Net Security Resources
Internet and Network Security Resources
(hacking, cracking, security, network audit, wardriving, wireless detection)
Submit your Internet Security related links here. Do not post defects, holes, or vulnerabilities to this thread. Only submit tools, software, resources, and information for the identification, exploitation, and testing kits related to Internet and network security. Submit tools that you use and recommend.
Use these tools for testing purposes only, such as identifying security issues with your own network systems.
August 15th, 2005 at 5:01 pm
OSSEC HIDS is a self-contained system for Host-based intrusion detection. It performs log extraction, integrity checking and health monitoring. All this information is correlated and analyzed by a single engine, creating a very powerfull detection tool.
August 15th, 2005 at 5:06 pm
Snort is an Open Source, lightweight, libpcap based packet sniffer and Network Intrusion Detection System licensed under the GNU Public License (GPL). It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of other attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capability, with alerts being sent to syslog, a separate “alert” file, or even to a Windows computer via Samba.
August 15th, 2005 at 8:41 pm
Nessus is a remote security scanner for Linux, BSD, Solaris, and other UNIX based operating systems. It is plugin based, has a GTK interface, and performs over 5,000 remote security checks. It allows for reports to be generated in HTML, XML, LaTeX, and ASCII text, and suggests solutions for security problems.
August 15th, 2005 at 8:43 pm
Nmap is a network security tool that supports ping scanning, port scanning, version detection, tcp/ip fingerprinting, stealth scanning, SunRPC scanning, and many other security auditing features. Runs on Linux/UNIX and MS Windows, command line and GUI.
August 15th, 2005 at 8:49 pm
John the Ripper is a fast password cracker, currently available for many flavors of Unix , DOS, Win32, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. This is free, however, the vendor wants just under $30 for a dictionary collection to use with this program.
August 15th, 2005 at 8:56 pm
Kismet is an 802.11 layer 2 wireless network detector, sniffer, and intrusion detection system. It will work with any wireless card which supports raw monitoring mode, and can sniff 802.11b, 802.11a, and 802.11g traffic.
August 15th, 2005 at 9:01 pm
Ettercap is a powerful and complete sniffing suite and interceptor for Ethernet LANs supporting active and passive protocol dissection, data injection, switched LAN detection and more. Dissection of ciphered protocols such as SSH and HTTPS is also supported.
August 15th, 2005 at 9:09 pm
Aircrack tools includes an 802.11 sniffer and WEP/WPA key cracker and set of other tools for auditing wireless networks; Airodump is an 802.11 packet capture program; Airdecap, which decrypts WEP/WPA capture files.
August 15th, 2005 at 9:22 pm
ChatSniff is an easy to use program for Linux that monitors, or “sniffs” networks for AIM, ICQ, MSN, Yahoo! and Jabber instant messages.
August 15th, 2005 at 9:29 pm
Netstumbler is the best known Windows wardriving tool for finding open wireless access points. This is a free tool but not open source that runs on MS Windows only.
August 15th, 2005 at 9:31 pm
Wellenreiter is a wireless network discovery and auditing tool. Prism2, Lucent, and Cisco based cards are supported. The creators claim it to be the easiest to use Linux scanning tool.