Adblock Detected

Netsparker v3.5 - Web Application Security Scanner

Read

Changelog - 3.5.3

NEW FEATURES

* DOM based cross-site scripting vulnerability scanning
* Chrome based web browser engine for DOM parsing
* URL rewrite rules configuration wizard (to scan parameters in URLs)
* "Ignore Vulnerability from Scan" option to exclude vulnerabilities from reports

NEW SECURITY TESTS

* Nginx web server Out-of-date version check
* Perl possible source code disclosure
* Python possible source code disclosure
* Ruby possible source code disclosure
* Java possible source code disclosure
* Nginx Web Server identification
* Apache Web Server identification
* Java stack trace disclosure

IMPROVEMENTS

* Improved the correctness and coverage of Remote Code Execution via Local File Inclusion vulnerabilities
* Improved cross-site scripting vulnerability confirmation patterns
* Added support for viewing JSON arrays in document roots in request/response viewers
* Added support for Microsoft Office ACCDB database file detection
* Improved DOM parser to exclude non-HTML files
* Improved PHP Source Code Disclosure vulnerability detection
* Improved Nginx Version Disclosure vulnerability template
* Improved IIS 8 Default Page detection
* Improved Email List knowledgebase report to include generic email addresses
* Improved Configure Form Authentication wizard by replacing embedded record browser with a Chrome based browser
* Improved the form authentication configuration wizard to handle cases where Basic/NTLM/Digest is used in conjunction with Form Authentication
* Added a cross-site scripting attack pattern which constructs a valid XHTML in order to trigger the XSS
* Added double encoded attack groups in order to reduce local file inclusion vulnerability confirmation requests
* Added status bar label which displays current VDB version and VDB version update notifications
* Added login activity indicator to Scan Summary Dashboard
* Added a new knowledgebase out-of-scope reason for links which exceed maximum depth
* Updated external references in cross-site scripting vulnerability templates
* Improved DOM parser by providing current cookies and referer to DOM/JavaScript context
* Added several new DOM events to simulate including keyboard events
* Improved the parsing of "Anti-CSRF token field names" setting by trimming each individual token name pattern
* Added support for simulating DOM events inside HTML frames/iframes
* Consolidated XSS exploitation function name (netsparker()) throughout all the areas reported
* Removed redundant semicolon followed by waitfor delay statements from time based SQLi attack patterns to bypass more blacklistings
* Changed default user-agent string to mimic a Chrome based browser
* Improved LFI extraction file list to extract files from target system according to detected OS
* Removed outdated PCI 1.2 classifications

FIXES

* Fixed indentation problem of bullets in knowledgebase reports
* Fixed path disclosure reports in MooTools JavaScript file
* Fixed KeyNotFoundException occurs when a node from Sitemap tree is clicked
* Fixed NullReferenceException thrown from Boolean SQL Injection Engine
* Fixed an issue in WebDav Engine where an extra parameter is added when requesting with Options method
* Fixed a bug where LFI exploitation does not work for double encoded paths
* Fixed a bug in Export file dialog where .nss extension isn't appended if file name ends with a known file extension
* Fixed a bug in Configure Form Authentication wizard where the number of scripts loaded shows incorrectly
* Fixed a bug which occurs while retesting with CSRF engine
* Fixed a bug where retest does not work after loading a saved scan session
* Fixed a bug where Netsparker reports out of date PHP even though PHP is up to date
* Fixed a UI hang where Netsparker tries to display a binary response in Browser View tab
* Fixed an ArgumentNullException thrown when clicking Heartbleed vulnerability
* Fixed a bug where Netsparker makes requests to DTD URIs in XML documents
* Fixed a bug in Scan Policy settings dialog where list of user agents are duplicated
* Fixed a typo in ViewState MAC Not Enabled vulnerability template
* Fixed a bug in auto updater where the updater doesn't honour the AutoPilot and Silent command line switches
* Fixed XSS exploit generation code to handle cases where input name is "submit"
* Fixed a bug that prevents Netsparker.exe process from closing if you try to close Netsparker immediately after starting a new scan
* Fixed a UI hang happens when the highlighted text is huge in response source code
* Fixed issues with decoded HTML attribute values in text parser
* Fixed session cookie path issues according to how they are implemented in modern browsers
* Fixed scan stuck at re-crawling issue for imported scan sessions
* Fixed highlighting issues for possible XSS vulnerabilities
* Fixed a crash due to empty/missing URL value for form authentication macro requests
* Fixed a NullReferenceException in Open Redirect Engine which occurs if redirect response is missing Location header
* Fixed an error in authentication macro sequence player happens when the request URI is wrong or missing

Download Netsparker v3.5

[Skipfish] Web Application Security Scanner

Read

Netsparker Community Edition version 3.0.2.0 released

Read

UPDATE ARANCHI V0.4.2 - WEB APPLICATION SECURITY SCANNER FRAMEWORK

Read

Arachni is an Open Source, feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.

