Droopescan- plugin-based scanner for Drupal & Silverstripe

Web application scanning is very important to identify vulnerabilities and security gaps that allow a hacker to compromise the web servers. Today we have several open source tools that help to make a verification on content management system like Droopescan.

Vulnerability Update, February 17, 2015

The Vulnerability Update from Secunia Total number of new vulnerabilities in the Top 20* over the 3 month period: 1,357 Vendor with most vulnerable products in the 3 month period: IBM Product with the most vulnerabilities: X.Org XServer And 2015

SNMP-Brute – Fast SNMP brute force, enumeration and password cracking tool

snmp

SNMP may include sensitive information that will provide security tester network/system info. if you are looking to pentest snmp you can use SNMP-Brute. This tool provide the following features: Brute forces both version 1 and version 2c SNMP community strings

Asgard – PHP Malware Scanner

When hackers compromise a website they usually implement a backdoor or a malicious script this to infect visitors and spread the malware or having a point of access on the vulnerable website for the future. If you are looking to

Cyber Threat Analysis Course by U.S. Cyber Consequences Unit (US-CCU)

The U.S. Cyber Consequences Unit (US-CCU) is organizing several cybersecurity courses that teach the techniques that have made the US-CCU the world leader in cyber threat analysis. The course will be taught by Scott Borg, the Director of the U.S.

hyperfox – tool to proxify and record HTTP/HTTPs traffic

Network security assessment tools are important to verify what type of vulnerabilities exist. if you are looking to pentest any connected network you can consider Hyperfox. Hyperfox is a tool that allow user to record and proxy communication on the

Adobe critical zero day vulnerability to patch

flash player

Adobe has released over this week security updates to fix critical vulnerabilities in Adobe Flash. The patches are going to address 18 vulnerabilities 15 of them allows remote code execution. CVE 2015-0313 is actively used by attackers to compromise systems