Blogs

RATS (Rough Auditing Tool for security)

RATS (Rough Auditing Tool for security) is a tool for scanning C, C++, Perl, PHP, Python (and soon Ruby) source code to find common security related programming errors.

Make your code secure using RATS. For more information visit https://code.google.com/p/rough-auditing-tool-for-security/

To Download it

https://code.google.com/p/rough-auditing-tool-for-security/downloads/list

CHEERS

Wireless IDS

I have found this neat tool while just searching for some IDS. Check it out ...

DA-WIN, a wireless IDS, provides an organization a continuous wireless scanning capability that is light touch and simple

Url - http://packetstormsecurity.com/files/128300/DAWIN-Distributed-Audit-and-...

Happy Hacking ......

Hic !!!!

Penetration Testing Tool

A must have penetration tool

http://beefproject.com/

From the project website

BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.

Happy Hacking ...... :)

Intrusion Detection and Prevention Engine

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field.

Download it from here - http://www.openinfosecfoundation.org/index.php/downloads

Have fun . ..

Linux Auditing Tool

Lynis an excellent tool to audit your linux servers. As per the website

Lynis is an open source security auditing tool. Primary goal is to help users with auditing and hardening of Unix and Linux based systems. The software is very flexible and runs on almost every Unix based system (including Mac). Even the installation of the software itself is optional!.

Go GET IT from - http://cisofy.com/lynis/

Happy Auditing

.......have fun

Penetration Testing

Check out this distribution with collection of great tools to perform forensic analysis, incident response, data recovery, virus scanning and vulnerability assessment.

http://fire.dmzs.com/

Happy Hunting ... Bleh

Hackers Comic

All you wanna be hackers new bees check out below comic strip ... for some geeky cool comic

http://www.hackerstrip.com/

FUNZzzzzzz.....

Night Lion Security PHP Stress

Night Lion Security proof of concept denial of service / stress tester for PHP websites running with Apache and NGINX systems (PHP-FPM and PHP-CGI)

About - https://www.nightlionsecurity.com/blog/news/2014/04/phpstress-dos-attack...

to Download it - http://packetstormsecurity.com/files/download/126513/phpstress-master.zip

Have Fun ......

Etherape - Check your Network Traffic

A nice GUI interface to see where your network traffic is going to or coming from.

Screenshots - http://etherape.sourceforge.net/images/index.html

Website - http://etherape.sourceforge.net/

Have fun

Random Js Virus

In late 2009 and early 2010 i have seen a new kind of Attack on websites which Security Companies Named as Random Js Virus. It used to insert a java script code to redirect the page on a rogue website inside tag. Lately they have started putting encrypted code to make it look like a genuine code.

I am still seeing its happening to lost of websites. The main reason are : -

1) Week FTP Passwords

2) FTP traffic in plain text

3) Sql Injection