02/28 - A description on how to use the Firewalk network tool
Firewalk is an active reconnaissance network security tool that attempts to determine what layer 4 protocols a given IP forwarding device will pass. Firewalk works by sending out TCP or UDP packets wi...
View Article11/29 - TLS & SSLv3 renegotiation vulnerability
This paper describes how to test for the TLS & SSLv3 renegotiation vulnerability: The toolset provided by Openssl offers the simplest way to test whether a server allows for client-side reneg Read...
View Article05/05 - Changing the ClieOp3 file and the hash totals with the elfproef
Several financial applications can generate batch payment files, which can be used in electronic banking applications. In the Netherlands these files are in the ClieOp3 format and contains the approve...
View Article12/28 - Nmap 5 cheat sheet and howto
Index Basic Scanning Techniques Discovery Options Advanced Scanning Functions Port Scanning Options Version Detection Timing Options Firewall Evasion Techniques Output Options Troubleshooting Read the...
View Article09/04 - Results pentest questionnaire
I am writing my thesis for my EDP auditor education. In my thesis I will compare the used methods and standards used by penetration testers with the method and standards used by the Dutch IT auditor a...
View Article04/07 - Vulnerability - OpenVAS Administrator 1.2.0
The OpenVAS Administrator acts as a command line tool or as a full service daemon offering the OpenVAS Administration Protocol (OAP). The most important tasks are the user management and feed... Read...
View Article04/07 - Vulnerability - Greenbone Security Assistant 3.0.0
The Greenbone Security Assistant (GSA) is a lean web service offering a user interface for web browsers. GSA uses XSL transformation stylesheet that converts OMP responses into HTML. Read the full...
View Article04/07 - Web applications - Fiddler 1120407
Fiddler is a Web Debugging Proxy which logs all HTTP(S) traffic between your computer and the Internet. Fiddler allows you to inspect all HTTP(S) traffic, set breakpoints, and 'fiddle' with incoming......
View Article04/08 - Libraries - libssh2 1.4.1
libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS, SECSH-USERAUTH, SECSH-CONNECTION, SECSH-ARCH, SECSH-FILEXFER, SECSH-DHGEX, SECSH-NUMBERS, and... Read the...
View Article04/08 - Passwords - medusa 2.1
Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer. The goal is to support as many services which allow remote authentication as possible. The author considers... Read...
View Article04/08 - Sniffer - Wireshark 1.6.7
Wireshark® is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education. It has all of the standard features you would expect in......
View Article04/15 - Sniffer - NetworkMiner 1-3
NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions,... Read...
View Article04/15 - Database - Database browser 1120415
Database browser is an universal table editor. This easy to use tool allows user to connect to any database and browse or modify data,run sql scripts, export and print data. And the most important......
View Article04/22 - Sniffer - Ettercap 0.7.4.1
Ettercap is a suite for man in the middle attacks on LAN. It features sniffing of live connections, content filtering on the fly and many other interesting tricks. Read the full description at the...
View Article04/22 - Libraries - OpenSSL 1.0.1a
The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer... Read...
View Article
More Pages to Explore .....