|
(Page 7 of 125) < Prev 2 3 4 5 6 7 8 9 10 11 12 Next > Category: Auditing MDCrack Added 2006-09-07 MDCrack is a free featureful password cracker designed to bruteforce several commonly used hash algorithms at a very aggressive speed rate. It can retrieve any password made of up to 8 characters (16 for PIX algorithms) and 55 characters when salted. In order to achieve the highest possible speed rate, this program uses several cores for each algorithm it supports. Each one of these cores provides a different level of optimization designed to best fit with a specific set of command line options. Whatever command line configuration is used, MDCrack will always arrange to use the best available core. To date, this program supports bruteforce attacks on MD2, MD4, MD5, NTLMv1 and PIX (enable and users) hashes, the list of algorithms is growing up. Multi threading allows for parallel cracking and load sharing between several CPUs and multiplies overall speed by the number of available processor(s). This yields to phenomenal performance even on old generation multi-CPUs systems. Several options offer fine tuning for the attack and allow to save and resume your session at a later time. This program has multiple uses in real life, while its primary goal is obviously to test the strength of hashed passwords, it can also be used as a raw benchmark tool for integer calculs. For any question you may have, please be sure to first read the Frequenty Ask Questions file (FAQ) provided in MDCrack ZIP file. I hope you will enjoy this program. Collapse Web Application Scanner Added 2006-09-05 Collapse, a free tool from Syhunt, allows web administrators to perform aggressive and comprehensive scans of an organization's web server to isolate vulnerabilities and identify security holes. The Collapse scanner requires basic inputs such as host names and port numbers to scan a complete web site and test all the web applications for security vulnerabilities. This new version includes an improved GUI, new web application security checks and many other additional enhancements. halberd Added 2006-08-17 halberd discovers HTTP load balancers. It is useful for testing load balancer configurations and for web application auditing purposes. OpenNAC Added 2006-08-08 OpenNAC provides easy to use VLAN assignment and LAN access control for Cisco Switches and all kind of network devices (Servers, Workstations, Printers, IP-Phones, Webcams...) OpenNAC can be considered as having to phases. We have taken OpenVMPS, added a MySQL back end, a Delphi GUI, some advanced PHP control scripts, scalability, redundancy, alerting and more. This has been installed at companies with networks sizing from one hundred to 2000 machines. We will continue to market this product and offer professional support. Next, we want to make OpenNAC available to the OpenSource community. We are currently working through the existing code to remove or replace all proprietary pieces and on new database scheme to allow further extensions. We are also considering adding 802.1x support (provides better security and is not limited to Cisco switches) and moving the Delphi GUI to a web based user interface. The 'plan' is for the project to move forward to eventually become THE OpenSource Enterprise tool for dynamic VLAN assignment and network authentication. So, we wish to solicite community opinions, expertise and feedback. Are you interested in this tool, would you like to use it or even like to contribute to it (documentation, support, development, promotion, architecture, review...)? Please visit us on www.OpenNAC.net ! CryptoSearch Added 2006-08-08 LINReS Added 2006-08-07 LINReS is a Live Response script designed to run on suspect/compromised Linux systems system with a minimal impact on the system to satisfy various forensic standards requirements. This script has been tested successfully on RedHat Enterprise Linux systems. LINReS consists of mostly statically compiled binaries and includes the various shared libraries that may be required to run the binaries (which are not statically compiled). All in all, no binary from the compromised system is used by this tool which mitigates the risk of collecting information on a trojaned system. Engage Packet builder Added 2006-08-06 A powerfull and scriptable packet Builder, being useful to build parsonalized packet with the aim of testing the security of your firewall, network, etc... (TCP, IP, UDP, ICMP) Log 2 Google Earth Added 2006-07-26 Visualize any logfile (firewall / apache you name it) in near realtime on Google Earth. See where you traffic is coming and going to. JAAScois X-Code v1.0 PHP Version Added 2006-07-26 analysis all php projects & discover exploits Chorizo! Added 2006-07-18 Chorizo! is a web app security scanner especially for PHP based applications. It's an application service (all data encrypted on the server, no one can see the results except the users) that is able to detect SQL injections, AJAX bugs, code inclusions/executions, session fixations, PHP vulnerabilities and so on. It will also be available as an appliance version for testing non-public websites. Browse by category |
|
|
Privacy Statement |
