On August 20th, TXDNS v2.1.5 was released. TXDNS is a Win32 aggressive multithreaded DNS digger. This release implements DNS queries against multiple DNS servers, a more efficient threading algorithm and some minor bug fixes.
On August 20th, Pidgin 2.1.1 was released. Pidgin (formerly Gaim) is an all-in-one IM client that resembles AIM. Gaim lets you use AIM, ICQ, Yahoo, MSN, IRC, Jabber, Zephyr, and Gadu-Gadu all at once. Make sure you grab a copy of Off-the-Record v3.1.0.
On August 16th, CCleaner v2.00.475 Beta was released. CCleaner is a freeware system optimization and privacy tool. It removes unused files from your system - allowing Windows to run faster and freeing up valuable hard disk space. It also cleans traces of your online activities such as your Internet history.
On August 16th, GnuPG v2.0.6 was released. The GNU Privacy Guard (GnuPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data, create digital signatures, help authenticating using Secure Shell and to provide a framework for public key cryptography. It includes an advanced keymanagement facility and is compliant with the OpenPGP and S/MIMEstandards. This is maintenance release with a few minor enhancements.
On August 16th, AVG Anti-Virus Free v7.5.484 was released. This release improved polymorphic viruses detection and fixed a problem with detection of multiple threats in certain cases.
On August 15th, Core Security released Pass-The-Hash Toolkit v1.0. The Pass-The-Hash Toolkit contains utilities to manipulate the Windows Logon Sessions maintained by the LSA (Local Security Authority) component. These tools allow you to list the current logon sessions with its corresponding NTLM credentials (e.g.: users remotely logged in thru Remote Desktop/Terminal Services), and also change in runtime the current username, domain name, and NTLM hashes (YES, PASS-THE-HASH on Windows!).
On August 15th, Opera 9.23 was released. This release fixed a JavaScript security issue discovered with Mozilla's jsfunfuzz tool. See our advisory. Four other crash bugs found with jsfunfuzz were addressed.
On August 10th, Sensepost released Wikto v2.0.2778-19003. Wikto is Nikto for Windows - but with a couple of fancy extra features including Fuzzy logic error code checking, a back-end miner, Google assisted directory mining and real time HTTP request/response monitoring. This new release includes a new shiny GUI and was completely built on the .Net 2 Framework. Registration is required for download, but I would suggest Bugmenot.com.
On August 4th, Immunity Sec released Immunity Debugger v1.0. Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry's first heap analysis tool built specifically for heap creation, and a large and well supported Python API for easy extensibility. It looks and feels like OllyDbg with a strange bit of advertising added. Registration is required for download, but I would suggest Mailinator.com. BTW, Immunity Debugger does not contain a backdoor which e-mails all your details....
Brute Forcers
Scully is a client interface to MSSQL and MySQL database servers. No more need for MSSQL/MySQL client libraries to be installed and no more need to setup an ODBC connection either. Simply add IP/Hostname, username, password, port and database name and SQL away. Scully also performs password brute forcing for MySQL and MSSQL.
SSHatter v0.2 is password brute forcer for SSH.
No comments:
Post a Comment