napredna pretraga
[ naslovna ] | [ za webmastere ] zastita feeds

07-04-2009 9:19

WepBuster v1.0 beta0.5 released

This small utility was written for Information Security Professionals to aid in conducting Wireless Security Assessment. The program executes various utilities included in the aircrack-ng suite, a set of tools for auditing wireless networks, in order to obtain the WEP encryption key of a wireless access point. aircrack-ng can be obtained from http://www.aircrack-ng.org
Features:
Cracks all access points within the range in one go!! Supports:
Mac address filtering bypass (via mac spoofing) (...) - Security Tools / AirCrack-ng, Wireless, Password Cracking, Bruteforcers, WebBuster


Tools ::  security-database



Povezani zapisi:

09-02-2010 21:00

Microsoft EMETv2 released, (Thu, Sep 2nd)

Today, Microsoft released a new version of their Enhanced Mitigation Experience Toolkit. A rather unwieldy name, but quite interesting technology - with EMET, legacy applications on OS versions as far back as WindowsXP can now also be protected with Data Execution Prevention (DEP), Exception Handler Overwrite Protection (SEHOP) and more, and the application doesn't even have to be DEP-aware. If you have vulnerable legacy apps on Windows that you need to keep alive for a little while longer, I suggest to take a look at EMETv2. (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License. 

ISC

08-31-2010 2:35

Wireshark 1.4.0 released, (Tue, Aug 31st)



This is a new release branch of Wireshark and they have added many new features such as preliminary Python scripting support, you can open JPEG files directly in Wireshark and a large number of new protocols to name a few.
Reference:
Release Notes and bug fixes: http://www.wireshark.org/docs/relnotes/wireshark-1.4.0.html
The new version is available here: http://www.wireshark.org/download.html
-----------
Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot org
SANS Network Forensics 558: Coming to Toronto, ON in Nov 2010 (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License. 

ISC

08-27-2010 21:50

OWASP ModSecurity Core Rule Set (CRS) v2.0.8 Released

Greetings everyone, I wanted to announce the availability of the OWASP ModSecurity CRS v2.0.8. You can also use the util/rules-updater.pl script to auto-download thelatest ZIP archive (see the rules-updater-example.conf file for Repo data). TESTING - We have integrated the new CRS into the Demo page to help facilitate community testing - http://www.modsecurity.org/demo/ CHANGES - -------------------------- Version 2.0.8 - 08/27/2010 -------------------------- Improvements: - Updated the PHPIDS filters - Updated the SQL Injection filters to detect boolean attacks (1<2, foo == bar, etc..) - Updated the SQL Injection filters to account for different quotes - Added UTF-8 encoding validation support to the modsecurity_crs_10_config.conf file - Added Rule ID 950109 to detect multiple URL encodings - Added two experimental rules to detect anomalous use of special characters Bug Fixes: - Fixed Encoding Detection RegEx (950107 and 950108) - Fixed rules-updater.pl script to better handle whitespace https://www.modsecurity.org/tracker/browse/MODSEC-167 - Fixed missing pass action bug in modsecurity_crs_21_protocol_anomalies.conf https://www.modsecurity.org/tracker/browse/CORERULES-55 - Fixed the anomaly scoring in the modsecurity_crs_41_phpids_filters.conf file https://www.modsecurity.org/tracker/browse/CORERULES-54 - Updated XSS rule id 958001 to improve the .cookie regex to reduce false postives https://www.modsecurity.org/tracker/browse/CORERULES-29 

Feed!

08-27-2010 21:50

OWASP ModSecurity Core Rule Set (CRS) v2.0.8 Released

Greetings everyone, I wanted to announce the availability of the OWASP ModSecurity CRS v2.0.8. You can also use the util/rules-updater.pl script to auto-download thelatest ZIP archive (see the rules-updater-example.conf file for Repo data). TESTING - We have integrated the new CRS into the Demo page to help facilitate community testing - http://www.modsecurity.org/demo/ CHANGES - -------------------------- Version 2.0.8 - 08/27/2010 -------------------------- Improvements: - Updated the PHPIDS filters - Updated the SQL Injection filters to detect boolean attacks (1<2, foo == bar, etc..) - Updated the SQL Injection filters to account for different quotes - Added UTF-8 encoding validation support to the modsecurity_crs_10_config.conf file - Added Rule ID 950109 to detect multiple URL encodings - Added two experimental rules to detect anomalous use of special characters Bug Fixes: - Fixed Encoding Detection RegEx (950107 and 950108) - Fixed rules-updater.pl script to better handle whitespace https://www.modsecurity.org/tracker/browse/MODSEC-167 - Fixed missing pass action bug in modsecurity_crs_21_protocol_anomalies.conf https://www.modsecurity.org/tracker/browse/CORERULES-55 - Fixed the anomaly scoring in the modsecurity_crs_41_phpids_filters.conf file https://www.modsecurity.org/tracker/browse/CORERULES-54 - Updated XSS rule id 958001 to improve the .cookie regex to reduce false postives https://www.modsecurity.org/tracker/browse/CORERULES-29 

Feed!








Brza pretraga:

xss
antivirus
security
vulnerability
avast
SPAM
attacks
pentesting
microsoft
kasper
zastita


Sponzorisani linkovi:

Grcki stubovi
Torte