You can find our first post regarding Laudanum here. Now, the author has updated the tool to Laudanum version 0.2.
“Laudanum is a collection of injectable files, designed to be used in a pentest when SQL injection flaws are found and are in multiple languages for different environments.They provide functionality such as shell, DNS query, LDAP retrieval and others.”
This version adds proxy capabilities to the awesome app!
Download Laudanum version 0.2 here.
NodeZero is Ubuntu based linux designed as a complete system which can also be used for penetration testing. NodeZero uses Ubuntu repositories so your system will be always up to date. The system setup is basic and it’s primarily designed for disk installation and customization as you want.
With NodeZero comes around 300 tools for penetration testing and set of basic services which are needed in penetration testing. Also we are preparing a repository of pentest tools so your system will be up to date at all time.
An alternative for Backtrack, but Backtrack is active and is regularly updated. NodeZero is just initiated as it is Ubuntu based, it does seems to have good hardware recognition.
With over 300 tools included it look fully loaded and ready for action! How do you log into the installation, -
User name for live mode: nodezero
Password for live mode: [field must be left empty]
Download NodeZero here
Searches leading to this post:Today, we have a post from the Tales from the SANS Diary by Mr. Manuel Humberto Santander Pelaez!
“Obfuscated SQL-Injection-attacks” is a post by the author that demonstrates how a series of records that are similar to an SQL injection but are obfuscated could be used to bypass your web application firewall. The author also provides a few tricks that help us avoid SQL injection in a real scenario.
The author has done an amazing job that we think needs an applause.
Searches leading to this post:
