Security and Hacking Website
07.25
Awareness and Training Awareity MOAT
www.awareity.com
Birch Systems Privacy Posters
www.privacyposters.com
Greenidea Visible Statement
www.greenidea.com
Interpact, Inc. Awareness Resources
www.thesecurityawarenessco
NIST resources
http://csrc.nist.gov/ATE
SANS Security Awareness Program
www.sans.org/awareness/awa
Security Awareness, Inc. Awareness Resources
www.securityawareness.com
Bluetooth BlueScanner
www.networkchemistry.com/p
Bluesnarfer
www.alighieri.org/tools/bl
BlueSniper rifle
www.tomsnetworking.com/200
Blooover
http://trifinite.org/trifi
Bluejacking community site
www.bluejackq.com
Detailed presentation on the various Bluetooth attacks
http://trifinite.org/Downl
NIST Special Publication 800-48
http://csrc.nist.gov/publi
Certifications Certified Ethical Hacker
www.eccouncil.org/CEH.htm
Dictionary Files and Word Lists ftp://ftp.cerias.purdue.ed
http://packetstormsecurity
www.outpost9.com/files/Wor
Default vendor passwords
www.cirt.net/cgi-bin/passw
Exploit Tools CORE IMPACT
www.coresecurity.com
Metasploit
www.metasploit.com/project
General Research Tools AfriNIC
www.afrinic.net
APNIC
www.apnic.net
ARIN
www.arin.net/whois/index.h
CERT/CC Vulnerability Notes Database
www.kb.cert.org/vuls
ChoicePoint
www.choicepoint.com
Common Vulnerabilities and Exposures
http://cve.mitre.org/cve
DNSstuff.com
www.DNSstuff.com
www.google.com
Government domains
www.dotgov.gov
Hoover’s business information
www.hoovers.com
LACNIC
www.lacnic.net
Military domains
www.nic.mil/dodnic
NIST National Vulnerability Database
http://nvd.nist.gov
RIPE Network Coordination Centre
www.ripe.net/whois
Sam Spade
www.samspade.org
SecurityTracker
http://securitytracker.com
Switchboard.com
www.switchboard.com
U.S. Patent and Trademark Office
www.uspto.gov
U.S. Search.com
www.ussearch.com
U.S. Securities and Exchange Commission
www.sec.gov/edgar.shtml
Whois.org
www.whois.org
Yahoo! Finance site
http://finance.yahoo.com
Hacker Stuff 2600 @@md The Hacker Quarterly magazine
www.2600.com
Blacklisted 411
www.blacklisted411.net
Computer Underground Digest
www.soci.niu.edu/~cudigest
Hacker T-shirts, equipment, and other trinkets
www.thinkgeek.com
Honeypots: Tracking Hackers
www.tracking-hackers.com
The Online Hacker Jargon File
www.jargon.8hz.com
PHRACK
www.phrack.org
Linux Amap
http://packages.debian.org
Bastille Linux Hardening Program
www.bastille-linux.org
BackTrack
www.remote-exploit.org/ind
Comprehensive listing of live bootable Linux toolkits
www.frozentech.com/content
Debian Linux Security Alerts
www.debian.org/security
Linux Administrator’s Security Guide
www.seifried.org/lasg
Linux Kernel Updates
www.linuxhq.com
Linux Security Auditing Tool (LSAT)
http://usat.sourceforge.ne
Metasploit
www.metasploit.com
Network Security Toolkit
www.networksecuritytoolkit
Red Hat Linux Security Alerts
www.redhat.com/securityupd
Security Tools Distribution
http://s-t-d.org
Slackware Linux Security Advisories
www.slackware.com/security
SUSE Linux Security Alerts
www.suse.com/us/business/s
Tiger
ftp://ftp.debian.org/debia
VLAD the Scanner
www.bindview.com/Services/
Log Analysis ArcSight Enterprise Security Manager
www.arcsight.com/product.h
GFI LANguard Security Event Log Monitor
www.gfi.com/lanselm
Internet Security Systems Managed Services
www.iss.net/products_servi
LogAnalysis.org system logging resources
www.loganalysis.org
Malware chkrootkit
www.chkrootkit.org
EICAR Anti-Virus test file
www.eicar.org/anti_virus_t
The File Extension Source
http://filext.com
McAfee AVERT Stinger
http://vil.nai.com/vil/sti
Rkdet
http://vancouver-webpages.
