The Professional Security Testers Warehouse for the GPEN GSEC GCIH GREM CEH QISP Q/ISP OPST CPTS

JavaScript must be enabled in order for you to use the site navigation menus.
However, it seems JavaScript is either disabled or not supported by your browser for the PST web site.

Penetration Testing the way it was meant to be

You are certified but are your qualified? Become qualified today.

JavaScript must be enabled in order for you to use the site navigation menus.
However, it seems JavaScript is either disabled or not supported by your browser for the PST web site.

Video Library

Skimming for ID theft

Views: 179
Comments: 1
11-01-2008 00:18

Latest version of ATM skimmer hidden behind a speaker looking device

Views: 193
Comments: 0
11-01-2008 00:11

ATM Scam, do check your ATM machine before using it

Views: 180
Comments: 1
10-31-2008 23:59

Who's Online

There are currently, 107 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here

Current Active Topics
Click to list all articles in this topic

Acunetix

· Topic: Acunetix
· Total News: 1
· Total Reads: 3828

Review of the Acunetix Web Vulnerability Scanner

Application Scanners

· Topic: Application Scanners
· Total News: 12
· Total Reads: 18649

Hyena Version 8.0 has been released

Web Application Scanners Comparison

Vulnerability Scanning Doesn't Work

Turning FireFox to an application auditing platform

Cenzic Web Application Security Newsletter

snmpcheck.pl V1.2 SNMP Information Gathering tool has been released

Cenzic Releases Breakthrough Nessus Plug-Ins for Application Vulnerabilities

Web attacks â€“ can your web applications withstand the force?

Universal Plug and Play Scanner

AppRecon -- New application scanner from CQure

· More -->

Attack Tool Kit

· Topic: Attack Tool Kit
· Total News: 4
· Total Reads: 20374

The new Netcat (Ncat) Update and Features

The Attack Toolkit 4.0 has been released

Atttack Toolkit (ATK) version 3.0 has been released

ATK -- The Attack Tool Kit

BackTrack

· Topic: BackTrack
· Total News: 3
· Total Reads: 3778

BSD Magazine -- Get your FREE copy

BackTrack 4 Beta has been released -- Now based on Ubuntu

BackTrack 3 Beta has been released

Black Hat

· Topic: Black Hat
· Total News: 19
· Total Reads: 46520

Call for Papers - Black Hat Abu Dhabi 2010

Archive of the Black Hat conference are now online

Black Hat USA Videos available to Download

Video Archive of Black Hat DC 2009 Briefings Speakers Hyatt Regency Crystal City

BlackHat Washington, DC -- Reserve your seat now

Happy Holidays from Black Hat!

Black Hat Tokyo + DC and Europe CfPs now open

Attend Black Hat USA, July 28-August 2 in Las Vegas

Call For Papers for Black Hat USA

Side_Winder BlackHat Report

· More -->

BlackBerry

· Topic: BlackBerry
· Total News: 1
· Total Reads: 4601

Blackjacking or 0wning the Enterprise via the Blackberry

Bluetooth

· Topic: Bluetooth
· Total News: 7
· Total Reads: 10597

Bluetooth Hacking and Testing Utilities

BTCrack pairing handshake cracker for Bluetooth

Bluetooth cracking tools released

T-Bear Bluetooth Scanner and DoS tool

BSS The Bluetooth Stack Smasher

BTScanner 2.0 Released

BlueTest A Bluetooth Scanner

Book CEH Cert

· Topic: Book CEH Cert
· Total News: 5
· Total Reads: 5707

The Secret of Hacking -- Who is Leo Impact ??

Books: Official Study Guide for the CEH exam

Books: CEH Prep Guide by Krutz and Vines

Books: Gray Hat Hacking : The Ethical Hacker Handbook Second Edition

Hands-On Ethical Hacking and Network Defense

Books Auerbach

· Topic: Books Auerbach
· Total News: 3
· Total Reads: 6265

The Ethical Hack: A Framework for Business Value Penetration Testing

Recently published books by Auerbach

Books Cisco

· Topic: Books Cisco
· Total News: 2
· Total Reads: 3194

Cisco Torch - Mass Cisco Vulnerability Scanner

Network Security First Step

Books for testers

· Topic: Books for testers
· Total News: 12
· Total Reads: 24868

Attack Simulation and Threat Modeling

Security Analysis and Data Visualization - A book

The Hacker’s Underground Handbook

Pick the Right Tool for the Job: Penetration Tests, Vulnerability Assessment and

New book: The Art of Software Security Assessment

Secure Coding The 19 Deadly Sins of Software Security

"TAKEDOWN" TO FINALLY BE RELEASED IN USA AS "TRACK DOWN"

New Book on how to discover Security Holes

Review of the Hack Notes Web Security by HNS

HOT OFF THE PRESS

· More -->

Books Honeynet

· Topic: Books Honeynet
· Total News: 1
· Total Reads: 980

Know your enemy 2nd Edition is out

Books McGraw Hill

· Topic: Books McGraw Hill
· Total News: 2
· Total Reads: 2883

Gray Hat Hacking -- The Ethical Hacker's Handbook

Shon Harris new book on Ethical Hacking

Books O'Reilly

· Topic: Books O'Reilly
· Total News: 3
· Total Reads: 10713

Zero Day Exploit

IP Network Scanning

New books from O'Reilly

Books SAMS

· Topic: Books SAMS
· Total News: 1
· Total Reads: 998

Inside Network Perimeter Security, 2nd Edition

Books Wiley & Sons

· Topic: Books Wiley & Sons
· Total News: 2
· Total Reads: 2086

The Shellcoder Handbook Has Been Released

New book on Security Testing from Jack Koziol has been released

Browsers Addons

· Topic: Browsers Addons
· Total News: 4
· Total Reads: 4225

Pwn2Own 2009 Day 1 - Safari, Internet Explorer, and Firefox Taken Down by Four Z

Firecat 1.5 released -- Catalog of browser security and auditing extensions

Your browser is a very powerful weapon

Turning Firefox to an Ethical Hacking Platform

Brute Force

· Topic: Brute Force
· Total News: 0
· Total Reads: 0

...There aren't any news yet for this topic...

Cancerboro

· Topic: Cancerboro
· Total News: 1
· Total Reads: 1106

Cancerbero 0.5.1 has been released -- A fantastic supplement to NMap

Canvas

· Topic: Canvas
· Total News: 1
· Total Reads: 1286

VulnDisco Pack version 1.2 is available

CEH

· Topic: CEH
· Total News: 22
· Total Reads: 62783

RENEWAL Information for CEH!

The EC-Council CHFI Version 4 is soon to be released

Resume of the CEH Webcast I attended yesterday

EC-Council Members Webinar - November 2008

FREE Sample Penetration Testing Report Template

C|EH v6 Security Experts or Monkeys with Tool Exposure

Webinar for EC-Council's Members - August 2008 - Get your CPE's

EC-Council Offers Details and Insights on CEH v6

EC-Council Continuing Education Point System (ECE)

EC-Council Continuing Education (ECE) Credits

· More -->

CEH in the News

· Topic: CEH in the News
· Total News: 2
· Total Reads: 2385

EC-Council Awarded More NSA CNSS Certifications

CEHinthenews: EC-Council Partners with University of Limerick for Specialist Diploma

CISCO

· Topic: CISCO
· Total News: 10
· Total Reads: 20669

FREE Cisco CCNP TSHOOT Webcast

Hacking Small Office or Home office (SOHO) routers

Digital Short Cut products from Cisco Press

Cisco Press Publishes Products for New Cisco 640-863 CCDA Exam

CCNA Video Mentor - A new product offering from CiscoPress

Cisco VPN Clients Passwords can be decrypted

ISS researcher quits job to detail Cisco flaws

Do you talk layer two? Yersinia does...

Yersinia - Layer 2 Attack Framework

A couple of nice tools for Cisco probes

CORE IMPACT

· Topic: CORE IMPACT
· Total News: 12
· Total Reads: 19247

1st Open Backdoor Hiding & Finding Contest to be held at DEFCON 0x12

Exomind framework and console from CoreSecurity

The Academy - Security Webcasts with Ed Skoudis & Eric Cole

Pass-The-Hash Toolkit V1.1 has been released

Pass-The-Hash Toolkit

CORE FORCE update has been released

PaulDotCom Interview with Ivan Arce from CORE

Identifying Present Dangers in your Network Security

Review of Penetration Testing Software

IDC paper on Penetration Testing

· More -->

Cryptography

· Topic: Cryptography
· Total News: 2
· Total Reads: 1870

Android apps for encrypting calls and texts

Implications Of The Recent Hash Function Attacks

Data Loss DB

· Topic: Data Loss DB
· Total News: 2
· Total Reads: 14371

DataLossDB Weekly Summary -- Data losses are not slowing down

Data Loss Database (DLDOS) under the OSF umbrella

Defense

· Topic: Defense
· Total News: 6
· Total Reads: 18091

Illegal Credit Card Skimming Device

Are there perils in penetration testing

Zigstack V5 has been released

Fakebust 0.1 Beta

New version of MD5DEEP released

Zigstack - TCP/IP Stack Hardening for Windows

DNS Digging

· Topic: DNS Digging
· Total News: 6
· Total Reads: 8774

"Google DNS" a competitor to "Open DNS"

