Events Related:



  • Fuzzdb –
    A comprehensive set of fuzzing patterns for discovery and attack during highly targeted brute force testing of web applications.
  • ReFrameworker v1.1 –
    ReFrameworker performs the required steps of runtime manipulation by tampering with the binaries containing the framework’s classes.
  • Sandcat v4.0 –
    Sandcat allows web administrators to perform aggressive and comprehensive scans of an organization’s web server to isolate vulnerabilities and identify security holes.
  • OWASP Code review Guide v2.7 –
    A tool aimed at assisting code review practitioners.
  • OpenSCAP v0.5.9 –
    It is the goal of OpenSCAP to provide a simple, easy to use set of interfaces to serve as the framework for community use of SCAP.
  • Xplico v0.5.6 –
    Xplico is an open source Network Forensic Analysis Tool (NFAT).
  • Security Ninja security tool, more than a sneak preview! –
    This idea was inspired by the Application Security Portfolios blog post that Nick Coblentz published in 2009.
  • Blazentoo –
    Blazentoo is an Adobe AIR application that can be used to exploit insecure Adobe BlazeDS and LiveCycle Data Services ES servers.
  • Skipfish v1.33B –
    Skipfish is an active web application security reconnaissance tool.
  • SIP Inspector –
    SIP Inspector is a tool written in JAVA to simulate different SIP messages and scenarios.
  • Aircrack-ng v1.1 –
    It implements the standard FMS attack along with some optimizations like KoreK attacks.



Vendor/Software Patches:

  • PayPal Patches Critical Security Vulnerabilities –
    A security researcher has uncovered multiple vulnerabilities affecting PayPal, the most critical of which could have enabled attackers to access PayPal’s business and premier reports back-end system.

Other News: