http://secure2s.net/tools Secure2S Security Tool Sets Blog Wed, 29 Aug 2007 14:11:25 +0000 http://backend.userland.com/rss092 en Web Proxy, written in Java. Supports http and https Info: http://www.parosproxy.org/ http://secure2s.net/tools/2007/08/29/paros-proxy-2/ OpenSSL vulnerability scanner scans for a remote exploit for the KEY_ARG overflow in OpenSSL 0.9.6d and older. Tested against most major Linux distributions. Gives a remote nobody shell on Apache and remote root on other servers. Includes an OpenSSL vulnerability scanner and a detailed vulnerability analysis. Only Linux/x86 targets are ... http://secure2s.net/tools/2007/08/29/openssl-scanner/ an efficient SNMP scanner Info: http://www.phreedom.org/solar/onesixtyone/ http://secure2s.net/tools/2007/08/29/onesixtyone/ OAT (Oracle Auditing Tools) - is a set of tools which can be used to audit Oracle databases running on the Microsoft Windows platform. The Tools are Java based and were tested on both Windows and Linux. They should hopefully also run on any other Java platform. http://www.cqure.net/wp/?page_id=2 http://secure2s.net/tools/2007/08/29/oat/ Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3300 potentially dangerous files/CGIs, versions on over 625 servers, and version specific problems on over 230 servers. Scan items and plugins are frequently updated and can be automatically updated ... http://secure2s.net/tools/2007/08/29/nikto-2/ Mistress in an 'Application Sadism Environment' and can also be called a fuzzer. It is written in Python and was created for probing file formats on the fly and protocols with malformed data, based on pre-defined patterns. It is recommended that the project site be visited for further documentation and ... http://secure2s.net/tools/2007/08/29/mistress/ Mibble is an open-source SNMP MIB parser (or SMI parser) written in Java. It can be used to read SNMP MIB files as well as simple ASN.1 files. Info: http://www.mibble.org/ http://secure2s.net/tools/2007/08/29/mibble-mib-browser/ Mezcal is an HTTP/HTTPS bruteforcing tool allowing the crafting of requests and insertion of dynamic variables on-the-fly. Info:http://0x90.org/releases/mezcal/ http://secure2s.net/tools/2007/08/29/mezcal-https/ Metoscan is a tiny tool for scanning the HTTP methods supported by a web server. It works testing a URL and checking the responses for the different probes. Info: http://www.securiteam.com/tools/5CP0O20IAK.html http://secure2s.net/tools/2007/08/29/metoscan/ MetaCoretex security scanner is an extremely modular plugin based security scanner written entirely in JAVA to allow the use of JDBC Type IV drivers when scanning databases. Initially, most plugins will likely be for DBs. http://secure2s.net/tools/2007/08/29/metacoretex/