Fierce Domain Scanner

txdns 2.0.0 An aggressive multithreaded DNS digger/brute-forcer

TXDNS an aggressive multithreaded DNS digger

OzymanDNS

New verions of DNSDigger has been released

Do's and Don't

· Topic: Do's and Don't
· Total News: 4
· Total Reads: 24435

Data Validation in Web Applications -- A modular approach

The Inherent Dilemma of Security Consulting

The nuts and bolts of Security Assessment

IP address you should NOT scan

Document Secrets

· Topic: Document Secrets
· Total News: 2
· Total Reads: 2353

Document Grinding Tool

Strike Out - Word Revisions Recovery Tool

DotNet

· Topic: DotNet
· Total News: 1
· Total Reads: 1087

Interesting ASP .NET googling research

Exploits

· Topic: Exploits
· Total News: 13
· Total Reads: 39642

Links/tutorials on writing windows (stack based) exploits

Microsoft FTP Client Multiple Bufferoverflow Vulnerability

Microsoft Internet Explorer Local File Accesses Vulnerability

Find all MS Security Bulleting exploits

How to install Nessus on Backtrack 2.0

FrSIRT previously known as Kotik Puts Exploits up for Sale

HACKING WITH JAVASCRIPT

Exploit Instruction Code Construction

The Black Angels

Seringe - Statically Compiled ARP Poisoning Tool

· More -->

Firewall_Testing

· Topic: Firewall_Testing
· Total News: 3
· Total Reads: 3154

FTester version 1.0 has been released

The Firewall Identification Document has been updated

Firewall Identification Document

Forensic

· Topic: Forensic
· Total News: 7
· Total Reads: 25855

SFDumper 2.1 has been released

MSN Shadow - Instant Messaging Forensics Tool

2008 Data Breach Investigations Report

Fresh New Face for Forensics Tool

The Forensics WIKI

Digital Forensic Toolkits

Sleuth Kit and Autopsy Forensic tools have been updated

FoundStone

· Topic: FoundStone
· Total News: 1
· Total Reads: 1167

Foudstone new Hacme Bank application

Get Out of Jail

· Topic: Get Out of Jail
· Total News: 1
· Total Reads: 2740

Get Out of Jail, Sample document from Clement

Hakin9

· Topic: Hakin9
· Total News: 20
· Total Reads: 38247

September issue of Hakin9 magazine: Mobile Malware – the new cyber threat

Hakin9 August Issue: Securing the cloud

Haking 9 SECURING VOIP July edition available for FREE download

Hackin9 June Edition FREE Download -- Get it now

Hakin9 Magazine is now FREE -- Get your copy NOW!

Hakin9 Magazine now FREE in Digital Format

Get a FREE copy of the Hakin9 Magazine

Get FREE copies of Hakin9 Magazines -- PDF Download

Special offers to hakin9 magazine subscription for CCCure members and visitors!

Hakin9 News: Download Article "My ERP Got Hacked. Part II"

· More -->

Honeynet

· Topic: Honeynet
· Total News: 5
· Total Reads: 13452

Web Honeynet Project

Honeynet Project Challenge Announcement

Honeynet Update released

Detecting and Disabling Honeynet

Honeynet Project bootable honeywall CDROM released

In the News

· Topic: In the News
· Total News: 222
· Total Reads: 307772

Protect yourself against ARP Poisoning attacks

New Open-Source OS Will Feature 'Disposable' Virtual Machines

SecurityFocus will reduce it's content and partially shut down

HPING3 Cheatsheet

Security+ Tutorial for the CompTIA certification SY0-201

Hacking games: Key to finding cybersecurity talent

More evidence of value of security certification

Is my network part of a Botnet -- How do I find out?

A new version of [IN]SECURE magazine is ready for download

The H Security: Scareware becomes ransomware again

· More -->

Infosec Writers

· Topic: Infosec Writers
· Total News: 1
· Total Reads: 1022

Security Testing articles on InfoSecWriters.Com

Insecure Magazine

· Topic: Insecure Magazine
· Total News: 1
· Total Reads: 88

Insecure Magazine issue 27 has been released

ISC2

· Topic: ISC2
· Total News: 3
· Total Reads: 10283

CCCure made an exclusive distribution agreement with Shon Harris

How many CISSP and SSCP in the world or in your country

Security Cert body gives lesson in insecurity

ISECOM

· Topic: ISECOM
· Total News: 28
· Total Reads: 47154

The New ISO Hacking Standard based on the OSSTMM

Get a sample of the new OSSTMM version 3 now

Open Source Security Testing Methodology Manual (OSSTMM) V3 news

ISECOM Presents: Aggressive Defenses

OSSTMM V3.0 Introduction Video

Fast Food Security

Security Advisor, a tool for the security professional

FOSDEM Presentation on the OSSTMM by Pete Herzog

Human Security Tests from ISECOM/OSSTMM

The OSSTMM 2.2 has been released

· More -->

ISSAF

· Topic: ISSAF
· Total News: 3
· Total Reads: 9425

ISSAF draft 0.2 has been released

Mapping of the ISSAF framework with the BS7799 standard

The ISSAF framework is now mirrored locally

Jobs

· Topic: Jobs
· Total News: 21
· Total Reads: 78295

Job Offer Consultant - ISO 27001 Implementation & Certification, Doha, Qatar

Job Opening in Charlotte, NC, Pen Tester ("Hacker")