Wotsit’s Format
www.wotsit.org
Messaging Abuse.net SMTP relay checker
www.abuse.net/relay.html
Brutus
http://securitylab.ru/_too
Cain and Abel
www.oxid.it/cain.html
DNSstuff.com relay checker
www.dnsstuff.com
GFI e-mail security test
www.gfi.com/emailsecurityt
How to disable SMTP relay on various e-mail servers
www.mail-abuse.com/an_sec3
mailsnarf
www.monkey.org/~dugsong/ds
www.datanerds.net/~mike/ds
Sam Spade for Windows
www.samspade.org/ssw
smtpscan
www.greyhats.org/?smtpscan
NetWare Adrem Freecon
www.adremsoft.com
Craig Johnson’s BorderManager resources
http://nscsysop.hypermart.
JRB Software
www.jrbsoftware.com
NCPQuery
www.bindview.com/resources
NetServerMon
www.simonsware.com/Product
Novell Product Updates
http://support.novell.com/
Pandora
www.nmrc.org/project/pando
Rcon program
http://packetstormsecurity
Remote
www.securityfocus.com/data
UserDump
www.hammerofgod.com/downlo
Networks Cain and Abel
www.oxid.it/cain.html
CommView
www.tamos.com/products/com
dsniff
www.monkey.org/~dugsong/ds
Essential NetTools
www.tamos.com/products/net
Ethereal network analyzer
www.ethereal.com
EtherPeek
www.wildpackets.com/produc
ettercap
http://ettercap.sourceforg
Firewalk
www.packetfactory.net/fire
Getif
www.wtcs.org/snmp4tpc/geti
GFI LANguard Network Scanner
www.gfi.com/lannetscan
GNU MAC Changer
www.alobbs.com/macchanger
IETF RFCs
www.rfc-editor.org/rfcxx00
LanHound
www.sunbelt-software.com/L
MAC address vendor lookup
http://standards.ieee.org/
Nessus vulnerability scanner
www.nessus.org
Netcat
www.vulnwatch.org/netcat/n
NetScanTools Pro all-in-one network testing tool
www.netscantools.com
Nmap port scanner
www.insecure.org/nmap
NMapWin
http://sourceforge.net/pro
Port number listing
www.iana.org/assignments/p
Port number lookup
www.cotse.com/cgi-bin/port
QualysGuard vulnerability assessment tool
www.qualys.com
SNMPUTIL
www.wtcs.org/snmp4tpc/FILE
Sunbelt Network Security Inspector
www.sunbelt-software.com/S
SuperScan port scanner
www.foundstone.com/resourc
TrafficIQ Pro
www.karalon.com
WhatIsMyIP
www.whatismyip.com
Password Cracking BIOS passwords
http://labmice.techtarget.
Brutus
http://securitylab.ru/_too
Cain and Abel
www.oxid.it/cain.html
Chknull
www.phreak.org/archives/ex
Crack
ftp://coast.cs.purdue.edu/
Elcomsoft Distributed Password Recovery
www.elcomsoft.com/edpr.htm
John the Ripper
www.openwall.com/john
Ophcrack
www.objectif-securite.ch/o
Proactive Password Auditor
www.elcomsoft.com/ppa.html
Proactive System Password Recovery
www.elcomsoft.com/pspr.htm
pwdump3
www.openwall.com/passwords
NetBIOS Auditing Tool
www.securityfocus.com/tool
NTAccess
www.mirider.com/ntaccess.h
RainbowCrack
www.antsight.com/zsl/rainb
RainbowCrack-Online
www.rainbowcrack-online.co
Rainbow tables
http://rainbowtables.shmoo
TSGrinder
www.hammerofgod.com/downlo
WinHex
www.winhex.com
Patch Management BigFix Enterprise Suite Patch Management
www.bigfix.com/products/pa
Ecora Patch Manager
www.ecora.com/ecora/produc
GFI LANguard Network Security Scanner
www.gfi.com/lannetscan
HFNetChkPro from Shavlik Technologies
www.shavlik.com/product_ca
Patch Authority Plus
www.scriptlogic.com/produc
PatchLink
www.patchlink.com
SysUpdate
www.securityprofiling.com
UpdateEXPERT from St. Bernard Software
www.stbernard.com/products
Windows Server Update Services from Microsoft
www.microsoft.com/windowss
Source Code Analysis Compuware
www.compuware.com/products
Fortify Software
www.fortifysoftware.com
Klocwork
www.klocwork.com
Ounce Labs
www.ouncelabs.com
SPI Dynamics
www.spidynamics.com/produc
Security Standards Center for Internet Security’s Benchmarks/Scoring Tools
www.cisecurity.org
NIST Special Publications
http://csrc.nist.gov/publi
Open Source Security Testing Methodology Manual
www.isecom.org/osstmm
