sectool is a security tool that can be used both as a security audit as well as a part of an intrusion detection system. It consists of set of tests, library and textual/graphical frontend. Tests are sorted into groups and security levels. Administrators can run selected tests, groups or whole security levels. Security Levels Naive […]
Countermeasures
Flint – Web-based Firewall Rule Scanner
[ad] Flint examines firewalls, quickly computes the effect of all the configuration rules, and then spots problems so you can: CLEAN UP RUSTY CONFIGURATIONS that are crudded up with rules that can’t match traffic. ERADICATE LATENT SECURITY PROBLEMS lurking in overly-permissive rules SANITY CHECK CHANGES to see if new rules create problems. Flint is absolutely […]
GreenSQL – Open Source Database Firewall Software
[ad] GreenSQL is an Open Source database firewall used to protect databases from SQL injection attacks. GreenSQL works as a proxy for SQL commands and has built in support for MySQL & PostgreSQL . The logic is based on evaluation of SQL commands using a risk scoring matrix as well as blocking known db administrative […]
Microsoft CAT.NET v1.1.1.9 – Binary Code Analysis Tool .NET
[ad] CAT.NET is a binary code analysis tool that helps identify common variants of certain prevailing vulnerabilities that can give rise to common attack vectors such as Cross-Site Scripting (XSS), SQL Injection and XPath Injection. CAT.NET is a snap-in to the Visual Studio IDE that helps you identify security flaws within a managed code (C#, […]
AVG Stepping Up Consumer Anti-Virus Offerings
[ad] AVG used to be THE anti-virus software a few years ago, especially with it being the first major vendor offering a free solution for home users. If you asked any techie back in 2002 which AV should you use, the answer would invariably be AVG free (or perhaps Panda). After that AVG just got […]