Security Incident Response Team (SIRT) job opening in Dubai

FBI -- Senior Level Technical Forensic Advisor

Penetration Tester opening in Doha, Qatar

Sr. Security Consultant - British Telecom

Ethical Hacker / Penetration Tester - British Telecom

New Job Site: https://www.security-jobs.info/

Job Opening Penetration/Hacker Researcher - MELBOURNE, FL

Job Information Security (Penetration Testing) - Wayne, PA

· More -->

LDAP

· Topic: LDAP
· Total News: 4
· Total Reads: 7965

Protover LDAP test suite available for FREE

LDAP on Solaris HOWTO

New LDAP Enumeration Tool

JXplorer for LDAP exploration

LinkedIn

· Topic: LinkedIn
· Total News: 1
· Total Reads: 8881

The OFFICIAL CEH LinkedIn group

Linux Distro for testers

· Topic: Linux Distro for testers
· Total News: 25
· Total Reads: 58937

Katana V1.5 has been released -- A Linux multiboot DVD

PenTBox 1.3 Beta Released

SliTaz -- A small Bootable Linux Distribution (30 MB)

KATANA - A MultiBoot USB Based Linux Distro for Testers

BackTrack FRHACK Version - Another Linux Bootable PenTest Distro based on Backtr

RUSSIX Linix Distro -- It brings memory back from the good old Auditor Distro

KCPentrix 2.0 has been released

BackTrack v.2.0 Final is out

Bactrack Introduction tutorial by Offensive-Security.Com

Backtrack V 1.0 has been released

· More -->

Linux/UNIX Hacking

· Topic: Linux/UNIX Hacking
· Total News: 1
· Total Reads: 1030

A great intro to Linux/UNIX Hacking

Logical Security

· Topic: Logical Security
· Total News: 2
· Total Reads: 4984

Got Hacking Expertise? Logical Security Does

Save on your training by attending these BETA classes

Lou's Corner

· Topic: Lou's Corner
· Total News: 1
· Total Reads: 1270

Who is this Lou guy?

Metasploit

· Topic: Metasploit
· Total News: 20
· Total Reads: 40622

Metasploit Framework 3.4.1 Released

Metasploit Framework 3.4.0 Released

Metasploit acquired by Rapid7

Metasploit Hacking Tool Now Open for Licensing

Metasploit 3.1 has been released

Use Metasploit to hack an IPhone

HD Moore & Valsmith Tactical Exploitation Paper from Black Hat and Defcon

Metasploit Framework 3.0 has been released

VulnDisco Pack for Metasploit with zero day exploits

Metasploit Version 3 Beta 3 is out

· More -->

Modems

· Topic: Modems
· Total News: 1
· Total Reads: 8115

Modem Hijacking

NBISE

· Topic: NBISE
· Total News: 1
· Total Reads: 109

New NBISE Cyber Security Certifications will set HIGH BAR for Security Pros

Nessus

· Topic: Nessus
· Total News: 6
· Total Reads: 20587

AlienVault Feed for Nessus Updater

Tenable changes the licensing of Nessus

Nessconnect 1.0.0 Released (Nessj/Reason)

Nessj 0.6.1 has been released -- A Nessus and OpenVAS client

The future of Nessus and other free resources is in your hands

Nessus NASL programming tutorial

NIST

· Topic: NIST
· Total News: 1
· Total Reads: 1002

NIST new guides on Bluetooth Security and Security Testing and Assessment

NMAP

· Topic: NMAP
· Total News: 57
· Total Reads: 78284

Nsploit (Popping boxes with Nmap) SecTor 2009

Cheatsheet for NMAP Version 5

Version 5.20 of the Nmap network scanner arrives

A Beta Version of NPing has been released

NMAP 5.00 Has been released

Fyodor Nmap Network Scanning Book Released!

