Security
Get flash to fully experience Pearltrees
Seven Free Security Tools for Linux - PCWorld Business Center
One of the big advantages of using Linux is that its security tends to be so much better than that of the competing alternatives. That's due in large part to the way Linux assigns permissions, but it's also certainly true that the open source operating system is targeted by malware writers far less frequently than Windows is, in particular, simply because it's less widely used and so much more diverse. The fact remains, however, that no operating system is perfectly secure. For business users, in particular, a little extra security assurance is always a good idea, at the very least for your own peace of mind. My favorite antivirus software for Linux is Sourcefire's ClamAV, a free, open source package designed to detect Trojans, viruses, malware and other malicious threats.
Clam AntiVirus
ClamAV is an open source (GPL) antivirus engine designed for detecting Trojans, viruses, malware and other malicious threats. It is the de facto standard for mail gateway scanning. It provides a high performance mutli-threaded scanning daemon, command line utilities for on demand file scanning, and an intelligent tool for automatic signature updates. The core ClamAV library provides numerous file format detection mechanisms, file unpacking support, archive support, and multiple signature languages for detecting threats.John the Ripper password cracker
John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix systems, supported out of the box are Windows LM hashes , plus lots of other hashes and ciphers in the community-enhanced version.
Come mingle with, and learn from, Wireshark core developers, network analysis veterans, and fellow users at SHARKFEST in Berkeley, CA June 24-27.
Wireshark · Go deep.
Urgent notice [March 29, 2012]: Students: Want to gain valuable experience this summer writing real code for Nmap and earn a $5,000 stipend? You have until Friday, April 6 to apply for the Nmap/Google Summer of Code ! Previous SoC students brought us the Nmap Scripting Engine , Ncat , and the Zenmap GUI ! Non-students: Please forward the link to any college/grad students you know. Thanks!
Nmap - Free Security Scanner For Network Exploration & Security Audits.
Snort :: Home Page
What is Snort? Snort® is an open source network intrusion prevention and detection system (IDS/IPS) developed by Sourcefire . Combining the benefits of signature, protocol, and anomaly-based inspection, Snort is the most widely deployed IDS/IPS technology worldwide.
The goal of the Glasnost project is to make ISPs' traffic shaping policies transparent to their customers. To this end, we designed Glasnost tests that enable you to check whether traffic from your applications is being rate-limited (i.e., throttled) or blocked. Glasnost tests work by measuring and comparing the performance of different application flows between your host and our measurement servers. The tests can detect traffic shaping in both upstream and downstream directions separately. The tests can also detect whether application flows are shaped based on their port numbers or their packets' payload. For more details on how Glasnost tests work, please read our NSDI 2010 paper .
Glasnost: Test if your ISP is shaping your traffic
SQL Injection Walkthrough
1.0 Introduction When a machine has only port 80 opened, your most trusted vulnerability scanner cannot return anything useful, and you know that the admin always patch his server, we have to turn to web hacking. SQL injection is one of type of web hacking that require nothing but port 80 and it might just work even if the admin is patch-happy. It attacks on the web application (like ASP, JSP, PHP, CGI, etc) itself rather than on the web server or services running in the OS. This article does not introduce anything new, SQL injection has been widely written and used in the wild.
SQL Injection Attacks by Example
A customer asked that we check out his intranet site, which was used by the company's employees and customers. This was part of a larger security review, and though we'd not actually used SQL injection to penetrate a network before, we were pretty familiar with the general concepts. We were completely successful in this engagement, and wanted to recount the steps taken as an illustration. "SQL Injection" is subset of the an unverified/unsanitized user input vulnerability ("buffer overflows" are a different subset), and the idea is to convince the application to run SQL code that was not intended. If the application is creating SQL strings naively on the fly and then running them, it's straightforward to create some real surprises.
My neighbours are stealing my wireless internet access. I could encrypt it or alternately I could have fun. I'm starting here by splitting the network into two parts, the trusted half and the untrusted half. The trusted half has one netblock, the untrusted a different netblock.
Upside-Down-Ternet
Is Hiding Your Wireless SSID Really More Secure?
Seems like every guide to securing your wireless network tells you to keep your SSID from broadcasting to make your network more secure, but is that really worthwhile? Let’s take a look at one of the silliest myths out there. This myth has been around for a very long time, and we aren’t expecting everybody to receive this news with happy agreement. You’re welcome to state your case in the comments for why hidden wireless networks are a great idea, but we think if you keep reading, you’ll realize that it’s just not a security feature. Image by Chaotic Good01 It’s never a good sign when manufacturers create technologies that don’t follow the agreed-upon spec documents that ensure interoperability between vendors—it’s usually a way for them to make more money with vendor lock-in features that require you to buy their hardware.Top 100 Network Security Tools
SecTools.Org: Top 125 Network Security Tools For more than a decade, the Nmap Project has been cataloguing the network security community's favorite tools. In 2011 this site became much more dynamic, offering ratings, reviews, searching, sorting, and a new tool suggestion form .Three locks for your SSH door
Introduction If you require remote access to your computer and you enable Secure Shell (SSH) connections, you must accept that you will automatically attract hackers who will try to break your defenses and take command of your machine. Although there's no guarantee that your machine won't be "0wn3d" by a "h4x0r," a few simple solutions can help reinforce your SSH door and make life a bit more difficult for anybody trying to break in.SolarWinds makes easy-to-use enterprise IT management software to help IT pros solve problems every day and help to enable efficient and effective management of networks and IT environments. Join our online community of over 100,000 IT professionals talking shop. Get involved. Gain insights.
Zenmap - Official cross-platform Nmap Security Scanner GUI
Fri Jan 13 2012 - Follow the Kismet twitter feed here for development updates & information. Wed Jan 04 2012 - Major Kismet internal rewrite well underway, bringing wireless-neutral support for logs and display of any type of wireless device you have the hardware for Kismet to use (wifi, bluetooth, zigbee, etc). Follow the developer blog and SVN for more info! Tue Aug 09 2011 - Spectools 2011-08-R1 is out, with support for the Wispy DBXv2, 24Xv2, and the Ubertooth. Get it at the spectools page Thu May 26 2011 - Respun the 2011-03 packages for Ubuntu to make Natty stop whining.