Gitrob – Reconnaissance tool for GitHub organizations

Gitrob is a command line tool that can help organizations and security professionals find such sensitive information. The tool will iterate over all public organization and member repositories and match filenames against a range of patterns for files, that typically contain sensitive or dangerous information.How it worksLooking for sensitive information in GitHub repositories is not … Đọc tiếp Gitrob – Reconnaissance tool for GitHub organizations

Acunetix Online Vulnerability Scanner

Acunetix Online Vulnerability Scanner acts as a virtual security officer for your company, scanning your websites, including integrated web applications, web servers and any additional perimeter servers for vulnerabilities. And allowing you to fix them before hackers exploit the weak points in your IT infrastructure!Leverages Acunetix leading web application scannerBuilding on Acunetix’ advanced web scanning … Đọc tiếp Acunetix Online Vulnerability Scanner

Nipper – Toolkit Web Scan for Android

La Primera herramienta de escáner de vulnerabilidades WEB, En entorno Android (Versión para iOS en desarrollo), este escáner de vulnerabilidad fue enfocado para CMS más usadas, (WordPress, Drupal, Joomla. Blogger ).En su primera versión Nipper cuenta con 10 módulos distintos, para recopilar información acerca de un URL en específica.Su interfaz ha sido pensada para que … Đọc tiếp Nipper – Toolkit Web Scan for Android

AutoScan-Network – Automatically scan your network

AutoScan-Network is a network scanner (discovering and managing application). No configuration is required to scan your network. The main goal is to print the list of connected equipments in your network.System Requirements : •Mac OS X 10.5 or later•Microsoft Windows (XP, Vista)•GNU/Linux•Maemo 4•Sun OpenSolarisFeatures:• Fast network scanner • Automatic network discovery • TCP/IP scanner • Wake on lan … Đọc tiếp AutoScan-Network – Automatically scan your network

zANTI 2.0 – Android Network Toolkit

zANTI is a mobile penetration testing toolkit that lets security managers assess the risk level of a network with the push of a button. This easy to use mobile toolkit enables IT Security Administrators to simulate an advanced attacker to identify the malicious techniques they use in the wild to compromise the corporate network.ScanUncover authentication, … Đọc tiếp zANTI 2.0 – Android Network Toolkit

Web Application Protection – Tool to detect and correct vulnerabilities in PHP web applications

WAP 2.0 is a source code static analysis and data mining tool to detect and correct input validation vulnerabilities in web applications written in PHP (version 4.0 or higher) and with a low rate of false positives. WAP detects and corrects the following vulnerabilities: SQL Injection (SQLI)Cross-site scripting (XSS)Remote File Inclusion (RFI)Local File Inclusion (LFI)Directory … Đọc tiếp Web Application Protection – Tool to detect and correct vulnerabilities in PHP web applications

Arachni v1.0 – Web Application Security Scanner Framework

Arachni is an Open Source, feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications. It is smart, it trains itself by monitoring and learning from the web application's behavior during the scan process and is able to perform meta-analysis using a number of factors in order to … Đọc tiếp Arachni v1.0 – Web Application Security Scanner Framework

BurpSentintel – GUI Burp Plugin to ease discovering of security holes in web applications

A plugin for Burp Intercepting Proxy, to aid and ease the identification of vulnerabilities in web applications.Searching for vulnerabilities in web applications can be a tedious task. Most of the time consists of inserting magic chars into parameters, and looking for suspicious output. Sentinel tries to automate parts of this laborous task. It's purpose is … Đọc tiếp BurpSentintel – GUI Burp Plugin to ease discovering of security holes in web applications

zAnti – Android Penetration Testing Toolkit (Free!)

zANTI is a comprehensive network diagnostics toolkit that enables complex audits and penetration tests at the push of a button. It provides cloud-based reporting that walks you through simple guidelines to ensure network safety.zANTI offers a comprehensive range of fully customizable scans to reveal everything from authentication, backdoor and brute-force attempts to database, DNS and … Đọc tiếp zAnti – Android Penetration Testing Toolkit (Free!)

Nmap 6.47 – Free Security Scanner For Network Exploration & Security Audits

Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP … Đọc tiếp Nmap 6.47 – Free Security Scanner For Network Exploration & Security Audits