Archive for the ‘Open-Source’ Category

DSploit Android Toolkit for Security Testing

dSploit is a very comfortable tool that you can install on Android to run a pentest or network security assessment. The toolkit allows fingerprinting the remote operating systems and identifying different hosts, scans the network for system vulnerabilities and performing MITM to sniff sensitive information such as user’s password. The features included in dSploit are: [...]

Share

Faker script to generate fake data

Sometimes you need to generate big number of fake data that should look legitimate for other user.you can consider Faker for such purpose, Faker is a Python package that generates fake data for you. Whether you need to bootstrap your database, create good-looking XML documents, fill-in your persistence to stress test it, or anonymize data taken [...]

Share

Surku – mutation-based fuzzer

Fuzz testing is widely used in auditing application by providing some invalid or random data to see how the application will be working with such behavior. The testing usually is automated using some open source program that may assist in fuzzing and monitoring the application in case of crash. One of the tools that you [...]

Share
iOS

Snoop-it tool to assist security assessments and dynamic analysis of iOS Apps

iOS applications may contain security risk that expose user’s sensitive information to attackers. Auditing programs used on mobile devices is important to make sure that they are safe and do not contain security vulnerabilities. Snoop-it is a tool that you can consider for analyzing mobile applications and debugging the software packages. Some of the features [...]

Share

Brakeman – Rails Security Scanner

Code static analysis in applications is important to identify security vulnerabilities. if you need to check Ruby on Rails it is possible to use Brakeman. The project is intended to verify the security troubles in Ruby on Rails web framework source code at any phase of the development. It works on Rails 2.x, 3.x, and [...]

Share

XSS ChEF -Chrome Extension Exploitation Framework

XSS ChEF – is a Chrome Extension Exploitation Framework that you can use during penetration testing to execute scripts in particular vulnerable website with cross site scripting (XSS), take screenshots of the tabs to track browsing history and cookies or checking bookmarks and even change the proxy settings. Main features include the following: Monitor open [...]

Share

The 5 Best Open-Source Tools for Programmers

Open source is definitely hot in 2013, and it looks like it will grow even faster in 2014. As more companies start to incorporate open-source technologies into their business operations, more job opportunities should open up as well. In fact, at the recent OsCon Open Source Conference in Portland, one blogger found that nearly all [...]

Share