Archive | Programming


18 December 2007 | 19,943 views

Pcapy – Python Interface to LibPcap

Pcapy is a Python extension module that interfaces with the libpcap packet capture library. Pcapy enables python scripts to capture packets on the network. Pcapy is highly effective when used in conjunction with a packet-handling package such as Impacket, which is a collection of Python classes for constructing and dissecting network packets. Advantages of Pcapy […]

Continue Reading


10 November 2007 | 11,748 views

Skavenger – Source Code Auditing Tool!

Skavenger? Yes, because scavenger is already used?!? What is skavenger? Skavenger is a source code auditing tool, firstly though for php, but also used for any kind of source code file; as long as you know what to look for… Yes I thought is as a replacement tool for egrep/sed under Windows! because not everybody […]

Continue Reading


08 November 2007 | 3,983 views

untidy – XML Fuzzer

Seen as though untidy was mentioned again fairly recent, it sparked my memory that I have a fairly old draft regarding untidy the XML Fuzzer. Fuzzing is definitely becoming an important part of Pen Testing and especially application security – we’ve published about quite a few and I’m sure there are more in development. Anyway, […]

Continue Reading


06 November 2007 | 6,818 views

WSBang – Python Based SOAP Services Testing Tool

WSBang is designed to be a lightweight, open source fuzzer for web services. It takes as input the URL or file system location of a WSDL for the web service to be tested. Upon completion, a simple HTML view of the test results will be displayed. Method parameters are fuzzed based on their type as […]

Continue Reading


01 November 2007 | 6,349 views

Tutorial for Fuzzled – Writing a Fuzzer with the Fuzzled Framework

If you remember we mentioned Fuzzled a little while back, the PERL fuzzing framework. Apparently Fuzzled 1.1 should be coming out soon. Fuzzled is a powerful fuzzing framework. Fuzzled includes helper functions, namespaces, factories which allow a wide variety of fuzzing tools to be developed. Fuzzled comes with several example protocols and drivers for them. […]

Continue Reading


21 September 2007 | 8,167 views

LORCON (Loss Of Radio CONnectivity) 802.11 Packet Library

The LORCON packet injection library provides a high level interface to transmit IEEE 802.11 packets onto a wireless medium. Written for Linux systems, this architecture simplifies the development of 802.11 packet injection through an abstraction layer, making the development of auditing and assessment tools driver- independent. Using LORCON, developers can write tools that inject packets […]

Continue Reading


13 September 2007 | 63,085 views

FLARE – Flash Decompiler to Extract ActionScript

Flare processes an SWF and extracts all scripts from it. The output is written to a single text file. Only ActionScript is extracted, no text or images. Flare is freeware. Windows, Mac OS X and Linux versions are available. The main purpose of decompiler is to help you recover your own lost source code. However, […]

Continue Reading


05 September 2007 | 6,544 views

ServiceCapture – HTTP Traffic Capture for Debugging Flash

ServiceCapture runs on your pc and captures all HTTP traffic sent from your browser or IDE. It is designed to help Rich Internet Application(RIA) developers in the debugging, analysis, and testing of their applications. You can download the free trial below. After it is installed and running, visit the Macromedia Exchange with your web browser […]

Continue Reading


20 August 2007 | 19,570 views

Immunity Debugger v1.0 (immdbg) Release – Download it Now!

After almost a year of intensive development and internal use, Immunity (The guys who bought us CANVAS) has announced the public release of Immunity Debugger v1.0. The main objective for this tool was to combine the best of commandline based and GUI based debuggers. Immunity Debugger is a powerful new way to write exploits, analyze […]

Continue Reading


01 August 2007 | 16,964 views

Security Freak Video Lectures – Hacking, Programming, Networking & More

A while back a reader e-mailed us about a new site they have called Security Freak, the site is about informatin security education and is mostly using video lectures to illustrate and convey the lessons. Security-Freak.net is an attempt to lower the entry barrier for starting computer security research. The author has noticed that during […]

Continue Reading