Security Scanners

Tools that attempt to find weaknesses in your security. Better believe the script kiddies are using them.

Nessus

Nessus is a security scanner that looks for weaknesses in a host or network. It implements a language for writing the attacks. This is interpreted by a server, and a GTK client to control it. Updates happen about once a month with new test.

NMAP

NMAP is the swiss army knife of port scanners. It contains just about every know means to scan a host or network for open ports. The beta now contains a graphical front end, plus there is a TCL/TK front end, plus a number of web front ends (including one in SHADOW). Click Here to run nmap on yourself.

Ettercap

Ettercap is a network sniffer/interceptor/logger for switched LANs. It uses ARP poisoning and the man-in-the-middle technique to sniff all the connections between two hosts. Features character injection in an established connection - you can inject characters to server (emulating commands) or to client (emulating replies) while maintaining an established TCP connection! Integrated into a easy-to-use and powerful ncurses interface.

Tools to manitpulate IP

Spike Immunity's network protocol analysis and reverse engineering suite is a high level tool to craft packets and protocols. It contains a number of pre-built vulnerability exploits.

antirez's hping2

PacketFactory Network Security projects

• egressor [router config check]
• firewalk [gateway ACL scanner]
• firestorm (in development) [next generation scanner]
• ipgeo [IP geo-targeting lookup tool]
• ISIC [IP stack integrity checker]
• libexploit [generic exploit creation (overflows/format strings) library]
• libnet [network packet assembly/injection library]
• libnids [NIDS E-box library]
• libradiate [802.11b frame assembly/injection library]
• libsf [IP stack fingerprinting library]
• nemesis [command line IP stack]
• ngrep [GNU grep for the network]
• packit [tool to monitor, manipulate, and inject customized IPv4 traffic]
• sentinel [remote promiscuous mode detection tool]
• stephanie [OpeBSD hardening tool]
• zodiac [DNS protocol analyzer]

rfp's whisker has ids invasion capabilites (what doesn't whisker do ;-)

Others

WWDSI's Saint Information

www.secure-me.net

will try to hack into a computer and then download a report of the findings

Honeynet Project Forensic Challenge

contains a detailed analysis of several successful intrusions into a network.

Hacker Groups

Cult of the Dead Cow

Makers of Back Orifice

Welcome to Rootshell | Hosted by connectnet.com

L0pht Heavy Industries

2600