Feed on Posts or Comments | Font Size: Decrease Font Size Increase Font Size 15 July 2024

Category ArchivePenetration Testing

Filed under: Exploits, Penetration Testing, Security Tools
posted by D1m on 21 Aug 2007

TXDNS v2.1.5 – A Multithreaded Digger/Brute Forcer For DNS

Arley Silveira has released the 1 year anniversary version of TXDNS. Very soon he will release the version 2.2 of TXDNS.

This release implements DNS queries against multiple DNS servers, a more efficient threading algorithm and some minor bug fixes.

Continue Reading »

Filed under: Exploits, Penetration Testing, Security Tools
posted by D1m on 21 Aug 2007

SSHatter v0.2 – A Password Brute Forcer For SSH

Tim Brown from Nth Dimension has coded a cool password brute forcer for SSH called SSHatter.

It is multi threaded and can audit more than one system and account in a given session.

Download SSHatter-0.2

Filed under: Defacements, Hacktivism, Penetration Testing, Personal Opinions, Security Articles
posted by D1m on 09 Aug 2007

How Crackers Deface Websites? Why They Do It?

Through the following post I am not purposing to influence you to start defacing, but to briefly give you a better understanding of how and why it is done.

Almost everyday I visit Zone-H’s archive of special digital attacks, I find that at least 1 or 2 attacks were done against US governmental web servers. The domain suffix of the defaced websites was *.gov. Does this fact means that they are totally secure? I don’t think so… Obviously the web servers may host very confidential data. In this case the web server administrators seemed to have allowed threats against governmental assets. Any unwanted consequences that a breach of security can lead to, are mainly caused by the irresponsibility and lazyness of system administrators and web developers.

Continue Reading »

Filed under: Exploits, Penetration Testing, Security Articles
posted by D1m on 17 Mar 2007

Pen-Test Paper: How An Internal Network Becomes External

My friend SuRGeoN from Greece wrote a very interesting pen-test paper which explains how easy is to convert an internal network into an external with the port redirection technique. He demonstrates the attack scenarios – including network architecture diagrams – and goes into great technical details about them.

Continue Reading »

Filed under: Penetration Testing, Security Tools
posted by D1m on 08 Feb 2007

NMapView v0.5 – Windows GUI Frontend For NMap Security Scanner Released

Vito Antico from CraftySoftwares.com, has recently released NMapView v0.5. NMapview provides the GUI frontend for the free NMap security scanner made by Fyodor. It is compatible with Windows 2000, XP, 2003 and Vista. It works with NMap v4.x, which you can download from Insecure.org.

Note: It requires Microsoft .NET Framework 2.0 and Winpcap.

Continue Reading »

Next Page »