it is based on the FreeTDS driver from www.freetds.org. ScanSSH Added 2001-11-13 ScanSSH scans a list of addresses and networks for running SSH servers and their version numbers. scanssh supports random selection of IP addresses from large network ranges and is useful for gathering statistics on the deployment of SSH servers in a company or the Internet as whole. LCLint Added 2001-11-08 LCLint does many of the traditional lint checks including unused declarations, type inconsistencies, use-before-definition, ignored return values, execution paths with no return, likely infinite loops, and fall-through cases. Our main focus, however, is on more powerful checks that are made possible by additional information given in source code annotations. Annotations are stylized comments that document certain assumptions about functions, variables, parameters, and types. They may be used to indicate where the representation of a user-defined type is hidden, to limit where a global variable may be used or modified, to constrain what a function implementation may do to its parameters, and to express checked assumptions about variables, types, structure fields, function parameters, and function results. In addition to the checks specifically enabled by annotations, many of the traditional lint checks are improved by exploiting this additional information. UNF Distributed Portscanner (DScan) Added 2001-11-05 DScan is a portscanner that distributes the scan among dozens of hosts. The scanner consists of two parts. One part is the client, which initiates the scan and calculates the portrange each server has to operate on. The only thing the server does is scan and return the result to the client. Distributing the portscanning operation can make it harder for the target to detect the fact that a scan is being performed. IP Restrictions Scanner (IRS) Added 2001-10-22 Many servers and network devices like routers and switches provides features like ACLs, IP Filters, Firewall rules and so on to give access to their Services only to particular IP addresses (usually Administrator's workstations). The main purpose of this program is to find out IP restrictions that have been set for a particular service on a host. It combines "ARP Poisoning" and "Half-Scan" techniques and tries totally spoofed TCP connections to the selected port of the target. IRS does not scan for opened ports but for valid IP source addresses allowed to connect. TeleSweep Secure Scanner Added 2001-10-22 The TeleSweep SecureŽ telephone scanner is the first and only distributed scanner that locates and characterizes modems that bridge the secure data network with the unsecured telephone network, assesses the security configuration and provides comprehensive reports of the results. The TeleSweep Secure scanner is an active discovery and vulnerability assessment tool for the IT/security professional. Operationally, it acts as an attacker, someone who wishes to gain unauthorized access, in order to locate vulnerable telecommunications access points and report whether they pose an imminent threat as a bridge to your data network. This is accomplished by determining the function of each provided telephone number as modem, fax or voice. Those answering as modems can then be further assessed by attempting an array of login attempts. Those systems determined as vulnerable in this manner can then be prioritized as the most immediate security threat. ippacket Added 2001-10-22 Command line/curses utility to construct IP/TCP/UDP/ICMP packets on a linux system. Send Packet 1.5 Added 2001-10-22 TCP/UDP/ICMP/IP packet "customizer". You can modify almost all the parameters in the headers of the tcp/udp/icmp/ip set of protocols. Can also send the contents of a file in the data section of the tcp header. Useful to test networks, firewalls, etc and educational and simple to use for the student. snoopy.pl Added 2001-10-22 snoopy.pl is a simple SNMP scanner written in PERL, and making use of the Net::SNMP module. It will scan a list of hosts, and report the system id back if a valid community string is found. Browse by category |
|
|
Privacy Statement |
