Monday, 4 February 2013

Tools Update (4th Feb)

My slightly irregular update on new and updated Information Security tools that I have come across or use. The tools are mainly those for PenTesting although other tools are sometimes included. As a bit of background into how I find these tools, I keep a close watch on twitter and other websites to find updates or new releases, I also search for pen testing and security projects on Source Forge. Some of the best sites I have found for details of new tools and releases are http://www.toolswatch.org/ & http://tools.hackerjournals.com

Wireshark
http://www.wireshark.org/download.html
The current stable release of Wireshark is 1.8.5. It supersedes all previous releases, including all releases of Ethereal.

ScanNow for Universal Plug and Play (UPnP)
https://www.rapid7.com/resources/free-security-software-downloads/universal-plug-and-play-jan-2013.jsp
The free scanner checks whether your network-enabled devices might be vulnerable to attack through the UPnP protocol.

The OWASP Zed Attack Proxy (ZAP
http://code.google.com/p/zaproxy/
The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing as well as being a useful addition to an experienced pen testers toolbox.

No comments:

Post a Comment