security assessment tools

Article Title: Ubuntu Security Settings guide and related tools. Linux is a technology channel of the IT lab in China. Includes basic categories such as desktop applications, Linux system management, kernel research, embedded systems, and open source. If you are a new starter from Windows to Ubuntu, you will obviously feel the security performance of Ubuntu. At l

have created is not as beautiful as commercial software and its functions are not so complete, the principles used are similar. With the further discussion, my security tools will evolve constantly. I believe that in the near future, their functions will basically achieve the effects of professional software. 2. Create an InterfaceI still use MFC to create this program. I only need to add a button control

Original: "Security Tools" injection artifact SqlmapPic by Baidu0x 00 PrefaceIt is sqlmap this artifact exists, SQL injection is simply easy to stop ....PS: Similar software in China also has a D, Ming boy, Excavator, when you have used them, you will find Sqlmap is the absolute injection artifact0x 01 Injection principleStart Split Line *****************************************Time reason, this part of the

How can I skillfully configure two security tools to prevent brute-force attacks?Introduction to brute force attacks We all know this buzzword: "Prevention is better than treatment ." If you are a Linux system administrator, you may know how a "brute-force attack application" can cause problems on your local or remote server. Imagine: If your server is attacked by unknown attackers, the data on the server w

The following describes some security tools that can be used for Linux. These tools will play a role in curing your server and can solve various problems. Our focus is to let you know about these tools. We will not give a detailed introduction to the installation configuration and usage. Some

Irssi Dnstop LaBrea PowerTOP SSLstrip Nebula Mutt Bonesi Tripwire Nano Proxychains Prelude-lml vim-enhanced Prewikka Iftop Wget Prelude-manager Scamper Yum-utils Picviz-gui Iptraf-ng Mcabber Telnet Iperf Firstaidkit-plugin-all Onenssh Nethogs Vnstat Dnstracer

analysis Tools : Grab Bag Tool: Wireshark (most used), HttpWatch,tcpdumpburp Suite: Common HTTP analysis tools, have a very evil usage;Fiddler: The main monitoring HTTP and HTTPS, not much use; Vulnerability Scanning Tool : AppScan: One of the most commonly used tools in the industry, a lot of information http://www.cnblogs.com/fnng/archive/2012/05/27/2520594. H

[Original] Three security testing tools www.microsoft.com (Microsoft official) are recommended 1Microsoft Source Code Analyzer for SQL Injection Official download: http://www.microsoft.com/downloads/details.aspx? Familyid = 58a7c46e-a599-4fcb-9ab4-a4334146b6ba displaylang = en this tool called mscasi can detect ASPCodeThe SQL Injection Vulnerability (ASP code is known as the SQL injection vulnerabi

parameters Encrypt/Decrypt CMS information (pkcs#7)CMS [-cdes] [ -C Create a CMS encryption information - D Decrypt CMS information -E Create CMS package information -S Create CMS signature information Decryption options -c -h -N Suppress content output Encoding options -R ID,... To create a package for the specified recipient, the ID can be certificate nickname or email adderess -G contains signature time properties -h

Irssi Dnstop LaBrea PowerTOP SSLstrip Nebula Mutt Bonesi Tripwire Nano Proxychains Prelude-lml vim-enhanced Prewikka Iftop Wget Prelude-manager Scamper Yum-utils Picviz-gui Iptraf-ng Mcabber Telnet Iperf Firstaidkit-plugin-all Onenssh Nethogs Vnstat Dnstracer

Fiddler plug-in, used to detect the existence of XSS vulnerability, in the Web page provided to the user input of the filter 9.exploit-me (Windows, Linux, Mac OS X)This is the Firefox plug-in, by Xss-me,sql Inject Me and Access-me These 3 components, when browsing the web will start detection, can detect XSS vulnerability, SQL injection vulnerability.10.WebScarab (Windows, Linux, Mac OS X)This is actually a proxy software, there are many functions, you can detect XSS cross-site scripting vulner

protocol=tcp mirrored=yesnetsh ipsec static add filter filterlist=someipsomeport srcaddr=me dstaddr=any dstport=53 protocol=tcp mirrored=yesnetsh ipsec static add filter filterlist=someipsomeport srcaddr=me dstaddr=any dstport=53 protocol=udp mirrored=yesnetsh ipsec static add rule name=allowsomeipsomeport policy=myipsec filterlist=someipsomeport Filteraction=permitREM Activation IP Security Policynetsh ipsec static set policy Name=myipsec assign=yRE

Encryption converts data from its original form to a form that can only be read by the decrypted. In essence, encryption aims to prevent unauthorized reading of data. Encryption technology can be elaborated from different perspectives. Today we only introduce the six most famous encryption tools. 1. GnuPG/PGP: These two tools can ensure advanced encryption of files and communications. PGP is a well-known en

I sorted out two network security scanning tools under Ubuntu and shared them with friends who like ubuntu. Nbtscan --- collect NetBIOS information from a Windows network Tool Name: nbtscan-1.5.1a application environment: Linux tool Introduction: This is a program used to scan NetBIOS Name Information on a Windows network. This program sends a NetBIOS status query to each address in the given range, and lis

To be familiar with the system architecture of the target website, it is essential to know which directories are available on the website. To awvs and burp large-scale scanning tools, you can also perform directory scanning. However, I personally feel that it is far from a professional scanning tool. 0x01 dirbuster Introduction: dirbuster is a directory and hidden file developed by OWASP (Open Web software securi