|
NStealth HTTP Security Scanner v5.8 Free
hot!
|
|
Hits: 196 |
|
Date added: 06/28/2006 |
|
An updated web server security auditing tool that scans over 30.000 vulnerabilities and exploits! The ideal exploit scanner to date.
An updated web server security auditing tool that scans over 30.000 vulnerabilities and exploits! The ideal exploi... |
|
|
|
|
|
NF Tools Firefox Pluggin
|
|
Hits: 14 |
|
Date added: 06/17/2006 |
|
This extension adds some of the functionality of the Tools to your right-click menu in Firefox. Just select some text on a webpage, right click on it and you can do the following actions on the text:
ASCII <-> Hex
ASCII <-> Binary
Base64 encode/decode
Javascript escape/unescape
MD5 hash
SHA1 hash
BETA Version.
|
|
|
|
|
|
|
NetMole 1.0
hot!
|
|
Hits: 57 |
|
Date added: 02/06/2006 |
|
This is another good website pentration testing tool for admins. Check you sites security with netMole. Few options are Spider attack or HTTP attack. |
|
|
|
|
|
|
Net Monitor
|
|
Hits: 16 |
|
Date added: 01/24/2006 |
|
Monitor your Internet connection! This Power Tool perodically tests the web servers and e-mail servers of your choice, and attempts to download a specific page. It can also test connections to any computer on the local network, or on the Internet! |
|
|
|
|
|
mod_evasive
|
|
Hits: 28 |
|
Date added: 02/09/2007 |
|
mod_evasive is an evasive maneuvers module for Apache to provide evasive action in the event of an HTTP DoS or DDoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and etcetera. mod_evasive presently reports abuses via email and syslog facilities.
Detection is performed by creating an internal dynamic hash table of IP Addresses and URIs, and denying any single IP address from any of the following:
* Requesting the same page more than a few times per second
* Making more than 50 concurrent requests on the same child per second
* Making any requests while temporarily blacklisted (on a blocking list)
This method has worked well in both single-server script attacks as well as distributed attacks, but just like other evasive tools, is only as useful to the point of bandwidth and processor consumption (e.g. the amount of bandwidth and processor required to receive/process/respond to invalid requests), which is why it's a good idea to integrate this with your firewalls and routers for maximum protection.
This module instantiates for each listener individually, and therefore has a built-in cleanup mechanism and scaling capabilities. Because of this per-child design, legitimate requests are never compromised (even from proxies and NAT addresses) but only scripted attacks. Even a user repeatedly clicking on 'reload' should not be affected unless they do it maliciously. mod_evasive is fully tweakable through the Apache configuration file, easy to incorporate into your web server, and easy to use. |
|
|
|
