Tools of Trade - CastleCops PIRT Edition

Since May 2006, our Phishing Incident Reporting and Termination team has directly prevented more than $80 million in credit card losses, and indirectly an additional $75 million by working with our partners. We've shut down not only phish sites, but drops all the while preserving evidence for law enforcement. And we need your help by donating your time as handlers to keep on investigating phish crimes so we can continue to prevent even greater numbers.

PIRT right now is receiving around 47,000 unique phish submissions per month. Our PIRT handlers are doing amazing work and trailblazing new roads in phish investigations and intelligence.

---------------------------

1) On Oct 30th, Nmap 4.22SOC8 was released. Check out the changelog for all the details.

2) On Oct 28th, CDBurnerXP v4.0.022 was released. CDBurnerXP is a free application to burn CDs and DVDs, including Blu-Ray and HD-DVDs. It also includes the feature to burn and create ISOs, as well as a multilanguage interface. See the changelog for all the details.

3) On Oct 27th, Honeytrap 1.0.0 was released. Honeytrap is a network security tool written to observe attacks against network services. As a low-interactive honeypot, it collects information regarding known or unknown network-based attacks and thus can provide early-warning information.

4) On Oct 26th, Mark Russinovich & Microsoft released Process Explorer v11.03.

5) On Oct 26th, Wine 0.9.48 was released. Changes includes:

• Still more fixes for regression test failures
• Much more complete cryptnet implementation
• WIDL is now able to generate the oleaut32 proxy code
• Lots of bug fixes
  

6) On Oct 26th, fgdump 1.7.0 was released. fgdump was born out of frustration with current antivirus (AV) vendors who only partially handled execution of programs like pwdump. Certain vendors' solutions would sometimes allow pwdump to run, sometimes not, and sometimes lock up the box. As such, we as security engineers had to remember to shut off antivirus before running pwdump and similar utilities like cachedump. Needless to say, we're forgetful sometimes...So fgdump started as simply a wrapper around things we had to do to make pwdump work effectively.

7) On Oct 25th, Pidgin 2.2.2 was released. Pidgin is a multi-protocol Instant Messaging client that allows you to use all of your IM accounts at once.

8) On Oct 24th, FeedReader 3.11 Beta 3 was released. Feedreader is a free lightweight aggregator that supports RSS and ATOM formats. Some people call it Beta 4...but whatever, it is a pretty good feedreader and it is free. =)

9) On Oct 24th, 7-Zip 4.56 Beta was released. 7-Zip is an open source file archiver predominantly for the Microsoft Windows operating system.

10) On Oct 24th, WinSCP 4.0.5 was released. WinSCP is an open source SFTP client and FTP client for Windows.

11) On Oct 19th, OpenSSL 0.9.8g was released. This release includes mostly bug fixes.

Other cool applications:

12) Streamripper for Windows 1.62.0 - Open Source (GPL) application that lets you record streaming mp3 to your hard drive.