| Red team assessment paper  |
This is a student pentest-paper about demonstrating weaknesses in the security architecture proposed by Parliament Hill Firewall Practical #0063. The paper is written quite well and contains interesting scenario how to attack the system. |
1'256 |
|
| Securing mysql step-by-step |
This is a quite good guide to securing an installation of MySQL, dealing with chrooting the daemon, dealing with default accounts, and other "hardening" that should be done. |
450 |
|
| snort IDS |
Snort is a open-source intrusion detection system that is developed actively. It is free and could compete with some of the commercial products. Maintaining snort is a bit harder, but it does what it is supposed to do.
|
483 |
|
| Soap web security |
The purpose of SOAP is to allow various components to communicate using remote functionality as if they were local. This paper explains some types of attacks and defenses based on the SOAP implementation. it also acts as a nice small primer to SOAP. |
702 |
|
| Socat |
A netcat alternative |
554 |
|
| Spike |
SPIKE Proxy is a similar tool to Achilles and can intercept traffic and let you edit it. You can also get a fuzzer that is trying to attack parameters and make the server in the other end to react in unwanted ways.
|
908 |
|
| SQL injection paper (securiteam) |
SecuriTeam has released an SQL injection paper that is quite good. This should help you grasp the basics of SQL injection techniques, especially if you do pentests against web-applications. |
678 |
|
| SQL security scripts |
SQLSecurity has collected some useful MS-SQL scripts & tools on their page that can be used to enumerate MS SQL servers and check security of the databases. Might come handy.
|
604 |
|
| SQL tutorial |
This is a nice online SQL tutorial, that can be useful for web-app testers, as the syntax for SQL is a bit hard to remember if you don't use it daily. The site also hosts lots of other www-related tutorials, and is worth checking out. |
551 |
|
| Stunnel |
Stunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, LDAP, etc) by having |
481 |
|
| TCP protocol specifications (original) |
RFC specifications of TCP (transmission control protocol). 0793 is the original RFC & 3168 is an update to it (see below). Together, these should help you understand how the protocol works.
|
465 |
|
| TCP protocol specifications (update) |
3168 is an update to the original 0793 specifications of the TCP protocol. |
468 |
|
| TCP/IP cheat sheet |
This is a nice cheat-sheet about TCP/IP. It has UDP, ARP, DNS, PING and ICMP also explained and most common ports and stuff related to these. It also lists many protocols like for example LDAP, but doesn't dig in to it. Might be a handy little paper |
501 |
|
| The coroner's toolkit in depth |
This is a nice paper that explains how to use the tools in TCT efficiently for forensics purposes. The grave-robber part could be used to collect volative data while the machine is up and non-volatile data after it has been brought down, the other to |
516 |
|
| The coroners toolkit |
The Coroner's Toolkit is a toolkit for forensics analysts. Notable TCT components are the grave-robber tool that captures information, the ils and mactime tools that display access patterns of files dead or alive, the unrm and lazarus tools that reco |
507 |
|
| thehackerschoice.com |
This is a german hacking group that research security vulnerabilities and create exploits. They have a nice collection of tools available that you can use to assess some stuff. They also publish papers, thought some of them are written in german.
|
638 |
|
| Toolcrypt wireless toolkit |
This toolkit is built for Windows platform and contains for example WEP key extraction, decryption tools, client and AP analysis tools and other goodies. Might be a nice addition to a Windows WLAN auditing laptop. |
708 |
|
| tscrack |
TScrack is a wordlist-based terminal server login-cracker, developed by gridrun. This tool basically hits a terminal server by using a wordlist. If you need to enumerate passwords and terminal services is enabled, this is one way to go.
|
971 |
|
| UDP protocol specifications |
RFC specifications of UDP. This should help you understand how UDP works.
|
460 |
|
| unxutils.sourceforge.net |
These Win32 tools work like their unix-equivalents. Might come handy at some point and if you miss those simple unix-tools, you can now get them on Windows :) Check out what the tools are from the site.
|
515 |
|
| Using dd over the network |
This HowTo explains how you can copy the entire contents of a PC over the network, in case you do not have enough big removable media or it is not feasible to remove the original HDD of the machine. It is quite a straightforward paper.
|
529 |
|
| Valgrind |
Valgrind is a tool to help you find memory-management problems in your programs. When a program is run under Valgrind's supervision, all reads and writes of memory are checked, and calls to malloc/new/free/delete are intercepted. |
585 |
|
| web audit library (WAL) |
It is a python module that provides a powerful and easy API for writing web applications assessment tools, similar to what Libwhisker does for Perl. Wal provides for example send/receive/analyze HTTP 0.9/1.0/1.1, decoders/encoders and more.
|
546 |
|
| WHOIS Finder |
|
429 |
|
| Wireless security paper |
IIS.net has released a whitepaper about Wireless Security. This paper has good viewpoints that should be taken into consideration when you plan implementing wireless technologies into your network/office environment. If you are into wireless stuff, r |
517 |
|
| www.anticrack.de |
Anti-Crack is mainly focused on reverse engineering, coding & cracking software. If you are a programmer, this site can wield lots of interesting information. I'm not a coder, so I can't really tell if the information here is good or not. |
640 |
|
| www.blackhat.com |
This is the homepage for the Blackhat Briefings. They have a lot of resources on the pages in form of presentations. Of course this material acts only as presentation material, but should give clues where to look for more information on a specific to |
532 |
|
| www.bouncycastle.org |
Legion of the Bouncy Castle has created a crypto API in Java. This piece of work could benefit one that is in need of implementing some crypto algorithms into own applications. Check the specifications on the site to see what is supported.
