May 31, 2013

Tools: Acrylic WiFi

Acrylic WiFi (Beta) is a new product for security analysis and monitoring of wireless networks, that Tarlogic has been developing over the past year. Acrylic is able to evaluate several controls of the OWISAM methodology.
This application runs under Windows Vista/7/8 with .NET support. Acrylic captures information from the following sources:


Source: https://www.tarlogic.com/en/products/acrylic-wifi

If you like my blog, Please Donate Me
Or Click The Banner For Support Me.

Veil – A Payload Generator to Bypass Antivirus

On nearly every assessment, pen testers have to fight a battle against antivirus solutions.  The level of effort that goes into each “battle” relies on the AV solution, its definitions, etc.  Researching methods to bypass antivirus solutions has been an interest of mine on and off  for the past 6 months. About two months ago I started to take a more serious look in how I could take my recent research and turn it into something that more usable and useful.  I set out with a couple goals:
  • Bypass common AV solutions that I/we routinely encounter in most network environments
  • Utilize payloads that are compatible with the Metasploit framework, and expand upon these in future releases
  • Attempt to make each payload file as random as possible
Source: https://www.christophertruncer.com/veil-a-payload-generator-to-bypass-antivirus/


If you like my blog, Please Donate Me
Or Click The Banner For Support Me.

Tools: (Addon) Codesake Dawn: The New Security Source Code Scanner for Ruby

Codesake::Dawn has (in the 0.60 version) three different kind of security checks:
  • pattern matching
  • dependency check
  • ruby interpreter version
Each security check is a separate ruby class, so knowledge base has to include them all in its very beginning. Each security check can be also be applied only to one mvc from rails, sinatra, padrino or it can be applied to more than a single mvc at the time.
The core part of the knowledge base class is the load_security_checks method called during class initialization. It creates an instance of each security check class contained in the knowledge base, populating an array of ruby objects to be used during the analysis.

Source: http://armoredcode.com/blog/codesake-dawn-the-new-security-source-code-scanner-for-ruby/


If you like my blog, Please Donate Me
Or Click The Banner For Support Me.

Tools: (Addon) WP WAF - Wordpress Web Application Firewall

WP WAF is a WordPress Web Application Firewall.
It is currently maintained by Gianni 'guelfoweb' Amato, who can be contacted at guelfoweb@gmail.com.
Suggestions and criticism are welcome.


Source:  https://github.com/guelfoweb/wp-waf/blob/master/README.md

If you like my blog, Please Donate Me
Or Click The Banner For Support Me.
 

Sponsors

lusovps.com

Blogroll

About

 Please subscribe my blog.

 Old Subscribe

Share |