1) HDM has been making progress on Metasploit v3.0. A couple of weeks ago, I was lucky enough to get a look at the new web based msfconsole. Very cool stuff. Indeed.
2) Imperva announced Scuba, a free database vulnerability scanner. Created by the Imperva Application Defense Center, Scuba by Imperva safely identifies and documents vulnerabilities and misconfigurations in production databases. Imperva will demonstrate Scuba by Imperva at the RSA 2007 Conference in San Francisco, February 5-9 at Booth 2632.
The software scans Oracle, Microsoft SQL Server, IBM DB2, and Sybase databases for hundreds of vulnerabilities that facilitate SQL injection, buffer overflow, and other attacks. It also detects configuration problems like insecure passwords, unsafe processes, unrestricted permission levels, and more. Scuba by Imperva contains over 350 database assessment tests and additional tests will be periodically added by the Imperva Application Defense Center.
Scuba by Imperva is safe to use on production databases. It was designed to support only legitimate assessment activity by authorized corporate staff. It requires a valid database administration login and password and only tests for the existence of conditions that comprise vulnerabilities. Scuba by Imperva does not run exploits against the database or provide information useful to exploiting the vulnerabilities it finds.
3) If you are addicited to IM like me and you are a Mac user, check out Adium. It basically works like GAIM and it even comes with built-in OTR support.
No comments:
Post a Comment