TemperIE

In: Web App Security

TamperIE is a useful tool for security testing your web applications, in order to ensure you don't make foolish assumptions about the data sent by client browsers.  Since the tool exposes and allows tampering with otherwise inconvenient input, many user-input security flaws immediately become apparent.

Nikto 2

In: Web App Security

Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 6100 potentially dangerous files/CGIs, checks for outdated versions of over 950 servers, and version specific problems on over 260 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated.

hcraft 1.0.0

In: Cryptography

hcraft is a HTTP systems penetration testing tool designed to make exploitation of known vulnerabilities in HTTP systems a dynamic, simple process. hcraft is intended to help take the details out of executing HTTP based attacks that require you to specially craft an HTTP request. By defining a modeline for a given vulnerability in the modes file you can instruct hcraft in how the HTTP request should be constructed, then use the tool to select the appropriate mode and include the dynamic parts of the attack such as target host, port, and the filename to retrieve or the command to execute.

MSNPawn 1.1

In: Web App Security

MSNPawn has been designed and developed on the .Net framework and must be installed on the system. The following utilities have been bundled with MSNPawn .

httprint

In: Web App Security

httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database.

Saturday, 06 February 2010

#!/usr/bin/python## Title: UplusFtp Server 1.7.0.12 Remote Buffer Overflow# Date: 02-03-2010#!/usr/bin/python# Author: b0telh0# Link:...
+ Full Exploit

Wednesday, 03 February 2010

/*    Deepburner pro 1.9.0.228 dbr file buffer overflow exploit(universal)   [~]This is buffer: dbr/dbi file   [~]Date: 29.01.2010   [~]Dicovery Credits: fl0 fl0w   [~]Exploit Credits :...
+ Full Exploit

Monday, 01 February 2010

################################################################## Securitylab.ir################################################################## Application Info:# Name: RaakCms# Vendor:...
+ Full Exploit