NMap 4.76 released

SinFP OS Fingerprinting online demo is available now

NMAP used in The Bourne Ultimatum DVD

New official NMAP GUI called Zenmap is out (used to be called UMIT)

· More -->

NoHack.de

· Topic: NoHack.de
· Total News: 1
· Total Reads: 1221

Nohack Scanner

OISSG

· Topic: OISSG
· Total News: 4
· Total Reads: 8491

First Improvised Security Testing (FIST) Conference Dubai

FIST Conferences (free and open events)

Release of The Information System Security Assessment Framework (ISSAF)

Common Mistakes done by testers

Open Packet PCAP captures

· Topic: Open Packet PCAP captures
· Total News: 1
· Total Reads: 7358

OpenPacket.Org offers a collection of PCAP files

Open Source Vulnerability Database

· Topic: Open Source Vulnerability Database
· Total News: 4
· Total Reads: 9614

OSVDB Recognized as 501(c)3 Non-Profit Organization

Open Source Vulnerability Database Opens Vendor Dictionary

OSVDB Post Go-Live Update, 3000 Stable Entries

Open Source Vulnerability Database Releases Free Security Data to the Public

OpenVAS

· Topic: OpenVAS
· Total News: 2
· Total Reads: 7663

OpenVAS Scanner Release 1.0

openvas-server 1.0.1 has been released

Oracle DB

· Topic: Oracle DB
· Total News: 16
· Total Reads: 40912

Oracle Hacker Gets The Last Word

Oracle Password Cracker written in PL/SQL by Pete Finnigan

Oracle 11g database password hash cracker

Oracle Forensics Part 6

Another great paper on Oracle Forensics by David Litchfield

Oracle Forensics Part 5: Finding Evidence of Data Theft in the Absence of Audits

THC-Orakel - Cracking Oracle Passwords Within Seconds

Oracle Password security (or should I say insecurity?)

Two great oracle security documents

Oracle Passwords and OraBrute

· More -->

OSPF

· Topic: OSPF
· Total News: 2
· Total Reads: 2258

CRON-OS Operating System fingerprinting tool

OSPF Project

OWASP

· Topic: OWASP
· Total News: 37
· Total Reads: 72860

OSWA-Assistant v0.9.0.6h released

ANNOUNCING THE NEW "OWASP TESTING GUIDE v3

OWASP Hartford: February 2009 (Open Web Application Security Project)

NASSCOM's Biggest Information Security Summit - Supported by OWASP India

OWASP AppSec 2008 Conference

OWASP NY/NJ Metro Chapter and the W3AF Application testing tool

NY/NJ Metro OWASP meeting

ANNOUNCING THE OWASP TESTING GUIDE

OWASP Newsletter #1

New Version of OWASP Pantera Web Assessmenht Studio

· More -->

Packet Crafting

· Topic: Packet Crafting
· Total News: 13
· Total Reads: 25569

Announcing PCapR

Tcpreplay 3.0.RC1 released

PReplay -- A windows packet replay tool

ISIC -- IP Stack Integrity Checker

Netw version 5.34 has been released

KArp, the Kernel ARP hijacking patch for Linux

ARP Tools 1.0 has been released

Scapy 1.0.3 has been released

Scapy Packet Crafting tool

Netw, Netwox, and Netwag Update

· More -->

Packet Replay Tools

· Topic: Packet Replay Tools
· Total News: 1
· Total Reads: 1368

tcpreplay 1.4.3 Released today

Pangolin

· Topic: Pangolin
· Total News: 1
· Total Reads: 1461

Pangolin - An Amazing SQL Injection Tool

Passwords

· Topic: Passwords
· Total News: 44
· Total Reads: 67254

Bruter 1.0 Parallell Password brute forcer has been released

Password Cracking: Do I need a faster CPU or a faster Drive

RainbowCrack 1.4 is released

L0phtCrack 6 has been Released

L0phtCrack is back!

RainbowCrack 1.3 has been released

FreeRainbowTables.com news

Brute forcing just got a little smarter at AWLG.org

fgdump (2.0.0) and pwdump (1.7.1) has been released

SShatter -- A brute force tool for SSH

· More -->

PCI DSS Standard

· Topic: PCI DSS Standard
· Total News: 10
· Total Reads: 37205

PCI DSS Guide from Microsoft

PCI-DSS guidelines on wireless security have been released

Payment Standard for Web Apps Goes Live

IT Audit Checklist: Payment Card Industry (PCI)

