background preloader


Facebook Twitter

 ShieldsUP! — Internet Vulnerability Profiling   Your Internet connection's IP address is uniquely associated with the following "machine name": The string of text above is known as your Internet connection's "reverse DNS.

 ShieldsUP! — Internet Vulnerability Profiling  

" The end of the string is probably a domain name related to your ISP. This will be common to all customers of this ISP. But the beginning of the string uniquely identifies your Internet connection. Top Endpoint Detection & Response (EDR) Solutions for 2021. Check Point Software SandBlast.

Top Endpoint Detection & Response (EDR) Solutions for 2021

'Asleap - Cisco Attack Tool ' - SecuriTeam. Published on April 8th, 2004 Details ‘In August 2003, Joshua wrote a tool called asleap for Linux systems to exploit a weakness in the Cisco LEAP authentication protocol.

'Asleap - Cisco Attack Tool ' - SecuriTeam

Using this tool, an attacker can actively compromise Cisco LEAP networks by mounting an offline dictionary attack against weak user passwords. Scapy. AxCrypt - File Security Made Easy. Extract hashes from encrypted Microsoft Office files (.doc, .docx, .xls, .xlsx, .ppt, .pot) The Enigma machine: Encrypt and decrypt online — Cryptii. Ddrescue - GNU Project - Free Software Foundation (FSF) [ English | Español | Français | Italiano ] Introduction GNU ddrescue is a data recovery tool.

Ddrescue - GNU Project - Free Software Foundation (FSF)

It copies data from one file or block device (hard disc, cdrom, etc) to another, trying to rescue the good parts first in case of read errors. Ddrescuelog is a tool that manipulates ddrescue mapfiles, shows mapfile contents, converts mapfiles to/from other formats, compares mapfiles, tests rescue status, and can delete a mapfile if the rescue is done. Ddrescuelog operations can be restricted to one or several parts of the mapfile if the domain setting options are used. The basic operation of ddrescue is fully automatic. If you use the mapfile feature of ddrescue, the data are rescued very efficiently, (only the needed blocks are read). Ddrescue does not write zeros to the output when it finds bad sectors in the input, and does not truncate the output file if not asked to.

HashMyFiles - Download. Digital Forensics. The Top 25 Cybersecurity Companies of 2019. The Software Report is pleased to announce The Top 25 Cybersecurity Companies of 2019.

The Top 25 Cybersecurity Companies of 2019

For the past two months, we collected hundreds of nominations from professionals in the cybersecurity field. They provided their candid feedback on the strength of each company's technology, caliber of the company's organization, management team effectiveness and ability to stay ahead of the latest cybersecurity threats, among other attributes. After thorough review of each company's nomination survey results, we selected those who scored the highest. We paid particular attention to those who demonstrated consistency across each performance area. Free Online Tools for Looking up Potentially Malicious Websites. Several organizations offer free online tools for looking up a potentially malicious website.

Free Online Tools for Looking up Potentially Malicious Websites

Some of these tools provide historical information; others examine the URL in real time to identify threats: Internet Research, Cybercrime Disruption and PCI Security Services. Router Passwords Community Database - The Wireless Router Experts. PassMark OSForensics - Digital investigation. 50 Online Tools Every Cyber Security Professional Should Know About. Security Awareness training – Free Trial – AwareGO. Complete Cloud Security in Minutes. Guide Cyber 2020 HD. Gartner Magic Quadrant for Network Firewalls 2019. Rainbow Tables: Your Password's Worst Nightmare. While you might think of Rainbow Tables as eclectic colorful furniture, those aren't the ones we are going to discuss.

Rainbow Tables: Your Password's Worst Nightmare

The Rainbow Tables that we are talking about are used to crack passwords and are yet another tool in the hacker's ever-growing arsenal. What are "Rainbow Tables"? How could something with such a cute and cuddly name be so harmful? The Basic Concept Behind Rainbow Tables We're a bad guy who has just plugged a thumb drive into a server or workstation, rebooted it, and ran a program that copies the security database file containing usernames and passwords to our thumb drive. The passwords in the file are encrypted so we can't read them. Near Field Communication (NFC) Technology, Vulnerabilities and Principal Attack Schema - Infosec Resources. The Near Field Communication (NFC) is a set of standards for mobile devices designed to establish radio communication with each other by being touched together or brought within a short distance.

