Twenty Year Anniversary
Showing 1 - 25 of 1,260 RSS Feed

Files

TestSSL 3.0rc3
Posted Dec 1, 2018
Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: Added SSLv2 ciphers. TLS 1.3 improvements. Updated client simulation data. Various other updates and fixes.
tags | tool, scanner, protocol, bash
systems | unix
MD5 | 7549425af2bde7960a2068d7ce341eea
Lynis Auditing Tool 2.7.0
Posted Oct 26, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Added detection of TOMOYO binary, OpenSSH server versions. Changed several warning labels on screen. Various other updates.
tags | tool, scanner
systems | unix
MD5 | ac0ae8086e31f263f2da0c5c553686ba
SD-WAN Harvester 0.99
Posted Oct 11, 2018
Authored by SCADA Strangelove | Site github.com

SD-WAN Harvester is a tool that was created to automatically enumerate and fingerprint SD-WAN nodes on the Internet. It uses Shodan search engine for discovering, NMAP NSE scripts for fingerprinting, and masscan to implement some specific checks.

tags | tool, scanner
systems | unix
MD5 | 75dc2b2d79cfb235fa7088aeca36f57c
TestSSL 3.0rc2
Posted Oct 10, 2018
Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: Partly addresses TCP fragmentation. Added name check for XMPP servers. Added support for STARTTLS LMTP. TLS 1.3 and OpenSSL 1.1.1 fixes.
tags | tool, scanner, protocol, bash
systems | unix
MD5 | 029f30f3ca7a6e138662ee6e8d60dffb
Intel ME Manufacturing Mode Detection Tools
Posted Oct 4, 2018
Authored by Dmitry Sklyarov, Maxim Goryachy, Mark Ermolov | Site ptsecurity.com

Intel ME has a Manufacturing Mode designed to be used exclusively by motherboard manufacturers. This mode provides some additional opportunities that an attacker can take advantage of. When Manufacturing Mode is enabled, Intel ME allows execution of the command which makes the ME region writable via the SPI controller built into the motherboard. The ability to run code and send commands to Intel ME on the attacked system allows the attacker to rewrite the Intel ME firmware onto another version. So the attacker is able to deploy the firmware which is vulnerable to INTEL-SA-00086 and execute arbitrary code on Intel ME even if the system is patched. This archive contains Python 2.7 scripts for checking the state of the Intel ME Manufacturing Mode.

tags | tool, arbitrary, scanner, python
systems | unix
advisories | CVE-2018-4251
MD5 | 1a9b68acfbdb192e5529077542c33486
Lynis Auditing Tool 2.6.9
Posted Sep 25, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Man page has been updated. Command 'lynis show options' provides up-to-date list. Various other updates.
tags | tool, scanner
systems | unix
MD5 | bb3e61005fba356ec6a5412922663e9e
VBScan Vulnerability Scanner 0.1.8
Posted Sep 13, 2018
Authored by Mohammad Reza Espargham | Site owasp.org

VBScan is a black box vBulletin vulnerability scanner written in perl.

Changes: Updated vulnerabilities database. Various other updates and enhancements.
tags | tool, scanner, perl
systems | unix
MD5 | 130a1a1372cc4614c4dea54ac6d2493b
TestSSL 2.9.5-7
Posted Sep 7, 2018
Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: This update contains a few bugfixes only.
tags | tool, scanner, protocol, bash
systems | unix
MD5 | 62c5148ca576b0ec7229775b1ec69720
TestSSL 2.9.5
Posted Sep 5, 2018
Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: This update contains a few bugfixes only.
tags | tool, scanner, protocol, bash
systems | unix
MD5 | da5717d95120b32fc3d0a5fe80454f59
Lynis Auditing Tool 2.6.8
Posted Aug 24, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Alpine Linux detection for Docker audit added. Improved display in Docker output for showing which keys are used for signing. Various other updates.
tags | tool, scanner
systems | unix
MD5 | 91a538055bfb682733ef8e4fe7eb0902
Lynis Auditing Tool 2.6.7
Posted Aug 9, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Added busybox as a service manager. Changed classification of SSH root login with keys. Various other updates.
tags | tool, scanner
systems | unix
MD5 | 4614aab3885bbe05827c0ba5ca1103f5
Fwknop Port Knocking Utility 2.6.10
Posted Aug 8, 2018
Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added MAX_FW_TIMEOUT to access.conf stanzas to allow a maximum number of seconds for client-specified timeouts in SPA packets. Bug fix in CMD_EXEC mode to make sure to call exit() upon any error from execvpe(). Various other additions and fixes.
tags | tool, scanner, vulnerability
systems | unix
MD5 | 5b5850ab8684ce0bdf52ef400a83065c
Lynis Auditing Tool 2.6.6
Posted Jul 6, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: New format of changelog. Improved log text about running kernel version. Couple of fixes.
tags | tool, scanner
systems | unix
MD5 | 3708d3bde6fbe0dbb93dd1dda17b1872
DNS Spider Multithreaded Bruteforcer 1.0
Posted Jul 1, 2018
Authored by noptrix | Site noptrix.net

DNS Spider is a multi-threaded bruteforcer of subdomains that leverages a wordlist and/or character permutation.

