Articles

SQLMAP – Automated Sql Injection Testing Tool
Sql injection is one of the most common vulnerability found in web applications today. Exploiting SQL Injection through manual approach is somewhat tedious. Using flags like ―or 1=1--‖ , ―and 1>2‖ we can find out if vulnerability is present but exploiting the vulnerability needs altogether different approach. Tools like Sqlmap, Havij and Pangolin are helpful in exploiting sql injection.


Echo Mirage
In the past few years, Web applica-tion security has really got some good atten-tion. Because of this attention, we have so many proxy tools (Burp/Fiddler/Paros) rea-dily available, are making our lives easy at each step of penetration testing.


Ravan – JavaScript Distributed Computing System
How much computing power do you have? If your answer is 'my personal laptop/dekstop', you don't yet realise your strength. How many friends do you have on Facebook? friends of friends? Add up all of their laptops/desktops, that's how much computing power you have at your disposal.


Demystifying the Android Malware
McAfee‘s first quarter threat report stated that, with six million unique samples of recorded malware, Q1 2011 was the most active first quarter in malware history. McAfee stated that Android devices are becoming malware havens with Android being the second most popular environment for mobile malware behind Symbian in the first quarter.


Tools for Reverse Engineering and Malware Analysis
Reverse engineering is the process of analyzing a subject system to identify the system's components and their relationships, and to create representations of the system in another form or at a higher level of abstraction. The process of reverse engineering, which is part of malware analysis, is accomplished using specific tools that are categorized as hex editors, disassemblers/debuggers, decompiles and monitoring tools.


SniffJoke – Defeating Interception Framework
If you try the command “traceroute” (under windows, called tracert) you will see a lots of network elements between you and the target host. An interception could happen in every location. If you are using some attack tool like airsnort, ettercap, or simple analysis tool with promisc mode support (wireshark, dsniff) you are sniffing in your LAN. Your LAN, is either the first hop for the outgoing session and the last hop for the incoming sessions. The image showed is useful because it shows how many hops will separate two hosts in Internet. Every hop will be monitored, every nation will have different law, and if you get passively sniffed will never be notified to you.


Armitage – The Ultimate Attack Platform for Metasploit
Now! You have one more reasons to add Metasploit in your Pentest Toolkit. You just can?t ignore Metasploit anymore just because it does not give you user interface like commercial frameworks available out there like Core Impact and Immunity Canvas.


Wi-Fi Tools
This section in itself may look incomplete, to have full flavor read Tech Gyan.There are many Wireless Testing tools in the wild for the different OS flavors right from Windows, Unix to Smart Phone OS. Unix based tools remain the most popular among them.


BeEF (Browser Exploitation Framework)
BeEF is a Browser Exploitation Framework. It enables an attacker/pen tester to assess the security of the browser and lets him exploit it if found vulnerable.


FireCAT
Firefox became a very useful tool to carry out analysis and identification of vulnerabilities. Its capacity to personalize it, to install and to remove things make it more flexible, dynamic or easy to adapting it to a specific task.


JS-Recon : JavaScript Network Reconnaissance Tool
When I say 'Network Reconnaissance' then most of you would immediately think Nmap! Some of the more hardcore geeks would also be thinking about Scapy. Both are awesome tools and are probably the best of their class but what happens when you want to do a quick network recon...


Mantra – Free and Open Source Security Framework
Mantra is a collection of hacking tools, add-ons, and scripts based on Firefox. Right from the beginning, one Firefox and Google Chrome of the attractive features which made both of them outstanding was their expandability by means of installing useful extensions or add-ons. Programmers and developers started coding add-ons which helped to make the online web more easy and functional.


Botnet detection tool: Ourmon
Ourmon is a *NIX based open source tool originally designed for network packet sniffing. It works on the concept of promiscuous mode of Ethernet packet detection. It also uses port mirroring technique through a Layer 2 (Ethernet) switch. It works best in FreeBSD Operating System.


Android Security Apps
Our phones have all sorts of personal data – messages, photos, etc. At some point these apps access your data. And as we all know data=money, so let’s have a look at some apps that will help you protect your data and privacy.


Greasemonkey – A customized way to browse internet
As it always happens, a new thing emerges by introducing new concepts for users. Similarly Mozilla Firefox introduced new add-on to the internet world -Greasemonkey. You might be thinking what this monkey does for us? Answer is “Greasemonkey allows you to customize the way a webpage is displayed using small bits of JavaScript”. Yes! This is a monkey who does this magic for us.


Malwarebytes to remove Fake Antivirus
To remove Fake Antivirus and similar malwares you can use Malwarebytes. It is easy to use and effective. For removing Fake Antivirus it is not necessary to buy the full version, the free version is sufficient.


Deep Packet Analysis on Cloud
The most interesting work for any security professional is to analyze the packet captures. Our friendly .pcap files. PCAP files can be generated from your favorite tools like TCPDump or wireshark. Let’s see two ways to understand and do deep packet analysis on the cloud itself..


Microsoft Baseline Security Analyzer
The Microsoft Baseline Security Analyzer provides a streamlined method to identify missing security updates and common security misconfigurations. MBSA 2.1.1 is a minor upgrade to add support for Windows 7 and Windows Server 2008 R2.


Honeyd: Track the hackers
Honeyd is a low interaction Honeypot client that creates virtual hosts (Honeypots) in a network. These Honeypots can be configured to act like a real operating system, in fact there are approximately 1000 personalities of OS’s that we can choose. At the same time we can configure those operating systems to activate certain services like FTP, HTTP, Telnet, etc


Open DLP
Some of the commercial DLP tools available in the market are – CA DLP by CA technologies, Iron Port by Cisco, Data Loss Prevention Products by McAfee.


Imposter - Browser Phishing Framework
Imagine this scenario; you are sitting at the airport waiting for your boarding call. You turn on your laptop to kill time, scan for free Wi-Fi networks, connect to one of them and request for ‘google.com’. How much do you risk by doing this? ‘Not much’ you would say, right?


Nessus
A world-leader in active scanners, Nessus features high-speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis of your security posture. Nessus scanners can be distributed throughout an entire enterprise, inside DMZs and across physically separated networks, launching the Nessus GUI.


netcat
Netcat, often referred to as “Swiss army-knife for TCP/IP”, is a simple utility which can do a lot of wonders on any Linux machine and with ported version on Windows too. It can make and accept data across network connection using TCP-UDP protocol. It does not have an attractive GUI. It can be used as a port scanner, a port redirector, a port listener. It is designed to be a reliable “back end” tool that can be easily driven by other programs and scripts. Any type of connection can be created using this. Isn’t it the “Swiss Army Knife”?!


TrueCrypt
TrueCrypt is one of the best tools known to us <used for real-time on-the-fly encryption. On-the-fly encryption means encrypting every file as they are getting written on this disk and decrypting as they are being read from the disk. It is automatically encrypted or decrypted right before it is loaded or saved, without any user intervention