It is smart, it trains itself by learning from the HTTP responses it receives during the audit process and is able to perform meta-analysis using a number of factors in order to correctly assess the trustworthiness of results and intelligently identify false-positives.

It is versatile enough to cover a great deal of use cases, ranging from a simple command line scanner utility, to a global high performance grid of scanners, to a Ruby library allowing for scripted audits, to a multi-user multi-scan web collaboration platform.

Features

Cookie-jar/cookie-string support.
Custom header support.
SSL support.
User Agent spoofing.
Proxy support for SOCKS4, SOCKS4A, SOCKS5, HTTP/1.1 and HTTP/1.0.
Proxy authentication.
Site authentication (Automated form-based, Cookie-Jar, Basic-Digest, NTLM and
others).
Automatic log-out detection and re-login during the audit (when the initial login was
performed via the AutoLogin plugin).
Custom 404 page detection.
UI abstraction:
Command-line Interface.
Web User Interface.
Pause/resume functionality.
High Performance asynchronous HTTP requests

Major improvements with 0.4.2

Users
Regular users can enjoy:
- The ability to easily perform and manage scans via the brand new, Rails-based, simple, intuitive and beautiful web user interface — I’m overselling it a bit out of excitement.
- Much reduced RAM usage.
- More fluid and smoother progress %.
- Issue remarks – Providing extra context to logged issues and assisting you in determining the nature, variation and special circumstances that may apply.
- More resilient stance towards non-responsive servers.
- Much improved profiling and detection of custom 404 responses.
- Improved payloads for Windows machines for path traversal and OS command injection.
- The ability to exclude pages from the scan based on content.
Developers
Oh you devs out there controlling Arachni via RPC are gonna love these:
- Default serialization changed to Marshal, which translates to much faster and less bandwidth consuming RPC calls.
  - YAML serialization is still supported and it is an automatic fallback, YAML requests will still illicit a YAML response. Careful though, the engine has been changed to Psych, which has been the Ruby default for a while now.
- A bunch of convenience methods have been added to Arachni::RPC::Server::Instance, allowing you to perform and control scans much easier than before.
- More data returned for logged Issues during runtime.
Service providers
Well, you get to enjoy all of the above but at a higher, more abstract level:
- Significantly reduced RAM consumption.
- Significantly reduced bandwidth and CPU usage for RPC calls.
- Improved progress information for statistics, issues and progress %.
I.e. Fewer costs, happier devs and happier clients.

DOWNLOAD -

Linux

You can download self-contained packages for Linux for the following architectures:
Linux x86 32bit (SHA1)
Linux x86 64bit (SHA1)

If you get a GLIBC error please update your system.

Mac OSX 10.8 (Mountain Lion)

Mac OSX users can download the self-contained Mac OSX x86 64bit (SHA1) package.

If you get a segmentation fault please update your system.

CHANGELOG.

Source-

http://www.arachni-scanner.com/blog/new-release-v0-4-2-new-interface-new-website/

Screenshot -

CAT - THE MANUAL WEB APPLICATION PENETRATION TESTING TOOL

Read

Context have been conducting application tests for over twelve years and have seen many developments over this time within the application security space.

Over the 12 years during which Context has been conducting application tests for clients there have been many developments in application security practices. Applications have become more complex, and we have had to expand and enhance testing methods to ensure that we continue to deliver the most thorough assessment possible. In 2007 we identified a need for a new tool designed to test the most complex applications; a tool capable of various different tests as yet unavailable on the market.

These tests included:

Complex authorisation models
Ability to test complex multi-phase forms e.g. single sign-on (SSO) systems
Fuzzing forms protected by cross site request forgery (CRSF) tokens
Supporting different encodings used by web services, Ajax and to leverage complex vulnerabilities
Ability to perform sensitive timing attacks
Heavy Ajax applications

No such tool existed – so we developed one ourselves instead. The result, the Context App Tool (CAT), has become the core application testing tool used at Context.