Great list of links related to the PCI DSS standard

New LinkedIn Compliance Group has been formed

Visa USA Pledges $20 Million in Incentives to Protect Cardholder Data

The PCI DSS security standard version 1.1 was release today

PCI DSS Vendor Scanner Certification - The saga is ongoing

PCI Mandates drop 8 of OWASP Top 10

Phishing

· Topic: Phishing
· Total News: 2
· Total Reads: 1742

Fraudsters hone their attacks with spear phishing

The Phishing Guide

Port Knocking

· Topic: Port Knocking
· Total News: 1
· Total Reads: 1025

FWKNOP -- Firewall Knock Operator

Privacy

· Topic: Privacy
· Total News: 3
· Total Reads: 5706

Are keystroke recorders legal? District Court Halts Sales of Keylogger Software

Psiphon has been released

Tor: An Anonymous Internet Communication System

Putty Hijack Insomnia

· Topic: Putty Hijack Insomnia
· Total News: 1
· Total Reads: 10476

PUTTY Hijack tool

Quiz

· Topic: Quiz
· Total News: 3
· Total Reads: 10105

Questions for the first CEH module have been added

CEH Quiz

New Quiz Engine is entering Beta Testing -- Volonteers are needed

Reason

· Topic: Reason
· Total News: 1
· Total Reads: 924

Reason a Nessus and OpenVas client

RFID

· Topic: RFID
· Total News: 5
· Total Reads: 18763

RFIDIOt-1.0a released

RFIDIOt release - v0.z

New release of RFIDiOt

New videos and Web Links related to RFID lack of security were added

D-Day for RFID-based transit card systems

RootKit

· Topic: RootKit
· Total News: 6
· Total Reads: 13303

Bootkit -- One deadly weapon in the attacker arsenal

Review: Six Rootkit Detectors Protect Your System

Sony Installs Rootkit On User Systems

Rootkit Detection

Rootkit Hunter 1.1.0 released

Rootkit Hunter 1.0.0 has been released

Sample Report

· Topic: Sample Report
· Total News: 3
· Total Reads: 10273

OSSAR_v1.0

Penetration Test Sample Report Template

Sample Penetration Test Report

SANS

· Topic: SANS
· Total News: 11
· Total Reads: 17085

Want to pass the CISSP(R) and save $630?

SANS vLive! online training announces March schedule of LIVE courses

GSEC: GCIH in the news

Which cert would you like to get in 2010

GSEC: GPEN in the news

GSEC: GSEC in the news

SANS ConsenSus Audit Guidelines (CAG)

SANS Webcast -- Using Application Firewalls to comply with the PCI DSS standard

SANS TOP 20 marked with sudden rise in Zero exploits

SANS TOP 20 has been released with input from OWASP

· More -->

SAP Security

· Topic: SAP Security
· Total News: 1
· Total Reads: 921

SAP Security In-Depth Vol. I is available for FREE

Search App Security

· Topic: Search App Security
· Total News: 3
· Total Reads: 2957

Free tool helps find SQL injection vulnerabilities

What is WS-Security

Good site for Application Security information

SearchSecurity.Com

· Topic: SearchSecurity.Com
· Total News: 0
· Total Reads: 0

...There aren't any news yet for this topic...

Security Forest

· Topic: Security Forest
· Total News: 2
· Total Reads: 8937

sdf

Security Forest Exploitation Framework Beta Released

Security+

· Topic: Security+
· Total News: 1
· Total Reads: 226

A new advanced security certification from CompTIA -- Fill the survey

Security-Database

· Topic: Security-Database
· Total News: 2
· Total Reads: 1630

Best IT Security Tools for 2009

The FireCAT v1.6 online release available

SecurityActs Magazine

· Topic: SecurityActs Magazine
· Total News: 1
· Total Reads: 954

SecurityActs a new Security Magazine

Security_Plus_in_the_news

· Topic: Security_Plus_in_the_news
· Total News: 0
· Total Reads: 0

...There aren't any news yet for this topic...

Sniffers

· Topic: Sniffers
· Total News: 6
· Total Reads: 10928

Xplico version 0.5.5: reconstruct attachment from a PCAP File

Sniffing without transmitting any packets

IPNetMon 2.00 is released as freeware

tcpick -- Not your common sniffer

Sniffing traffic in switched networks

Chaosreader - A freeware traffic reconstruction tool

Social Engineering

· Topic: Social Engineering
· Total News: 6
· Total Reads: 31430

US authorities file charges against three scareware authors

Social-Engineering Ninja V0.1 BETA

NO PHYSICAL SECURITY = NO LOGICAL SECURITY

Palin's email account hacked via social engineering

Paper on Social Engineering

Up close and personal with the social hackers

SQL Security

· Topic: SQL Security
· Total News: 33
· Total Reads: 85193

Bizploit -- ERP Penetration Testing Framework

sqlninja 0.2.5 released!