SANS Step-by-Step Guides
http://store.sans.org
Security Education Kevin Beaver’s Security on Wheels podcasts and information security training resources
www.securityonwheels.com
Privacy Rights Clearinghouse’s Chronology of Data Breaches Reported Since the ChoicePoint Incident
www.privacyrights.org/ar/C
Storage CHAP Password Tester
www.isecpartners.com/tools
CIFSShareBF
www.isecpartners.com/Secur
GrabiQNs
www.isecpartners.com/Secur
NASanon
www.isecpartners.com/Secur
StorScan
www.isecpartners.com/tools
Risk Analysis and Threat Modeling SecureITree
www.amenaza.com
Software Engineering Institute’s OCTAVE methodology
www.cert.org/octave
Voice over IP Cain and Abel
www.oxid.it/cain.html
NIST’s SP800-58 document
http://csrc.nist.gov/publi
PROTOS
www.ee.oulu.fi/research/ou
SearchVoIP.com
http://searchvoip.techtarg
SIP Forum Test Framework
www.sipfoundry.org/sftf/in
sipsak
http://sipsak.org
SiVuS
www.vopsecurity.org/html/t
vomit
http://vomit.xtdnet.nl
War Dialing Sandstorm Enterprises PhoneSweep
www.sandstorm.net/products
Sandstorm Enterprises Sandtrap wardialing honepot
www.sandstorm.net/products
THC-Scan
http://packetstormsecurity
ToneLoc
www.securityfocus.com/data
Web Applications and Databases 2600’s Hacked Pages
www.2600.com/hacked_pages
Acunetix Web Vulnerability Scanner
www.acunetix.com
AppDetective
www.appsecinc.com/products
Brutus
http://securitylab.ru/_too
HTTrack Website Copier
www.httrack.com
Foundstone’s Hacme Tools
http://www.foundstone.com/
Google Hacking Database
http://johnny.ihackstuff.c
Netcraft
www.netcraft.com
NGSSquirrel
www.ngssoftware.com/softwa
N-Stealth Security Scanner
www.nstalker.com/eng/produ
Paros Proxy
www.parosproxy.org
Pete Finnigan’s listing of Oracle scanning tools
www.petefinnigan.com/tools
Port 80 Software’s ServerMask
www.port80software.com/pro
Port 80 Software’s Custom Error
www.port80software.com/pro
SiteDigger
www.foundstone.com/resourc
SQLPing2 and SQLRecon
www.sqlsecurity.com/Tools/
WebInspect
www.spidynamics.com/produc
WebGoat
www.owasp.org/index.php/Ca
Windows CORE IMPACT
www.coresecurity.com
DumpSec
www.somarsoft.com
Effective File Search
www.sowsoft.com/search.htm
FileLocator Pro
www.mythicsoft.com/fileloc
Legion
http://packetstormsecurity
Metasploit
www.metasploit.com
Microsoft Baseline Security Analyzer
www.microsoft.com/technet/
Microsoft TechNet Security Center
www.microsoft.com/technet/
Network Users
www.optimumx.com/download/
Rpcdump
www.bindview.com/Services/
SMAC MAC address changer
www.klcconsulting.net/smac
Vision
www.foundstone.com/knowled
Walksam
www.bindview.com/Services/
Winfo
www.ntsecurity.nu/toolbox/
Wireless Networks Aircrack
http://freshmeat.net/proje
AirMagnet Laptop Analyzer
www.airmagnet.com/products
AiroPeek SE
www.wildpackets.com/produc
AirSnort
http://airsnort.shmoo.com
Cantenna war-driving kit
http://mywebpages.comcast.
CommView for Wi-Fi
www.tamos.com/products/com
Digital Hotspotter
www.canarywireless.com
Homebrew WiFi antenna
www.turnpoint.net/wireless
KisMAC
http://kismac.binaervarian
Kismet
www.kismetwireless.net
Lucent Orinoco Registry Encryption/Decryption program
www.cqure.net/tools.jsp?id
NetStumbler
www.netstumbler.com
OmniPeek
www.wildpackets.com/produc
RFprotect Mobile
www.networkchemistry.com/p
SeattleWireless HardwareComparison page
www.seattlewireless.net/in
Security of the WEP Algorithm
www.isaac.cs.berkeley.edu/
The Unofficial 802.11 Security Web Page
www.drizzle.com/~aboba/IEE
Wellenreiter
www.wellenreiter.net
WiGLE database of wireless networks at
www.wigle.net
www.wifimaps.com
www.wifinder.com
WinAirsnort
http://winairsnort.free.fr
Wireless Vulnerabilities and Exploits
www.wirelessve.org
WPA Cracker
www.tinypeap.com/html/wpa_
http://rapidshare.com/file
Penulis : Blue If
Tags:
Articles
0 comments