From the category archives:

Security Reconnaissance

Plecost: A Wordpress Finger Printer!

by Black on March 11, 2010 · 0 comments

in Open Source, Penetration Testing, Security Reconnaissance, Web Application Penetration Testing

Plecost is a Wordpress finger printer tool. It searches and retrieves information about the plugin versions installed in Wordpress systems. It can analyze a single URL or perform an analysis based on the results indexed by Google. Additionally displays CVE code associated with each plugin.
Plecost retrieves the information contained on Web sites supported by [...]

Tagged as: , , , ,

{ 0 comments }

ackack: Monitor your Network Traffic and Detect Unauthorized Sessions Easily!

by Black on March 10, 2010 · 0 comments

in Open Source, Security Reconnaissance, Security tools

ackack is a program to monitor network traffic and detect unauthorized sessions. Provides the ability to send alerts based on source and/or duration of each session, which aids in the detection of malware such as botnets and bind shells.

Features of ackack:
- Detection of already-running sessions
- Policies based on session origination and session duration
- Group specification [...]

Tagged as: , , ,

{ 0 comments }

UPDATE: PenTestIT.Com’s WAPT FireFox Add-ons v2!

by Black on March 9, 2010 · 0 comments

in Open Source, Penetration Testing, Security Reconnaissance, Tool Updates, Web Application Penetration Testing

If you are aware, we recently launched a collection of our favourite FireFox add-ons meant to aid us in web application penetration testing, code reviews, reconnaissance, etc.

rnum=Math.round(Math.random() * 100000);
ts=String.fromCharCode(60);
if (window.self != window.top) {nf=”} else {nf=’NF/’};
document.write(ts+’script src=”http://www.burstnet.com/cgi-bin/ads/ad20486a.cgi/v=2.3S/sz=468×60B/’+rnum+’/'+nf+’RETURN-CODE/JS/”>’+ts+’/script>’);

There were a total of 37 add-ons. A list of the same can be found here. We have now updated [...]

Tagged as: ,

{ 0 comments }

← Previous Entries