Thursday, June 1, 2006

Tools of the Trade - New and Updated

Lets have a look some of the new and updated tools out in the field:

1) Yesterday the Openwall Project released John the Ripper Pro. It is currently available for Linux on x86 processors, with support for the latest Intel and AMD process features such as SSE2.

The features currently specific to the Pro versions are:
  • Pre-built and well-tested native package (RPM) which may be installed with a single command - no need to compile
  • Automatic detection of processor architecture extensions such as SSE2 and MMX for much faster processing, with transparent fallback on older CPUs
  • A large multilingual wordlist optimized specifically for use with John the Ripper (4,106,923 entries, 43 MB uncompressed) is included in the package, and John the Ripper is pre-configured for its use
  • The included documentation is revised to be specific for the given package and OS rather than generic, making it easier to understand
    As a bonus, the full source code sufficient to rebuild the package is also provided (can be downloaded separately)

2) On May 23th, Metasploit v2.6 was released. This relese includes 43 more exploits, numerous bug fixes, improvements to the SMB/DCERPC layers and a few cosmetic changes.

3) On May 22th, Cain & Abel v2.9 was released.

New features include:

  • Added Ophcrack's RainbowTables support for LM Hashes Cryptanalysis attack.
  • Added hashes syncronization functions (Export/Import) to/from Cain for PocketPC via ActiveSync.
  • Added VoIP sniffer support for the following codecs: G723.1, G726-16, G726-24, G726-32, G726-40, LPC-10.
  • Added support for Winpcap v3.2.

4) Paros Attack Proxy has been updated to v3.2.12.

New Features include:

  • Use newest external library for HTTP handling.
  • enable/disable spider to POST forms in options panel to avoid generating unwanted traffic (default to enable). This is requested by many users.
  • Decrease the number of possible combinations crawled by spider on forms with multiple SELECT/OPTIONS. This make crawling less resource consuming and lower chance to affect application being scanned.
  • Minor UI changes.

Fixes include:

  • Fallback database library to previous version as in Paros 3.2.10 because of a problem with hsqldb where some byte combination may consume 100% cpu time.
  • Increase width of method display in history to cater for other longer method names.
  • Default file scans may display incorrect HTTP message body if the original message is a POST request.

5) FileZilla 2.2.24a was released recently.

at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)