Near Field Communication (NFC) Technology, Vulnerabilities and Principal Attack Schema - Infosec Resources

The NFC standard regulates a radio technology that allows two devices to communicate when they are in close proximity, usually no more than a few centimeters, allowing the secure exchange of information. NFC standards are based on different communications protocols and data exchange formats, and include also existing radio-frequency identification (RFID) standards such as the ISO/IEC 14443 specific for identification cards, proximity cards and contactless integrated circuit cards. The coverage of various ISO standards ensures for NFC technology the global interoperability that makes the technology usable in different areas. Guide RGPD du développeur. General Data Protection Regulation (GDPR) – Official Legal Text.

Penetration Testing and Ethical Hacking Linux Distribution. Parrot Security. The Penetration Testing Execution Standard. Nikto2. Nikto is sponsored by Netsparker, a dead accurate and easy to use web application security solution.


Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software.

Scan items and plugins are frequently updated and can be automatically updated. Cisco Talos Intelligence Group - Comprehensive Threat Intelligence. SANS Courses, Certifications & Research. CVE - Common Vulnerabilities and Exposures (CVE) Phishing Prevention, Solutions & Services. Cybersecurity Framework. Latest Updates NIST is pleased to announce the release of NISTIR 8323 (Draft) Cybersecurity Profile for the Responsible Use of Positioning, Navigation, and Timing (PNT) Services.

Cybersecurity Framework

The comment period is open through November 23, 2020 with instructions for submitting comments available HERE. NIST just published NISTIR 8286, Integrating Cybersecurity and Enterprise Risk Management (ERM). This report promotes greater understanding of the relationship between cybersecurity risk management and ERM, and the benefits of integrating those approaches.

Penetration Testing Software, Pen Testing Security. Free Steganography Software - QuickStego. Data Security & Privacy Software. Windows security baselines - Windows security. Téléchargez la solution d'évaluation des vulnérabilités Nessus. Depuis le début, nous travaillons main dans la main avec les experts en sécurité. Nous améliorons sans cesse Nessus en répondant aux demandes de la communauté pour en faire la solution d'évaluation des vulnérabilités la plus précise et la plus complète du marché. Vingt ans plus tard, notre mission s'inscrit toujours dans une collaboration étroite avec la communauté et une innovation produit permettant de fournir les données les plus précises et complètes sur les vulnérabilités, pour que vous ne manquiez aucun problème critique qui pourrait mettre votre entreprise en danger.

Plus de 30 000 entreprises dans le monde font confiance à Nessus, l'une des technologies de sécurité les plus largement déployées sur la planète et une référence en matière d'évaluation des vulnérabilités. Voyez par vous-même : découvrez le produit en action. 1 en précision Nessus dispose du taux de faux positifs le plus faible du secteur avec une précision à six chiffres. 1 en prise en charge 1 en adoption. WebGoat - Learn the hack - Stop the attack. Learn the hack - Stop the attack WebGoat is a deliberately insecure application that allows interested developers just like you to test vulnerabilities commonly found in Java-based applications that use common and popular open source components. Description Web application security is difficult to learn and practice. Not many people have full blown web applications like online book stores or online banks that can be used to scan for vulnerabilities.

In addition, security professionals frequently need to test tools against a platform known to be vulnerable to ensure that they perform as advertised. Download the Free Nmap Security Scanner for Linux/Mac/Windows. L0phtCrack Password Security – Auditing and Cracking – Auditing, cracking and recovering passwords. John the Ripper password cracker. John the Ripper is free and Open Source software, distributed primarily in source code form. If you would rather use a commercial product, please consider John the Ripper Pro, which is distributed primarily in the form of "native" packages for the target operating systems and in general is meant to be easier to install and use while delivering optimal performance. To verify authenticity and integrity of your John the Ripper downloads, please use our GnuPG public key. - advanced password recovery. Web Security Dojo download. OWASP ZAP. The Honeynet Project – Honeypot research. VirusTotal.

Internet Research, Cybercrime Disruption and PCI Security Services. OpenVAS - OpenVAS - Open Vulnerability Assessment Scanner. Google Hacking Database (GHDB) - Google Dorks, OSINT, Recon. MD5 Hash Generator. CrackStation - Online Password Hash Cracking - MD5, SHA1, Linux, Rainbow Tables, etc.