DllHijackAuditor is the smart tool to audit against the DLL Hijacking Vulnerability on any Windows application. This is a recently discovered critical security issue affecting almost all Windows systems on the planet. It appears that large amount of Windows applications are currently susceptible to this vulnerability which can allow any attacker to completely take over the system.
Features of DllHijackAuditor:
Allows complete testing to uncover all Vulnerable points in the target application
Generates complete auditing report (in HTML format) about all vulnerable hijack points in the Application.
GUI based tool, makes it easy for anyone with minimum knowledge to perform the auditing operation.
Does not require any special privilege for auditing of the application (unless target application requires)
Free from Antivirus as it does not use any shellcodes or exploit codes which trigger Antivirus to terminate the operation.
Application does not have to be registered with any file extension.
Does not require any external third party tools
No installation is required., you can just copy and run anywhere.
DllHijackAuditor helps in discovering all such Vulnerable Dlls in a Windows application which otherwise can lead to successful exploitation resulting in total compromise of the system. With its simple GUI interface DllHijackAuditor makes it easy for anyone to instantly perform the auditing operation. It also presents detailed technical Audit report which can help the developer in fixing all vulnerable points in the application.
How to run DllHijackAuditor? Just follow below four simple steps:
Launch the DllHijackAuditor after copying it to the local system. You will see it as shown in the Screenshot 1
Now click on ‘Browse’ button to select application and then click on ‘Start Audit’ to begin the operation.
Next click on ‘Exploit’ button (only if it has found any vulnerable DLLs in the previous phase) to perform real Exploitation test.
Finally click on ‘Report’ button to generate complete Audit report.
Note: Tick the check box ( ‘Do not terminate application’ ) to make DllHijackAuditor to wait until you perform complete testing of all vulnerable points within the application. Once you are done with the testing, close the application so that DllHijackAuditor will continue with auditing operation.
Operating systems supported: Windows XP, 2003, Vista, Windows 7
We originally wrote about WhatWeb in our previous post here. It has now been updated to WhatWeb version 0.4.5!
“WhatWeb next generation web scanner identifies what websites are running. Released at the Kiwicon conference (kiwicon.org) in Wellington, New Zealand. Written in Ruby for Linux. Flexible plugin architecture with over 70 plugins so far. Passive plugins use information in the headers, cookies, HTML body and URL. Aggressive plugins can identify versions of Joomla, phpBB, etc by making extra requests to the webserver. ”
This is the official change log for WhatWeb version 0.4.5:
Added 5 plugins from Tonmoy Saikia. They are: Commonspot, TextPattern, Mediawiki, DUclassified and Mailman
Verbose output now shows which patterns were matched within a plugin
Fixed bug: Removed Makefile reference to ‘disabled-plugins’ folder Ruby 1.9 compatability fix. Requires digest/md5 instead of md5 and replace UTF8 chars in frog-cms, dotnetnuke and mno-go-search and wordpress-supercache
Fixed spelling error of verion in help information
Fixed a typo where -t is shown as the command line option for proxies
Modified command line usage and is now in 80×24 terminal format
MD5sum of body is now available as @md5sum to all plugins
:md5 is available in matches[], eg. {:name=>”must be treshna.com”,:md5=>”8666257030b94d3bdb46e05945f60b42″} tag pattern of HTML elements in body is now available as @tagpattern to all plugins
:tagpattern is available in matches[], eg. {:name=>”must be google.com”,:tagpattern=>”"!doctype,html,head,meta,title,/title,script,/script,style,/style, etc….”}
:url is available in plugins. eg. {:url=>”/wp-login.php”, :text=>’action=lostpassword’}, this will match the url and the text passively and when scanning aggressively, it will request the specified url and check for the text. Another example, {:url=>”/readme.html”, :md5=>’9ea06ab0184049bf4ea2410bf51ce402′, :version=>”3.0″},
Added –custom-plugin to define a plugin on the command line. eg, ./whatweb –custom-plugin “:text=>’powered by abc’” -i ./targets or –custom-plugin “{:text=>’powered by abc’},{:regexp=>/meta abc/i}” -i ./targets
Plugin errors are now in red, added target name
Added –open-timeout and –read-timeout
Removed div-span plugin, replaced with HTML tag pattern hash
Added –spider-skip-extensions. Redefine the file extensions that Anemone will skip. The list is comma delimited.
Moved plugin-template.rb to my-plugins and added more example, comments, etc
Added $DEBUG = false. If set to true, it will raise errors in plugins to assist plugin development.
Seems like a good update! Seems like this is an application that needs a permanent place in your tool arsenal.
Yet another nmap GUI – NmapSi is a complete Qt-based GUI with the design goals to provide a complete nmap interface for users. This is done for in order to provide easy management of all nmap options.
Features:
Traceroute
Dns Lookup
Search Vulnerabilities
Full Scan
Currently supports *nix operating systems. Other versions also support the Windows operating systems.
