tag:blogger.com,1999:blog-351929962011-04-22T10:16:08.747+06:30InfoSec Diary 101ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.comBlogger111100tag:blogger.com,1999:blog-35192996.post-1159800832133715282006-10-02T21:23:00.001+06:302006-10-02T21:37:14.056+06:30<b>Vulnerability Assessment Tools</b><br />Nessus<br />GFI LANguard<br />NStalker<br />Dante Security Scanner<br />X-Scan<br />Attack Tool Kit<br />eEye Digital Security Retina <br />Symantec NetRecon <br />SARA<br />SAINT <br />WebInspect<br />Core Impact<br />Canvas<br />Acunetix<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115980083213371528?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159800849716964982006-10-02T21:23:00.000+06:302006-10-02T21:24:09.716+06:30<b>Port Scanners</b><br />WUPS<br />IPeye<br />NmaP<br />SuperScan<br />MingSweeper<br />7th Sphere<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115980084971696498?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159800782276060242006-10-02T21:22:00.001+06:302006-10-02T21:23:02.276+06:30<b>Fingerprint:</b><br /><br />httprint<br />hmap<br />smtpscan<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115980078227606024?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159800753455887792006-10-02T21:22:00.000+06:302006-10-02T21:22:33.456+06:30<b>SMB Enumeration</b><br />nbtscan<br />nbtenum<br />enum<br />enum(plus)<br />dumpsec<br />nltest<br />sid2user<br />user2sid<br />getmac<br />epdump<br />browmon<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115980075345588779?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159800718292754702006-10-02T21:21:00.000+06:302006-10-02T21:21:58.293+06:30<b>DNS Enumeration: </b><br /><br />dnszone.pl<br />dnsenum<br />dnsdigger<br />ghba<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115980071829275470?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159800668272638302006-10-02T21:20:00.000+06:302006-10-02T21:21:08.283+06:30<b>Firewall Penetration Testing: </b><br />http://www.wittys.com/files/mab/fwpentesting.html<br /><br />[Tools]<br />traceroute -S -p53 (modified version)<br />firewalk<br />hping<br />icmpenum<br />isic<br />nmap<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115980066827263830?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159799847197251652006-10-02T21:07:00.000+06:302006-10-02T21:07:27.196+06:30<b>Enumeration</b><br />Catwalk<br />mac2ip<br />NBTscan<br />Fport<br />GetAcct<br />UserDump<br />UserInfo<br />Nete<br />Enum<br />User2sid/sid2user<br />Legion<br />DumpSec<br />netcat<br />icmpquery<br />icmpenum<br />Pinger<br />SamSpade<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115979984719725165?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159799829704749482006-10-02T21:03:00.000+06:302006-10-02T21:09:41.346+06:30<b>Web Application Assessment Tools :</b><br /><br />Paros Proxy<br /><br />Absinthe<br /><br />Achilles<br /><br />SpikeProxy<br /><br />SWAAT<br /><br />WebSleuth<br /><br />WebScarab<br /><br />Security Compass Web Application Analysis Tool - SWAAT <br />http://www.securitycompass.com/swaat/swaat.zip<br /><br />Oedipus - Open Source Web Application Security Analysis <br />http://oedipus.rubyforge.org/downloads.html<br /><br />eEye Binary Diffing Suite (EBDS) <br />http://research.eeye.com/html/Tools/download/DiffingSuiteSetup.exe<br /><br />SpikeSource Spike PHP Security Audit Tool <br />http://developer.spikesource.com/projects/phpsecaudit<br /><br />Sprajax - An Open Source AJAX Security Scanner <br />http://www.denimgroup.com/Sprajax/Sprajax_Version_0_03.zip<br /><br />Wapiti - Web Application Scanner / Black-box testing <br />http://wapiti.sourceforge.net/<br /><br /><br /><br />[Ref:]<br />Academic Papers in Web Application Security<br />http://suif.stanford.edu/~livshits/work/griffin/lit.html<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115979982970474948?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159799555579961562006-10-02T20:56:00.000+06:302006-10-02T21:02:35.580+06:30<b>SQL Tools</b><br /><br />SQL Power Injector v1.1 Released <br />http://www.sqlpowerinjector.com/<br /><br />bsqlbf 1.1 - Blind SQL Injection Tool<br />http://www.514.es/html/2006/04/05<br /><br />sqlninja 0.1.0alpha - MS-SQL Injection Tool <br />http://sqlninja.sourceforge.net/<br /><br />SQLRecon<br /><br />NGSSQLCrack<br /><br />NGSSQuirreL<br /><br />SQLdict<br /><br />SQLpoke<br /><br />forceSQL<br /><br />SQLCrawl<br /><br />SQLExec<br /><br />SQLScan<br /><br />THCsql<br /><br />WPoison (wpoison.sourceforge.net)<br />This tool is to find any potential SQL-Injection vulnerabilities <br /><br /><br /><br />[Ref:]<br />http://www.spidynamics.com/papers/SQLInjectionWhitePaper.pdf<br />http://www.ngssoftware.com/papers/advanced_sql_injection.pdf<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115979955557996156?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159473092649461452006-09-29T02:19:00.000+06:302006-09-29T02:21:32.670+06:30<a name="REALVNCUA"></a><strong>RealVNC remote administration unauthroized access</strong><br /><br />Published: 08.08.2006<br />Source: <a href="http://www.security.nnov.ru/source/FULL-DISCLOSURE.html">http://www.security.nnov.ru/source/FULL-DISCLOSURE.html</a><br />Type: <a title="vulnerability in server comonent which potentially can be exploited by any remote user">remote</a><br />Level: 7/10<br />Description: Server doesn't check authentication type choosen by client is allowed.<br />Affected: <a href="http://www.security.nnov.ru/source/REALVNC.html">REALVNC</a>:<a href="http://www.security.nnov.ru/soft/8843.html">RealVNC 4.1</a>, <a href="http://www.security.nnov.ru/source/LIBVNCSERVER.html">LIBVNCSERVER</a>:<a href="http://www.security.nnov.ru/soft/9357.html">LibVNCServer 0.7</a>, <a href="http://www.security.nnov.ru/source/X11VNC.html">X11VNC</a>:<a href="http://www.security.nnov.ru/soft/9509.html">x11vnc 0.8</a><br /><br />Files:<br /><a href="http://www.security.nnov.ru/files/VNC_bypauth-win32.rar">http://www.security.nnov.ru/files/VNC_bypauth-win32.rar</a><br /><a href="http://www.security.nnov.ru/files/VNC_bypauth-linux.tar.gz">http://www.security.nnov.ru/files/VNC_bypauth-linux.tar.gz</a><br /><a href="http://www.security.nnov.ru/files/realvncscan.pl">http://www.security.nnov.ru/files/realvncscan.pl</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115947309264946145?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0tag:blogger.com,1999:blog-35192996.post-1159465877005334342006-09-29T00:00:00.000+06:302006-09-29T00:57:48.456+06:30<strong>Security Live CD Distributions</strong><br /><br />01. BackTrack (My Favorite)<br /><a href="http://www.remote-exploit.org/index.php/BackTrack">http://www.remote-exploit.org/index.php/BackTrack</a><br />02. Operator<br /><a href="http://www.ussysadmin.com/operator/">http://www.ussysadmin.com/operator/</a><br />03. PHLAK<br /><a href="http://www.phlak.org/modules/mydownloads/">http://www.phlak.org/modules/mydownloads/</a><br />04. Auditor (Good One)<br /><a href="http://www.remote-exploit.org/index.php/Auditor_mirrors">http://www.remote-exploit.org/index.php/Auditor_mirrors</a><br />05. L.A.S Linux<br /><a href="http://www.localareasecurity.com/download">http://www.localareasecurity.com/download</a><br />06. Knoppix-STD<br /><a href="http://www.knoppix-std.org/download.html">http://www.knoppix-std.org/download.html</a><br />07. Helix (Forensic)<br /><a href="http://www.e-fense.com/helix/">http://www.e-fense.com/helix/</a><br />08. F.I.R.E (another Forensic)<br /><a href="http://fire.dmzs.com/">http://fire.dmzs.com/</a><br />09. nUbuntu<br /><a href="http://www.nubuntu.org/downloads.php">http://www.nubuntu.org/downloads.php</a><br />10. INSERT<br /><a href="http://www.inside-security.de/insert_en.html">http://www.inside-security.de/insert_en.html</a><br /><br />Somebody has already wrote the details about them. So, I will not bother writing here again.<br /><em>Visit:</em><br /><a href="http://www.darknet.org.uk/2006/03/10-best-security-live-cd-distros-pen-test-forensics-recovery/">http://www.darknet.org.uk/2006/03/10-best-security-live-cd-distros-pen-test-forensics-recovery/</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/35192996-115946587700533434?l=infosecdiary101.blogspot.com' alt='' /></div>ONAUXhttp://www.blogger.com/profile/18390738179653864287noreply@blogger.com0