InfoSec Tools
Chaosreader
A freeware tool to trace TCP/UDP/… sessions and fetch application data from snoop or tcpdump logs. This is a type of “any-snarf” program, as it will fetch telnet sessions, FTP files, HTTP transfers (HTML, GIF, JPEG, …), SMTP emails, … from the captured data inside network traffic logs.
dsniff
dsniff is a collection of tools for network auditing and penetration testing. dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor a network for interesting data (passwords, e-mail, files, etc.).
GFI Backup – Business Edition
GFI Backup – Business Edition provides easy-to-use centralized backup with effortless restore. It delivers simple web-based management for backing up entire networks and permits restore from any location using standard Zip archives – no vendor lock-in!
GFI Backup – Home Edition
GFI Backup is a free, easy-to-use and complete solution, designed for secure backups of all your important documents, pictures, and more. This tool allows you to back up all your data via a simple but smart wizard-driven interface.
GFI EndPointSecurity
GFI EndPointSecurity lets you control the use of portable storage devices such as USB drives, iPods and PDAs on your network. With GFI EndPointSecurity you are able to prevent users from stealing confidential company data or introducing malware to your network.
GFI EventsManager
GFI EventsManager is an event monitoring, event management and archiving solution used by thousands of customers. Competitively priced, it provides network-wide control and management of Windows event logs, W3C logs, Syslog events and SNMP traps generated by network resources and hardware such as firewalls, routers and sensors.
GFI LANguard
GFI LANguard is a complete vulnerability management solution, which allows you to scan, detect, assess and rectify security vulnerabilities on your network. It also provides the tools to remediate vulnerabilities and install missing patches on the network.
GFI MailEssentials for Exchange/SMTP
GFI MailEssentials is a server-based anti-spam and anti-phishing solution for Exchange/SMTP/Lotus, which is used by over 80,000 customers worldwide. This solution uses multiple anti-spam filtering techniques to capture 99% of spam, while minimizing false positives.
GFI MailSecurity for Exchange/SMTP
GFI MailSecurity for Exchange/SMTP is an email security, exploit detection, threats analysis and anti-virus solution that removes all types of email-borne threats before they can affect an organization’s email users.
GFI Network Server Monitor
GFI Network Server Monitor checks your network & servers for failures and fixes them automatically, before your network users notice them! Alerts can be sent by email, pager or SMS, for instant problem notification.
GFI WebMonitor
GFI WebMonitor polices Internet access, reports on users’ website browsing habits and downloads, while providing web security features such as anti-virus and malware protection in real-time for SMBs.
hping3
hping is a command-line oriented TCP/IP packet assembler/analyzer. The interface is inspired to the ping(8) unix command, but hping isn’t only able to send ICMP echo requests.
IDABench
IDABench is a Web interface to many intrusion analysis tools. By the use of simple plug-ins, it allows an analyst to twist and turn hourly packet logs through such utilities as tcpdump, ngrep, tethereal, etc.
IPTraf
IPTraf is a console-based network statistics utility for Linux. It gathers a variety of figures such as TCP connection packet and byte counts, interface statistics and activity indicators, TCP/UDP traffic breakdowns, and LAN station packet and byte counts.
Metagoofil
Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,odp,ods) availables in the target/victim websites.
Metasploit
Metasploit provides useful information and tools for penetration testers, security researchers, and IDS signature developers.
Nessus
The Nessus vulnerability scanner is the world-leader in active scanners, featuring high-speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis of your security posture.
netcat
Netcat is a featured networking utility which reads and writes data across network connections, using the TCP/IP protocol.
Ngrep
ngrep strives to provide most of GNU grep’s common features, applying them to the network layer. ngrep is a pcap-aware tool that will allow you to specify extended regular or hexadecimal expressions to match against data payloads of packets.
Nmap
Nmap (“Network Mapper”) is a free and open source utility for network exploration or security auditing. http://www.nmap.org/download.html
p0f
p0f is a versatile passive OS fingerprinting and masquerade detection utility, to be used for evidence or information gathering on servers, firewalls, IDSes, and honeypots, for pen-testing, or just for the fun of it.
Webscarab
WebScarab is a framework for analysing applications that communicate using the HTTP and HTTPS protocols. It is written in Java, and is thus portable to many platforms. WebScarab has several modes of operation, implemented by a number of plugins.
Wireshark
Wireshark is the world’s foremost network protocol analyzer, and is the de facto (and often de jure) standard across many industries and educational institutions.