Changes: Upgraded hard-coded subdomain wordlist. Various other updates.
tags | tool, scanner
systems | unix
MD5 | 90bb4b96d98d5dace0da730d964aea8a
Lynis Auditing Tool 2.6.5
Posted Jun 26, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Improved tests.
tags | tool, scanner
systems | unix
MD5 | cf77bb3afb5d3b1492b6b57f711855bc
Wapiti Web Application Vulnerability Scanner 3.0.1
Posted May 13, 2018
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: New module mod_methods to detect interesting methods which might be allowed by scripts (PUT, PROPFIND, etc). New module mod_ssrf to detect Server Side Request Forgery vulnerabilities (requires Internet access). Improved mod_xss and mod_permanentxss modules to reduce false positives. Many other additions, updates, and improvements.
tags | tool, web, scanner, vulnerability
systems | unix
MD5 | 81009cdf0a792ebb47db4215d56fbb01
Lynis Auditing Tool 2.6.4
Posted May 3, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Several contributions merged, including grammar improvements. Initial support for Ubuntu 18.04 LTS. Small enhancements for usage.
tags | tool, scanner
systems | unix
MD5 | a5afd484b7aabf8af73adbc67a8f8756
TestSSL 2.9.5-5
Posted Apr 16, 2018
Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: This update contains a bugfix (and a clarification in help/documentation) only. It does not contain any new features. The bug fix is for Mac OS X only.
tags | tool, scanner, protocol, bash
systems | unix
MD5 | 7ee1aa626b97ef52d6668d6017e13b04
XSSer Penetration Testing Tool 1.7-2
Posted Apr 13, 2018
Authored by psy | Site xsser.03c8.net

XSSer is an open source penetration testing tool that automates the process of detecting and exploiting XSS injections against different applications. It contains several options to try to bypass certain filters, and various special techniques of code injection.

Changes: Fixed SSL. Updated search engines. Various other updates and fixes.
tags | tool, scanner
systems | unix
MD5 | 86cfb5f7fa0e0b0bd34f11ea026b474d
TestSSL 2.9.5-4
Posted Apr 9, 2018
Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: This update contains a bugfix (and a clarification in help/documentation) only. It does not contain any new features.
tags | tool, scanner, protocol, bash
systems | unix
MD5 | d067f85eced11c0a7f36d863e08a45ab
Scapy Packet Manipulation Tool 2.4.0
Posted Mar 27, 2018
Authored by Philippe Biondi | Site secdev.org

Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions). Report modules are possible and easy to make. It is intended to do the same things as ttlscan, nmap, hping, queso, p0f, xprobe, arping, arp-sk, arpspoof, firewalk, irpas, tethereal, tcpdump, etc.

Changes: Python3 support added. Pcap/PcapNg improvements added as well as enhanced Windows support. TLS 1.3 supported. Various other updates.
tags | tool, scanner, python
systems | unix
MD5 | 5be9bca4fd894b067edc1a4ad48e92cb
TestSSL 2.9.5
Posted Mar 26, 2018
Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: This update contains several bugfixes as opposed to 2.9.5-2. It does not contain any new features.
tags | tool, scanner, protocol, bash
systems | unix
MD5 | 8d98ef6d0828bb09e58fd8ad0acb14ed
Lynis Auditing Tool 2.6.3
Posted Mar 7, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: A change in the routine for host identifiers. Various tests added and one plugin.
tags | tool, scanner
systems | unix
MD5 | e4e782e79706bff044cc3d2feb51e115
JoomScan 0.0.1
Posted Mar 5, 2018
Authored by Mohammad Reza Espargham | Site owasp.org

OWASP JoomScan is an opensource project for detecting Joomla CMS vulnerabilities. Written in Perl.

tags | tool, scanner, perl, vulnerability
systems | unix
MD5 | 7e5b960ec4f8e2fef8be1674212bf52e
TestSSL 2.9.5-2
Posted Feb 25, 2018
Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: This update contains several bugfixes as opposed to 2.9.5-1. It does not contain new features.
tags | tool, scanner, protocol, bash
systems | unix
MD5 | 70a59e38408d8fbd33f989d138e305ce
Page 1 of 51
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Ethical Hacking Growing In Popularity As Data Breaches Increase
Posted Dec 13, 2018

tags | headline, hacker, data loss
UK Whitehats Blacklisted By Cisco Talos
Posted Dec 13, 2018

tags | headline, malware, flaw, cisco
Shamoon Destroys Data At Italian Oil And Gas Company
Posted Dec 13, 2018

tags | headline, malware, data loss, italy, scada
Over Half Of Brazil's Population Exposed In Security Incident
Posted Dec 13, 2018

tags | headline, privacy, amazon, data loss, brazil
How To Tell If Your Partner Is Spying On Your Phone
Posted Dec 12, 2018

tags | headline, privacy, phone, spyware
It's December Of 2018 And, To Hell With It, Just Patch Your Stuff
Posted Dec 12, 2018

tags | headline, microsoft, flaw, patch
Former Mt. Gox CEO Could Face 10 Years For Embezzlement
Posted Dec 12, 2018

tags | headline, cybercrime, fraud, japan, cryptography
Ticketmaster Fails To Take Responsibility For Malware
Posted Dec 12, 2018

tags | headline, hacker, privacy, malware, data loss
Experian Exposes Apparent Customer Data In Training Manuals
Posted Dec 12, 2018

tags | headline, privacy, bank, cybercrime, data loss, fraud, identity theft
Planet-Hacking Became More Urgent And Terrifying Than Ever This Year
Posted Dec 11, 2018

tags | headline, science
View More News →
packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close