DBAPPSecurity web application scanner MatriXay 3.6 was released

sqlmap 0.8 has been released

SQL Injection and Parameter Manipulation Video Clips

Sqlmap version 0.7 has been released

sqlmap version 0.7rc1 has been released

A new version of sqlsus has been released

sqlmap version 0.6.4 has been released

sqlmap version 0.6.1 has been released

· More -->

Talisker

· Topic: Talisker
· Total News: 1
· Total Reads: 5696

Great Internet Weather Site

The Hacker's Choice

· Topic: The Hacker's Choice
· Total News: 1
· Total Reads: 1010

The Hacker's Choice (THC) latest releases

The LAW

· Topic: The LAW
· Total News: 3
· Total Reads: 9964

Do you have your license to practice????

Hackers are all Bastards now

Researcher condamned to pay 5000 Euros for Proof of concept

The PST Warehouse

· Topic: The PST Warehouse
· Total News: 1
· Total Reads: 1139

Large Archive of documents, files, and presentations on Hacking

TigerTeam.se

· Topic: TigerTeam.se
· Total News: 2
· Total Reads: 8556

sbd (Shadowinteger's BackDoor) -- A netcat clone with AES

Gwee (generic web exploitation engine)

Training

· Topic: Training
· Total News: 108
· Total Reads: 217488

2nd. OWASP Ibero-American Web-Applications Security conference 2010 (IBWAS 10)

nullcon GOA Dwitiya (2.0) The Jugaad (hacking) Conference

Call for Papers for HITB Security Conference 2010 Malaysia

New Cybersecurity Orders -- Stop writing report and do something instead

Presentation Materials from HITB Dubai is available for Download

Hack In The Box HITB eZine Issue 2 has been released

Taking Penetration testing In-House

HITB Amsterdam final call for Paper

The Honeynet Project Forensic Challenge 2010

REC0N 2010 MONTREAL CANADA JULY 9-11

· More -->

Unicorn Scan

· Topic: Unicorn Scan
· Total News: 3
· Total Reads: 7480

New version of UnicornScan has been released

UNICORNSCAN new version has been released

UnicornScan

VideoJak IP Video Hijack

· Topic: VideoJak IP Video Hijack
· Total News: 1
· Total Reads: 1204

VideoJak -- IP Video Security Assessment

VOIP

· Topic: VOIP
· Total News: 23
· Total Reads: 41438

iPhone leak is getting bigger - Latest Update

IPhone Password Breaker

Researchers Uncover Security Vulnerabilities in Femtocell Technology

UCSniff 3.0 Released

VIPER Lab's VAST Live Distro for VOIP security assessment

Pwning Nokia phones (and other Symbian based smartphones)

WarVOX phone analysis suite

VoIP Hopper 1.0 released! With Nortel support

UCSniff VOIP Sniffer 2.1 released

OAT released - new VoIP security tool

· More -->

VPN

· Topic: VPN
· Total News: 6
· Total Reads: 10936

Netcat over SSL (Neat...)

Penetration Testing IPsec VPNs

VPN Security Flaws White Paper

ike-scan v1.7 has been released

VPN Pre Shared Key (PSK) vulnerability paper with Testing and attack tool

ike-scan v1.5.1 has been released

Vulnerabilities Database

· Topic: Vulnerabilities Database
· Total News: 13
· Total Reads: 16420

New website announcement - www.itsecdb.com

Which Vulnerabilty to exploit first?

My MAC is secured: Apple Delivers patches for 92 vulnerabilities

Where can I get access to advisories DB and notification of Vulnerabilities

NVD Adopts CVSS v2

Orkut Email Address Disclosure Vulnerability

Zero Day Vulnerabilties Tracker

SSA, Security System Analyzer released

CVSS Calculator -- Common vulnerability Scoring System

Vulnerability Type Distributions in CVE

· More -->

WarDriving

· Topic: WarDriving
· Total News: 21
· Total Reads: 40978

Zigbee Wireless Networks testing tools by Joshua Wright

Aircrack-NG 1.0 is finally released along with new web site

WEPBuster 1.0 has been released

OSWAâ„¢-Assistant Wireless Auditing Software Toolkit - public edition release!

Aircrack NG version '0.9 is Released

Aircrack-ptw - WEP Cracking Tool (ARP)

Kisgearth -- Maps your Kismet results onto Google Earth

Aircrack-ng 0.6 is released

High Quality Security Podcast at pauldotcom.com

Aircrack-ng 0.4.2 is released

· More -->

WASC

· Topic: WASC
· Total News: 6
· Total Reads: 9238

The Web Hacking Incidents Database (WHID)

WASC Web Application Security Statistics Project 2007

Massive web defacement

The web hacking incident database (WHID)

