(Page 3 of 3)   < Prev  1 2 3 

Category: Auditing » Source Code

Added 2001-10-22
by Mike Heffner
BFBTester is great for doing quick, proactive, security checks of binary programs. BFBTester will perform checks of single and multiple argument command line overflows and environment variable overflows. Versions 2.0-BETA and higher can also watch for tempfile creation activity to alert the user of any programs using unsafe tempfile names. While BFBTester cannot test all overflows in software, it is useful for detecting initial mistakes that can red flag dangerous software.

Added 2001-10-22
by Glenn Larsson
IPWatch.dll - Audit data generated by Netstat output. This version fixes a bug with (default)name conflicts. Written for VB, but should also work with C++ using Declarative function calls. A complete description is available at the home page.

PScan (Problem Scanner)
Added 2001-10-22
by Alan DeKok
Are you tired of yet more externally exploitable buffer overflows in C programs? Do you want to audit your source for common mistakes? If so, PScan is for you. What PScan does: Scans C source files for problematic uses of printf style functions. e.g.: sprintf(buffer, variable); Bad! Possible security breach! sprintf(buffer, "%s", variable); Ok

Fuzz for Linux
Added 2001-10-22
by Ben Woodard, ben@valinux.com
The overall goal is to improve the overall security of Linux by fixing bugs. Paraphrasing Theo DeRaadt, the head of the OpenBSD project, If you go about fixing bugs, then security is one of the benefits.

Added 2001-10-22
by initd_, initd_@digital.net
A automated script to test binary executables of any type for buffer overflows while you kick back and sip Guinness.

Added 2001-10-22
by Joe Zbiciak, im14u2c@primenet.com
This wrapper is intended to protect SUID/SGID programs that may either be susceptible to buffer overflows on commandline arguments, or inappropriately trust certain environment variables. This wrapper does not fix file race-conditions, nor does it help with other bugs/problems.

Added 2001-10-22
by v9, v9@fakehalo.org
qaudit.pl is a simple source file auditing tool to check for possible security holes in C/C++ code. It checks for possible buffer overflows, format bugs, execution calls, and other potentially dangerous calls.

VisualSoft FileSecure
Added 2001-10-22
by VisualSoft Technologies
VisualSoft FileSecure 1.0 is a cute cryptographic product that helps encrypt/decrypt files and/or folders using symmetric key mechanism. It incorporates powerful Blowfish algorithm for the process of encryption and decryption. It supports file compression and secure file transfer using FTP. It encrypts selected files and/or folders and produces a self-decryption archive. The encrypted file can be decrypted simply by double clicking the archive with the given passphrase.

Search Tools
Browse by category
Log Analysis, Host, Passwords, Network, File Integrity, PSTN, Forensics, Backdoors, Source Code
Passwords, Filesystem, Network, System, Compiler, Log Management, Usage Monitoring, Email
One Time Passwords, User Authentication, Password Management, Web, Server, Certificates, Tokens
Intrusion Detection
Network, Host, Web, Evasion
Access Control
Network, Firewall, user privileges, RPC, Bootup, File System, Applications, Mandatory Access Control, Server, X-Windows, ACLs, Privileges
Libraries, Applications
Libraries, Random Numbers, Traffic Encryption, Data Encryption, Cryptoanalysis, Steganography, E-mail
Network Monitoring
Policy Enforcement
Web Access, Email
System Security Management
Accounts, Console, Windows NT, Firewall, Configuration, Filesystem, Linux, Solaris, Monitoring
Network Utilities
Tunneling, Miscellaneous, Monitoring
Secure Deletion
Linux, FreeBSD, NT, Solaris
Hostile Code
Detection, Removal, Sandbox


Privacy Statement
Copyright 2010, SecurityFocus