PUBLIC MARKS from xenomorph with tag info-sec

Malware Search Engine

Test Your Browser's Security Now!

Combining the best features from both distributions, and paying special attention to small details, this is probably the best version of either distributions to ever come out. Based on SLAX (Slackware), BackTrack provides user modularity. This means the distribution can be easily customised by the user to include personal scripts, additional tools, customised kernels, etc.

RealCLIP - Main entry point for discussion and documentation on the RealCLIP project Linux Howtos - Everything from SuSE and Redhat to Debian and Lucix Unix Howtos - Unix Based Systems like FreeBSD and OpenBSD. Mac Howtos - Apple howtos for PPC and x86, iPods, and the like. Embeded Howtos - These are howtos for embeded devices like the WRT54GS routers from linksys Windows Howtos - Howtos for Windows OS and applications. Web Based Howtos - OS independant tutorials. Others - Those that do not fit anywhere else...

CAcert HOWTO

Basic Analysis and Security Engine (BASE) project

openSIMS is a Security Infrastructure Management Systems distributed as an open source project through SourceForge, using a modified Mozilla Public License. OpenSIMS ties together the open source tools used for security event management into a common infrastructure. These tools include NMap, Snort, and many others. The best way to experience openSIMS is by downloading the openSIMS liveCD.

A Windows password cracker based on the faster time-memory trade-off using rainbow tables. This is an evolution of the original Ophcrack 1.0 developed at EPFL. Ophrack 2.2 comes with a GTK Graphical User Interface and runs on Windows as well as on Linux.

Aanval is the industries only correlation and analysis console designed specifically for Snort and Syslog data.

Full ISD blog archives

TaoSecurity Blog

It's that time of year again, when I get to work on new features (instead of supporting the old ones). With a major change to the version number of the way I took the opportunity to introduce major improvements too. ModSecurity 2.0.0-dev1 is available right now and it offers the following major improvements:

This all-purpose guide for locking down Apache arms readers with all the information they need to securely deploy applications. Administrators and programmers alike will benefit from a concise introduction to the theory of securing Apache, plus a wealth of practical advice and real-life examples. Topics covered include installation, server sharing, logging and monitoring, web applications, PHP and SSL/TLS, and more.

Website Security, Phishing, RSS Security, Web Security, Questions, Database Security, Web Server, Security Application, Server Security, Security Documentation, Cross Site Scripting, SQL Injection, Web Services Security, AJAX Security, .NET Security, Java Security, Application Firewalls, IIS Security, Apache Security, Oracle Security, MySQL Security, Microsoft SQL Server Security, URL Scan, Mod Security

Here you can find a collection of exercises that will help you teach yourself the art of insecure programs exploitation. It's not complete, but it's minted to open your mind. The idea is NOT to use any human help. In case you doubt it, we could exploit all but two of them, stay calm and good luck.

- Open Vulnerability and Assessment Language

Library - Institute for Security Technology Studies (ISTS) - Security White Papers

F-Script is a lightweight open-source scripting layer specifically designed for the Mac OS X object system (i.e. Cocoa). F-Script provides scripting and interactive access to Cocoa frameworks and custom Objective-C objects. It aims to be a useful and fun tool for both beginners and experts, allowing interactively exploring, testing and using Cocoa-based objects and frameworks.

eVuln provides the folowing services: Web Application Source Code Analysis - Whitebox TestSecurity Implementation ConsultingWeb Application Remote Penetration Test - Blackbox TestIncident Response

GOOGLE LINUX MICROSOFT PRIVACY ROOTKITS SOFTWARE HACKS TELECOM SECURITY

SSL Encrypting Syslog via Stunnel

LiveAmmo Radio - Security News and Research

Mac Security: Identifying Changes to the File System