background preloader

Category:OWASP WebScarab Project

Category:OWASP WebScarab Project

Related:  Penetration Testing Tools and How2s

Nikto2 Nikto is sponsored by Netsparker, a false positive free web application security scanner. Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated. Nikto is not designed as a stealthy tool.

webgoat - Project Hosting on Google Code After 1,000,000+ downloads and 10+ years, we have started an effort to significantly upgrade WebGoat. We are looking for help. If you have experience in any of these areas and time to contribute: Jpcap Tutorial This document describes how to develop applications using Jpcap. It explains the functions and classes defined in Jpcap, and also provides comprehensive descriptions on how to program using Jpcap by showing some example codes. Jpcap is an open source library for capturing and sending network packets from Java applications. It provides facilities to: , and is implemented in C and Java. Jpcap has been tested on Microsoft Windows (98/2000/XP/Vista), Linux (Fedora, Ubuntu), Mac OS X (Darwin), FreeBSD, and Solaris. IBM - Software - IBM Security AppScan Static and dynamic application security testing throughout the application lifecycle IBM Security AppScan Trial Try a full-featured version of the software

Massive Scareware Serving Blackhat SEO, the Koobface Gang Style Ali Baba and the 40 thieves LLC are once again multi-tasking, this time compromising hundreds of thousands of web sites, and redirecting Google visitors -- through the standard http referrer check -- to scareware serving domains. What's so special about the domains mentioned in Cyveillance's post, as well as the ones currently active on this campaign? It's the Koobface connection. For instance, the ionisationtools .cn or moored2009 .cn redirectors, as well as the scareware serving premium-protection6 .com;; checkalldata .com; ... Ali Baba and the 40 thieves LLC are once again multi-tasking, this time compromising hundreds of thousands of web sites, and redirecting Google visitors -- through the standard http referrer check -- to scareware serving domains.

pcap In the field of computer network administration, pcap (packet capture) consists of an application programming interface (API) for capturing network traffic. Unix-like systems implement pcap in the libpcap library; Windows uses a port of libpcap known as WinPcap. Features[edit] libpcap and WinPcap provide the packet-capture and filtering engines of many open source and commercial network tools, including protocol analyzers (packet sniffers), network monitors, network intrusion detection systems, traffic-generators and network-testers. libpcap and WinPcap also support saving captured packets to a file, and reading files containing saved packets; applications can be written, using libpcap or WinPcap, to be able to capture network traffic and analyze it, or to read a saved capture and analyze it, using the same analysis code.

Personal Software Inspector Personal Software Inspector is a security scanner which identifies programs that are insecure and need updates. It automates the updating of the majority of these programs, making it a lot easier to maintain a secure PC. It automatically detects insecure programs, downloads the required patches, and installs them accordingly without further user interaction. Personal Software Inspector also detects and notifies you of programs that cannot be automatically updated with software patches and provides you with detailed instructions for updating the program when available. In most cases, you simply need to click the appropriate icon in the Results window and follow the on-screen instructions to install the latest patches. Personal Security Inspector includes the following:

Partner Colleges for Online College Credit Enjoy a hassle-free application process and save money when you enroll at one of StraighterLine's accredited Partner Online Colleges and Universities. Most online colleges and universities have agreed to accept StraighterLine college credits directly. StraighterLine selects Partner Colleges for their rigorous and high quality degree programs as well as for their commitment to individual learners and their needs. All of our Partner Colleges have distance learning options available. With StraighterLine, you can enroll at one of our Partner Colleges or enroll at any college that awards credit for ACE recommended courses.

Retina Network Community - BeyondTrust Retina Community gives you powerful vulnerability management across your entire environment. For up to 256 IPs free, Retina Community identifies network vulnerabilities (including zero-day), configuration issues, and missing patches across operating systems, applications, devices, and virtual environments. Manage your network security with Retina Community. Metro styled user interface for streamlined vulnerability assessment, management and content related to database, workstation, server, and virtualized environmentsPerform free vulnerability assessment of missing patches, zero-days and insecure configurationsSimplify security assessment with user profiles that align to your job functionImprove risk management and prioritization with broad exploit identification from Core Impact, Metasploit, and Exploit-db.comFull Support for VMware environments, including online and offline virtual image scanning, virtual application scanning, and integration with vCenter.