Lee aquí tus blogs preferidos...

Security Database Tools Watch

Some Rights Reserved
  • Security-Database vDNA API Documentation
    vDNA © (Security Database Vulnerability DNA) are API based / Web-Services that provide a ready-to-use platform through comprehensive Rich CVE XML Correlated feeds. It includes most common Open Standards: CVSS, CPE, CWE, CAPEC, OVAL, OSVDB, and specific feeds as well as Milw0rm, Metasploit and Saint. vDNA © is suitable for integrators, security software vendors & consultants that want to align with reliable standards.
    Security-Database vDNA API have now is full documentation. You can find here (...) - SD Papers


  • Security-Database is proud to bring you this new service : vDNA
    Call for Beta tester - SD Papers


  • Complemento v0.7.6 - Collection of Tools
    A collection of tools, just for fun. It includes LetDown, ReverseRaider and Httsquash.
    LetDown is a tcp flooder I have programmed after reading Fyodor article "TCP Resource Exhaustion and Botched Disclosure" (you can read it at http://insecure.org/stf/tcp-dos-attack-explained.html). It has an (experimental) userland TCP/IP stack, and supports multistage payloads for complex protocols, fragmentation of packets and variable tcp window.
    NOTE: LetDown is based on Fyodor NDos, it's not about (...) - Security Tools / , ,


  • MetaGoofil v1.4b released
    Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,odp,ods) availables in the target/victim websites.
    It will generate a html page with the results of the metadata extracted, plus a list of potential usernames very useful for preparing a bruteforce attack on open services like ftp, pop3,web applications, vpn, etc. Also it will extract a list of disclosed PATHs in the metadata, with this information you can guess OS, network (...) - Security Tools / , ,


  • Suricata v0.9 RC1 released
    The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field.
    Version 0.9 RC1
    New Features
    Support for the http_headers keyword was added
    libhtp was updated to version 0.2.3
    Privilege dropping using libcap-ng is now supported
    Proper support for "pass" rules was added
    Inline mode for Windows was added (...) - Security Tools / ,