|
500 |
|
| www.ccc.de |
This is the site for the famous german hacking group called the Chaos Computer Club. It has lots of members but unfortunately the pages are mostly in german. There is a notice on the site that promises there will be more english content at some point |
547 |
|
| www.cert.org |
CERT is a computer security incident response "team", having local sites around the world. This site reports world-wide if there is any major vulnerabilities spotted that should be fixed. It also has information how to deal with incidents and how to |
477 |
|
| www.cgisecurity.org |
The site focuses mainly on web-security and lists vulnerabilities found on web-servers and technologies like PHP, and so on. It gives good pointers to certain web-servers and applications from the security point of view.
|
511 |
|
| www.ciphersbyritter.com |
This site has crypto-resources that help one get some idea what crypto is about. It also hosts a nice 'technical crypto terminology' that tries to tell what some of those neat words mean. And it has lots of resources.
|
514 |
|
| www.cisecurity.org |
CIS provides methods and tools to improve, measure, monitor, and compare the security status of your Internet-connected systems and appliances, plus those of your business partners. It has nice guidelines & benchmarks that you can utilize to check th |
506 |
|
| www.collusion.org |
This is a hacking group that mainly share information and write articles, their mission being to learn more information about everything. The area of subject is wide, ranging from playing around with TV to phreaking.
|
565 |
|
| www.cotse.com |
This site has good online tools, like name lookups, traceroute, proxy checks and so on. It also has loads of information of networking protocols and hosts the Internet Encyclopedia. There is also a plethora of tools listed on the site that can come h |
494 |
|
| www.ebcvg.com |
This is a security-site containing lots of different articles and tutorials regarding security, virii, cryptography and hacking. The site also has own editorials/articles posted and a "security"-shop.
|
526 |
|
| www.foundstone.com |
Foundstone has released a variety of free tools to the community. The tools include forensics-tools, assessment-tools, intrusion detection tools, scanning tools & stress testing tools. You might find something useful in here. |
619 |
|
| www.honeypots.net |
This site hosts about 600 links to IDS, honeypot & incident response resources. A very nice site for people needing to learn more about the areas. From this site you can also access resources for DNS security & wardriving, all kept by the same guy.
|
483 |
|
| www.i-hacked.com |
This site is dedicated to Hardware Hacking. It does not support "Cracking" or "Hacking" into someones email/website/computer. This might be interesting read for those hardware-enthusiasts, and this is also a form of hacking.
|
509 |
|
| www.infosecwriters.com |
A site dedicated for papers and articles written by security-minded people. It also has some other resources, like honeynet-related stuff and forensics. It also has a nice library of documents.
|
527 |
|
| www.infosyssec.org |
This site has loads of links to different sites and resources. It also lists usual mailinglists, vulnerability databases, search engines, antivirus- and OS/software-vendors with links to their patch-pages.
|
462 |
|
| www.legions.org |
Keen Veracity is an online zine that works about the same way as Phrack but apparently has a much smaller contributor base. The information on these zines tend to be a bit humorous and not written that seriously.
|
510 |
|
| www.linuxsecurity.com |
On this site you will find lots of information about securing Linux for many different roles, web-server, firewall and so on. Overally this site should be one-stop place for your needs when securing Linux. It also keeps up with the newest tools and o |
485 |
|
| www.lsd-pl.net |
LSD-Planet is a group of polish hackers that are well known in the security/hacking community. These guys are very good in what they do and spend a lot of time researching server & network security. They provide exploit code and some tools and have w
|
494 |
|
| www.markusjansson.com |
This site is specialized on privacy & Windows-security for home users. If you feel like you don't want to be that friendly neighbourhood hacker again, point your friend to this site. A word of warning thought. These pages have quite some paranoia inc |
504 |
|
| www.net-security.org |
This site collects some interesting tidbits into their page, news from the world. They also have lots of book-reviews so that might be a place to look for when considering buying a book, it might have a review done on this site. It also lists some vu |
484 |
|
| www.networkintrusion.co.uk |
Taliskers Network Tools purpose is to list Intrusion Detection tools, firewalls and network security scanners. There is loads of these listed, both commercial and freeware. He also gives some overview of the product. Check it out if you're planning o |
476 |
|
| www.nmrc.org |
Nomad Mobile Research Centre, this group concentrates on security research. They have some interesting papers and projects going on, good FAQs about hacking several things and provide some tools. The quality is good, and they include welcome humour i |
481 |
|
| www.osvdb.org |
This is an unbiased, vendor neutral vulnerability database that aims for full disclosure. It is similar to www.securityfocus.com or www.securitytracker.com. You might find something here that is not dealt with on the other lists. |
398 |
|
| www.phenoelit.de |
Phenoelit is an experienced group of hackers that based on the site are more focused on network security (hardware, protocols). They have published some papers and tools that can be used to assess networks & protocols + they have done some advisories |
502 |
by Alpha Not Grouped