Archive | Security Software

Advertisements


23 January 2008 | 17,856 views

mod_anti_tamper – Anti Tamper Module for Apache 2.x

What Is Mod AntiTamper (AT) AntiTamper is an Apache 2.x module that could be used to prevent some sort of url and cookie tampering. Specifically, AT could stop a lot of those malicious bots that take advantage from search engines. Moreover, attack techniques like HTTP Response Splitting and session hijacking/fixation will be mitigated. Is important […]

Continue Reading


03 January 2008 | 6,911 views

gotroot modsecurity Rules for Apache – Anti-spam and Security

To follow on from Whitetrash which I posted about previously, here is another tool to secure your web site or web application. Essentially it’s a very comprehensive set of rules for mod_security. ModSecurity is an open source intrusion detection and prevention engine for web applications (or a web application firewall). Operating as an Apache Web […]

Continue Reading


27 December 2007 | 5,397 views

Whitetrash – Dynamic Web White-listing for Squid

This is a pretty neat tool for those using Squid Cache and looking for a pro-active tool for securing web acccess in their company (or house if you have a devious sibling). The goal of Whitetrash is to provide a user-friendly and sysadmin-friendly proxy that makes it significantly harder for malware to use HTTP and […]

Continue Reading


13 December 2007 | 22,473 views

Nmap Port Scanner 4.50 Released for Download

At last a new major release of Nmap! If for some odd reason you don’t already know what Nmap is, it is a free and open source utility for network exploration or security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring […]

Continue Reading


04 December 2007 | 13,283 views

Technitium FREE MAC Address Changer v4.7 – Released for Download

The newest version of Technitium MAC Address Changer was released a while back, v4.7. There are some minor changes and it’s looking to be pretty polished for a free tool. Of course some might say “It’s just a registry entry? What’s the big deal?” Well this just makes it easier, especially when you are doing […]

Continue Reading


30 November 2007 | 7,144 views

fwtest – Firewall Testing Toolkit

The firewall test suite fwtest is a security auditing tool made up of two parts: the test control application fwtest and optionally one or two helper processes named fwagent. The test control application fwtest starts up the python interpreter with the given test script. The test script controls the packet data flow between two virtual […]

Continue Reading


05 November 2007 | 3,378 views

GFI End of Year Offer – Up to 50% Off

Just a quick note as I know many of you guys are in corporate security positions and might be looking for some of the solutions GFI offers. They are having a Q4 promotion with up to 50% off on some of their products/services. GFI MailEssentials – 25% GFI MailEssentials & GFI MailSecurity Suite – 25% […]

Continue Reading


23 October 2007 | 4,388 views

CORE GRASP – PHP Web Application Protection Software

CORE GRASP for PHP is a web-application protection software aimed at detecting and blocking injection vulnerabilities and privacy violations. As mentioned during its presentation at Black Hat USA 2007, GRASP is being released as open source under the Apache 2.0 license. The present implementation protects PHP 5.2.3 against SQL-injection attacks for the MySQL engine, it […]

Continue Reading


09 October 2007 | 2,744 views

SSA Version 1.5.2 – OVAL Vulnerability Assessment Software

SSA (Security System Analyzer) is free non-intrusive OVAL-Compatible software. It provides security testers, auditors with an advanced overview of the security policy level applied. Features : OVAL-compatible product SCAP (Security Content Automation Protocol) Perform a deep inventory audit on installed softwares and applications Scan and map vulnerabilities using non-intrusive techniques based on schemas Detect and […]

Continue Reading


08 August 2007 | 5,571 views

XSS Warning – A Security Extension/Add-on for Firefox

XSS Warning is a extension/add-on for Firefox that filters malicious values to prevent Cross Site Scripting (XSS) attacks by malicious URLs (assuming you have Javascript enabled). XSS Warning 0.1.8 beta protect from: URL attack Redirect attack Link code injection Compatible with Firefox: 1.5 – 2.0.0 You can install and read more about XSS Warning here: […]

Continue Reading


Advertisements