CAT is designed to facilitate manual web application penetration testing for more complex, demanding application testing tasks. It removes some of the more repetitive elements of the testing process, allowing the tester to focus on individual applications, thus enabling them to conduct a much more thorough test. Conceptually it is similar to other proxies available both commercially and open source, but CAT provides a richer feature set and greater performance, combined with a more intuitive user interface.

WHY USE CAT?

There are a number of differences between CAT and currently available web proxies. They include:

CAT uses Internet Explorer's rendering engine for accurate HTML representation
It supports many different types of text conversions including: URL, Base64, Hex, Unicode, HTML/XML, SQL and JavaScript no quotes
It offers integrated SQL Injection and XSS Detection
Advanced Authentication and Authorisation using Synchronised Browsing
Silverlight WCF Support
Faster performance due to HTTP connection caching
SSL Version and Cipher checker using OpenSSL
Greater flexibility for importing/exporting logs and saving projects
Tabbed Interface allowing for multiple tools at once e.g. multiple repeaters and different logs
The ability to repeat and modify a sequence of requests (particularly useful in SSO testing)
Ability to extend CAT using Addons
It’s free!

KEY COMPONENTS

CAT offers features that enable a wide variety of testing methods to be conducted:

Request Repeater – Used for repeating a single request
Proxy – Classic Inline proxy
Fuzzer – Allows for batch of tests to be sent to a server for brute forcing, parameter fuzzing, forced browsing etc.
Log – View a list of requests to sort, search repeat etc. Allows for a sequence of requests to be repeated and modified.
Authentication Checker – Two synchronised proxies which can be used to check authentication and authorisation controls.
SSL Checker – Request a specific page with various SSL ciphers and versions.
Notepad – A text/RTF editor which can be used as a scratch pad for conversions etc.
Web Browser – An integrated web browser with proxy pre-configured based on the Internet Explorer's rendering engine.
Addons – Freely accessible API/SDK to extend CAT with additional functionality.

DOWNLOAD

The latest version of CAT is Version 1 released on 2nd August 2011.

CAT Version 1.msi

MD5Sum: 1bcff1ef1378ffa4f0d0d952e6c5a972

By downloading CAT you agree to the End User License Agreement.

Change Log From Beta 4 to Version 1:

Lots of bug fixes to provide a (hopefully) stable release
Silverlight WCF encoding/decoding support for the proxy, repeater and fuzzer
New Improved authentication checker with two browser boxes which can be syncronised to send requests from a high to a low user
Addons support – API for additional Tabs, SDK documentation and sample plugin
C# Scriptable Fuzzing
Multi-Stage CSRF HTML generation
NTLM Authentication – Set credentials in file->options Migration to .NET 4
Updated Wordlists – Including technology specific entries
Load Requests from a Log directly into a new Fuzzer or Repeater
Allows adding a list of words to be shown in the add columns
Added to fuzzer and SQL injection tests a metric indicating the number of lines which differ (“No Lines Diff”) to help identify a change in response despite the page having totally dynamic content
Mono Support – Beta Only

USER GUIDE

User-guide.pdf

ADDONS

CAT supports the extension of its functionality using addons. These can be installed by placing a DLL into the addons directory under the CAT install directory.

List of currently supported addons:

Coming Soon! – Context will be releasing addons to provide SQL extraction support, Oracle padding etc.

Developing Addons

If you wish to develop an addon for CAT then there is a fully documented API and sample code. The addons can be written in any compatible .NET language and allow for new types of tabs to be created, which can build on the existing CAT controls.

Downloads:

Context App Tool SDK.pdf

AddonsSDK.zip

MONO

This is a modified version of CAT which should run under Mono 2.10. Where possible as many features have been brought across from the Windows version, however the following are not currently supported:

SSLChecker
Browser with Proxy support

It has been tested on:

Suse Linux with 2.10.2 of Mono
Mac OSX 10.6.8 with 2.10.2 of Mono (lack of web browser causes some tab creations to fail)

This version should be considered beta quality; there are still unusual issues due to the implementation of the Mono runtime. All efforts have been made to work around some of the more obvious issues but certainly problems will remain. Use at your own risk.

Download:

cat-mono-v1.tar.gz

PDF Manual

Source-
http://www.contextis.com/research/tools/cat/

0d1n - just another web security tool

Read