Events Related:

Resources:

Tools:

  • VIPER Lab’s VAST Live Distro for VOIP security assessment – vipervast.sourceforge.net
    The distro includes VoIP security assessment tools such as UCsniff, VoipHopper, and more.
  • SFDumper 2.1 has been released – sfdumper.sourceforge.net
    This is an Open Source free computer forensics useful tool written in Bash Script for Linux systems.
  • DVWA v1.0.6 – dvwa.co.uk
    Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable.
  • Code Crawler 2.4 Beta Release – codecrawler.codeplex.com
    A tool aimed at assisting code review practitioners.
  • Top 15 free SQL Injection Scanners – rochakchauhan.com
    A list of free SQL Injection Scanners that will be of value to both web application developers and professional security auditors.
  • Netsparker – The Final Beta! – mavitunasecurity.com
    The latest and final beta build bakes in better performance, improved engines, among others.
  • Metasm – Assembly Manipulation Suite – metasm.cr0.org
    Metasm is a cross-architecture assembler, disassembler, compiler, linker and debugger.
  • IMA Project : Identity Management Auditor Project – xmcopartners.com/ima
    IMA provides a simple way to audit Identity Management, is composed of several dedicated modules.
  • Burp v1.2.17 – portswigger.net
    Burp Scanner now allows reporting of issues in XML format, to enable easy integration with other tools.
  • sqlmap v0.8 – sqlmap.sourceforge.net
    Sqlmap is an open source command-line automatic SQL injection tool.
  • Charles Proxy v3.4 – charlesproxy.com
    Charles is an HTTP proxy / HTTP monitor / Reverse Proxy that enables a developer to view traffic between their machine and the Internet.
  • OpenSCAP v0.5.3 – open-scap.org
    It is the goal of OpenSCAP to provide a simple, easy to use set of interfaces to serve as the framework for community use of SCAP
  • SSLScan – Fast SSL Scanner – sourceforge.net/projects/sslscan/
    SSLScan queries SSL services, such as HTTPS, in order to determine the ciphers that are supported.
  • OpenVAS 3.0 Beta – wald.intevation.org
    OpenVAS 3.0 introduces a new architecture where openvas-libraries is now mandatory dependency for openvas-client.
  • Windd 1.3 Final! (x86 and x64) – msuiche.net
    Windd is a free Windows utility which aims at being used as a swiss-knife to acquire physical memory.

Techniques:

Vulnerabilities:

Vendor/Software Patches:

Other News: