PenTestIT

UPDATE: sqlmap 0.8 Final!

Black — Mon, 15 Mar 2010 17:12:22 +0000

We wrote about sqlmap version 0.8 RC 1 being released here. Now, the author Bernardo Damele A. G. has released the FINAL version! “sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of back-end database servers. It comes with a broad range of [...]

Firebug : A Firefox Plugin for Web Development and Testing!

Black — Mon, 15 Mar 2010 06:55:51 +0000

Firebug integrates with Firefox to put a wealth of web development tools at your fingertips while you browse. We have it included in our WAPT Add-on’s list already! You can edit, debug, and monitor CSS, HTML, and JavaScript live in any web page. Firebug gives you a really fun way to make experimental HTML changes and [...]

UPDATE: fimap v08!

Black — Sun, 14 Mar 2010 17:22:27 +0000

We blogged about fimap here. “fimap is a little python tool which can find, prepare, audit, exploit and even google automaticly for local and remote file inclusion bugs in webapps. fimap should be something like sqlmap just for LFI/RFI bugs instead of sql injection.” This is the change log for fimap version 08: * [...]

WebCastellum: An Open Source WAF!

Black — Sun, 14 Mar 2010 14:59:56 +0000

We have been known to be more on the offensive side of security. There have been several e-mails where people have actually wanted us to post things that will protect their data. We have reverted back with whatever solutions best possible. Recently, some one wanted us to help him with a Web Application Firewall. We [...]

PPP.pdf

Black — Sun, 14 Mar 2010 11:48:26 +0000

Point-To-Point (PPP) cheatsheet. Version 1.01.

QoS.pdf

Black — Sun, 14 Mar 2010 11:47:44 +0000

Quality of Service (QoS) cheatsheet. Version 2.0.

Spanning_Tree.pdf

Black — Sun, 14 Mar 2010 11:46:52 +0000

Spanning Tree cheatsheet. Version 2.0.

CHScanner: Multilayer, multiprotocol ARP, IPv4, IPv6, ICMP Network Scanning Tool!

Black — Sun, 14 Mar 2010 06:03:11 +0000

CHScanner is an ARP, IPv4 and IPv6 network scanner with 31 scan methods: it scans for open ports, protocols, NetBIOS informations and Windows shares, SNMP information, and WMI (WBEM) information. It also have the ability to turn on (using Wake-On-LAN) and to shutdown or reboot a remote Windows host. Features an automatic (scriptable) working mode, [...]

VLANs.pdf

Black — Sun, 14 Mar 2010 05:23:54 +0000

Virtual LAN (VLAN) cheatsheet. Version 2.0.

joomlajulia-lfi.txt

Black — Sun, 14 Mar 2010 05:23:09 +0000

The Joomla Juliaportfolio component suffers from a local file inclusion vulnerability.