website security | Darknet

November 27th, 2008

FireCAT 1.4 Released - Firefox Catalog of Auditing Extensions

FireCAT (Firefox Catalog of Auditing exTension) is a mindmap collection of the most efficient and useful firefox extensions oriented application security auditing and assessment
You can find an online map of Firecat v1.4 here.
Changes for version 1.4

Information Gathering (Enumeration and Fingerprinting)

Passive Recon : PassiveRecon allows Information Security professionals the ability to perform “packetless” discovery of target [...]

November 12th, 2008

Samurai Web Testing Framework - Web Application Security LiveCD

The Samurai Web Testing Framework is a live linux environment that has been pre-configured to function as a web pen-testing environment. The CD contains the best of the open source and free tools that focus on testing and attacking websites. In developing this environment, we have based our tool selection on the tools we use [...]

January 3rd, 2008

gotroot modsecurity Rules for Apache - Anti-spam and Security

To follow on from Whitetrash which I posted about previously, here is another tool to secure your web site or web application. Essentially it’s a very comprehensive set of rules for mod_security.
ModSecurity is an open source intrusion detection and prevention engine for web applications (or a web application firewall). Operating as an Apache Web server [...]