Web Application Firewall Evaluation Criteria

WASC Web Security Threat Classification

Web Applications Security

· Topic: Web Applications Security
· Total News: 80
· Total Reads: 127618

Air Force Lt. Gen. says: The enemy is banging away at our applications

HP To Acquire Code Security Software Maker Fortify

WhatWeb -- The next generation web scanner

BinPack: Las Vegas Edition Release

Better Security Through Sacrificing Maidens

WebCruiser - Web Vulnerability Scanner V2.4.1

WATOBO Open Source Web Vulnerability Scanner

Twitter-controlled botnets come to the unwashed masses

Damn Vulnerable Web App (DVWA) 1.6.0 Relesed

2010 CWE/SANS Top 25 Most Dangerous Programming Errors

· More -->

Web Applications Stress Test

· Topic: Web Applications Stress Test
· Total News: 2
· Total Reads: 2408

New version of Paros is out

Web Application Stress Test tools

Web Apps Attack & Audit Framework

· Topic: Web Apps Attack & Audit Framework
· Total News: 1
· Total Reads: 7551

w3af Web Applications Attack and Audit Framework

Web Proxy

· Topic: Web Proxy
· Total News: 18
· Total Reads: 22144

Paros 3.2.11 is released

Paros 3.2.10 is released

Paros 3.2.9 is released

Paros 3.2.8 is released

Paros 3.2.5 is released

Burp proxy v1.3beta is now available

Paros 3.2.2 is released

Paros on Mac OS X

Paros 3.2.0 has been released -- A major update

Paros featured in Network World Newsletter

· More -->

Web Server Fingerprinting

· Topic: Web Server Fingerprinting
· Total News: 4
· Total Reads: 4851

HTTPring Version 301 has been released

WeBrute Brute Force directory finder on web server

HTTPRINT - New version released

New version of HTTPrint has been released

WHoppiX

· Topic: WHoppiX
· Total News: 4
· Total Reads: 15116

Whoppix is now called WHAX Version 3.0 has just been released

Whoppix 2.7 Released

Whoppix 2.6 has been released

Whoppix -- Whitehat Knoppix

winAUTOPWN

· Topic: winAUTOPWN
· Total News: 4
· Total Reads: 5960

winAUTOPWN version 2.1 has been released

winAUTOPWN version 2.0 has been released

winAUTOPWN 1.7 released -- First Quarter of 2009 exploits added

winAUTOPWN has been released -- Simple but very interesting tool

Windows

· Topic: Windows
· Total News: 4
· Total Reads: 11481

PacketStuff port of Unix/Linux tools to the Windows Platform

M$ Windows XP Professional Bugging Device?

Intro to WIN32 Exploitation

Windows XP SP2

Wireless Sniffers

· Topic: Wireless Sniffers
· Total News: 6
· Total Reads: 11860

Build a Wi-Fi antenna using household materials

The Beginner's Guide to WarDriving

Weplab Wireless Cracking Tool

New WarDriving tool for Windows XP

PrismStumbler

A series of Wireless Sniffers links were added to the site

Wireless Vulnerability

· Topic: Wireless Vulnerability
· Total News: 20
· Total Reads: 47537

Wi-Fi Alliance Expands WPA2 to include EAP-AKA, EAP-FAST

Updated release of OSWA-Assistant Wireless Auditing/Pentesting LiveCD/LiveUSB

wepbuster 0.6 has been released

Official release of "Keykeriki" open source wireless keyboard sniffer

Russian researchers achieve 100-fold increase in WPA2 cracking speed

MoocherHunter Tool released for Real-Time Geo-Locating of WiFi Hackers/Mooche

PC/SC support for RFIDIOt

Cracking Cisco LEAP with ASLEAP

Great Deal on Senao Cards

SSID Cloaking actually reduces your WIFI security

· More -->

Wireless Vulnerabilties and Exploits DB

· Topic: Wireless Vulnerabilties and Exploits DB
· Total News: 1
· Total Reads: 1061

WVE - Wireless Vulnerabilities and Exploits DB

WireShark

· Topic: WireShark
· Total News: 2
· Total Reads: 1800

Wireshark (ethereal) 0.99.4 has been released

Ethereal is now called WireShark

You can syndicate our news using the file backend.php or ultramode.txt

All logos and trademarks in this site are property of their respective owner. The comments are property of their posters, all the rest © 2003-2008 by Clement Dupuis and Nathalie Lambert (Site Maintainers).

Home Page
TRAINING
Start Here First
GSEC
FOR MEMBERS
GPEN
CONTRIBUTE
GCIH
CONFERENCES
CEH Certification
TOOLS
- CORE IMPACT
- Penetration Testing
QEH Certification
- About the QEH cert
CONTACT US
- Send Feedback
- Recommend Us
Security+ CompTIA

Page Generation: 0.20 Seconds

Video Library

CyberSecurity NBISE

Forums Posts

Methodologies

Recommended PodCasts

Recommended Sites

Security Blogs

Security Forums

Best Downloads

Best Web Links

Survey

Who's Online