Tools of the Trade - Configure, Make, Make Install

1) On June 28th, Wireshark 0.99.6 was released. At blog time (12:04am Friday), it hasn't been released officially, however the source code is in the SVN. Expect it to be released soon. Wireshark 0.99.6 fixes the following vulnerabilities:

• Wireshark could crash when dissecting an HTTP chunked response. (Bug 1394)
  Versions affected: 0.99.5
  
• On some systems, Wireshark could crash while reading iSeries capture files. (Bug 1415)
  Versions affected: 0.10.14 to 0.99.5
  
• Wireshark could exhaust system memory while reading a malformed DCP ETSI packet. (Bug 1264)
  Versions affected: 0.99.5
  
• Wireshark could loop excessively while reading a malformed SSL packet. (Bug 1582)
  Versions affected: 0.8.20 to 0.99.5
  
• The DHCP/BOOTP dissector was susceptible to an off-by-one error. (Bug 1416)
  Versions affected: 0.10.17 to 0.99.5
  
• Wireshark could loop excessively while reading a malformed MMS packet. (Bug 1342)
  Versions affected: 0.10.12 to 0.99.5

2) On June 28th, Tenable Security released NessusClient 3.0.0 Beta 1. NessusClient 3 is a completely redesigned GUI for the Nessus server, which offers the same experience for Windows and Linux Mac OS X users have been experiencing for several months. Its key features are the following :

• Real-time results - No need to wait until the end of a scan to start analyzing the findings of Nessus
• Document based - Save your policies, scan results and scan targets into a single file
• New file format - The new '.nessus' file format (which is XML based) saves into a single file your scan policies, scan targets and scan results
  
• Multiple connections - NessusClient can connect to several scanners at the same time
  
• Consistant interface - The same interface exists on Mac OS X, Windows and Linux

3) On June 26th, Tenable Security released Nessus 3.0.6. This release contains the following fixes and enhancements :

• Fixed a cross site scripting vulnerability in the Windows GUI
  
• Fixed a possible segfault condition occuring when multiple clients simultaneously log into the nessusd server
  
• Fixed a memory leak in nasl scripts containing a function on_exit()
  
• Improved performance when logging into nessusd
  
• The scan does not fail any more if the main nessusd process runs out of file descriptors (this would occur on Solaris with max_host set to a value higher than 200)
  
• Several fixes in the NASL interpreter
  
• Builds for Fedora Core 7 and Red Hat ES 5

4) On June 26th, 7-Zip 4.4.8 Beta was released. 7-Zip is open source software. Most of the source code is under the GNU LGPL license. The AES code is under a BSD LICENSE. The unRAR code is under a mixed license: GNU LGPL + unRAR restrictions.

5) On June 25th, Aircrack-NG 0.9.1 was released. Aircrack is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured.

6) On June 22nd, Apple released Safari 3.0.2 Beta for Windows. Changes in Safari 3.0.2 for Windows beta:

• Latest security updates
  
• Improved stability
  
• Fixes for text display, non-English systems, and start-up times

7) On June 20th, Icesurfer released SQLNinja 0.1.2. Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end.

8) On June 20th, Secure Systems Lab at the Technical University of Vienna released Pixy v3.02. Pixy is a Java program that performs automatic scans of PHP 4 source code, aimed at the detection of XSS and SQL injection vulnerabilities. Pixy takes a PHP program as input, and creates a report that lists possible vulnerable points in the program, together with additional information for understanding the vulnerability.

9) On June 19th, Oxid.it released Cain & Abel 4.9.4. New features:

• Automatic Certificate Collector for FTPS (implicit), IMAPS and POP3S protocols.
• FTPS Man-in-the-Middle Sniffer and password collector.
  
• POP3S Man-in-the-Middle Sniffer and password collector.
  
• IMAPS Man-in-the-Middle Sniffer and password collector.
  
• Added Windows Mail (Vista) Password Decoder for POP3, IMAP, NNTP, SMTP and LDAP accounts.
  
• Added PTW WEP cracking attack.
  
• Added Windows Vista support in Wireless Password Decoder.
  
• Wireless Password Decoder now uses DLL injection under XP.
  

10) On June 10th, Andres Riancho released W3AF Beta 4. W3AF is a open-source python based framework for auditing and attack web applications. Check the UserGuide (PDF) for all the details.