Events Related:

Resources:

Tools:

  • Suricata v0.8.1 – openinfosecfoundation.org
    The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine.
  • winAUTOPWN v2.2 – winautopwn.co.nr
    winAUTOPWN is an auto (hacking) shell gaining tool.
  • JBroFuzz 2.1 – owasp.blogspot.com
    Some new features are daily logs, custom fuzzers and more.
  • x5s – Automated XSS Security Testing Assistant – xss.codeplex.com
    x5s is a Fiddler add-on which aims to assist penetration testers in finding cross-site scripting vulnerabilities.
  • bsqlbf v2.5 – notsosecure.com
    SYS.KUPP$PROC.CREATE_MASTER_PROCESS() and BMS_JAVA_TEST.FUNCALL now included.
  • Web App Testing Tools – sans.org
    Security testers are always on the lookout for new or updated tools to test the security of web based applications.
  • netcatscripts – packetstormsecurity.org
    This tarball has a couple of bash scripts that use netcat to brute force ftp and scan for local and remote file inclusion vulnerabilities.
  • PBNJ – Network Architecture Monitoring Tool – darknet.org.uk
    PBNJ is a suite of tools to monitor changes on a network over time. It does this by checking for changes on the target machine(s).
  • Ubuntu Pentest Edition v2.03 – netinfinity.org
    Ubuntu Pentest Edition is a gnome based linux designed as a complete system which can also be used for penetration testing.
  • Flint 1.0.6 – runplaybook.com
    Just fixing some parser bugs that Jacob Kitchel helped us track down.

Techniques:

Vulnerabilities:

Vendor/Software Patches:

Other News: