Category Archives: Tools

Retina

By admin | Published: January 12, 2012

http://www.eeye.com/Products/Retina/Community# Retina Network Community, a free vulnerability scanner for up to 128 IPs gives you powerful vulnerability assessment across your entire environment. With Retina Network Community you can: Reduce risk and improve security with complete vulnerability scanning across operating systems, applications, devices, and virtual environments. Comprehensive vulnerability database that includes zero-days and is continually updated [...]

Also posted in Scanning Tools | Leave a comment

sqlmap

By admin | Published: November 14, 2011

For a small but powerful sql injection scanner I would suggest using sqlmap. http://sqlmap.sourceforge.net/

Also posted in Scanning Tools | 1 Comment

Setting up a web application firewall

By admin | Published: November 14, 2011

I installed mod_security quite simply by using yum. Once it was installed I added the base rules from OWASP (http://sourceforge.net/projects/mod-security/files/modsecurity-crs/0-CURRENT/) to the new mod_security.conf file that the yum install added to the conf.d directory of apache. However I quickly found that this ruleset is a bit too draconian. You will want to take some time [...]

Also posted in Firewalls | 1 Comment

Full Security Analysis Suite

By admin | Published: November 9, 2011

Following is a list of tools that will give you a good idea of just how secure your network or website really is. NMap - http://nmap.org/ Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems [...]

Posted in Tools | Leave a comment

Setting up an IPS/IDS system on CentOS using IPTables, fwsnort, and psad

By admin | Published: November 9, 2011

Please check out our article on building a hardened lamp server. It contains much more information on IPTables, PSAD and OSSEC Installation: IPTables is installed automatically with almost all installations of CentOS, if it is not installed it can be simply installed with the command yum install iptables Building the ruleset: See the CentOS Wiki [...]

Also posted in Firewalls | Leave a comment

Snort

By admin | Published: November 9, 2011

http://www.snort.org/ Snort® is an open source network intrusion prevention and detection system (IDS/IPS) developed by Sourcefire. Combining the benefits of signature, protocol, and anomaly-based inspection, Snort is the most widely deployed IDS/IPS technology worldwide. With millions of downloads and nearly 400,000 registered users, Snort has become the de facto standard for IPS. Install guide for CentOS [...]

Also posted in IDS/IPS | 1 Comment

Untangle – Open Source Gateway

By admin | Published: November 4, 2011

http://www.untangle.com/ The Untangle Lite package offers a collection of free, open-source software applications to run on the Untangle Server. It provides an entry-level multi-functional firewall, with: Web Filter Lite Virus Blocker Spam Blocker Attack Blocker Phish Blocker Spyware Blocker Protocol Control Captive Portal Firewall Intrusion Prevention OpenVPN Reports  

Also posted in Firewalls | Leave a comment

XSS Scanner

By admin | Published: November 4, 2011

http://www.acunetix.com/

Also posted in Scanning Tools | Leave a comment

OSSEC

By admin | Published: October 19, 2011

OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, MacOS, Solaris, HP-UX, AIX and Windows. A list with all supported platforms is available here.  

Also posted in IDS/IPS | Leave a comment

OpenVAS

By admin | Published: October 19, 2011

The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. The actual security scanner is accompanied with a daily updated feed of Network Vulnerability Tests (NVTs), over 20,000 in total (as of January 2011). All OpenVAS products are Free Software. [...]

Also posted in Scanning Tools | 1 Comment