The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as… Read More »
LOIC is a tool that can be used to stress test web sites. This is also one of the tools Anonymous has been using to carry on some of their DDoS attacks. Download it here.
Source: Atrix Team NGT xSQL Scanner is a advanced SQL audit tool that allows users to find weak passwords and vulnerabilities on MS-SQL and MySQL database servers. The objective of xSQLScanner is to assist the Security Analyst or Penetration Tester in auditing the security of MS-SQL and MySQL database servers. Features Test for weak password fast; Test for wear/user passwords; Wordlist option; Userlist option; Portscanner… Read More »
This is a commercial tool. Reducing the time to visibility on critical network issues has become a major problem for organizations that depend on their networks. Ensuring you have the right tools to identify and investigate problems before they happen is rapidly becoming the biggest challenge for network operations teams tasked with ensuring robust, reliable, and secure network… Read More »
Is a `Passive Real-time Asset Detection System`. It passively listen to network traffic and gathers information on hosts and services it sees on the network. This information can be used to map your network, letting you know what services and hosts are alive/used, or can be used together with your favorite IDS/IPS setup for “event to host/service” correlation. Features PRADS… Read More »