Weekly round up of pen test and forensic tools that have come to my attention over the last week, it is not a comprehensive tool list but tools that I found interesting or details of tools I use that have been upgrade.
Security analysis tool Trisul 2.4 released
http://trisul.org/
is a kind of network monitor that supplements fine grained traffic metering with flows, packets, and alerts. You can carry out any kind of network and security analysis.
Nmap 6 released
http://nmap.org/
Nmap is a free and open source utility for network exploration or security auditing. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics.
Saint 7.13
http://www.saintcorporation.com/
SAINT releases new product version 7.13 including support for Ubuntu 12.04 LTS; content search enhancemnts; expanded diagnostics for blind SQL injection; CVSS scoring in all default reports; and lots more.
CSRF-Request-Builder
https://github.com/TheRook/CSRF-Request-Builder
This is a tool for testing CSRF against web services. This is a complete test in that it can be used to create PoC exploits to exploit real victims and real systems in a real world scenario. After all if it didn't work in the real world it wouldn't be a useful test
The Social-Engineer Toolkit (SET) 3.3 Codename “DerbyCon 2.0 Edition” has been released.
https://www.secmaniac.com/blog/2012/05/21/the-social-engineer-toolkit-set-3-3-codename-derbycon-2-0-edition-has-been-released/
“The Social Engineering Toolkit (SET) is an open source, python-driven, social-engineering penetration testing framework of custom tools which solely focuses on attacking the human element of penetration testing.
No comments:
Post a Comment