Introduction to Web Application Firewall (WAF) ~ Website Security

What is WAF?WAF is expanded as Web Application Firewall. WAF is server side application that controls the input and output(filter the HTTP communication).  It controls network traffic on any OSI Layer up to Application Layer.  The main purpose of WAF is to provide better protection over the top Wep Application vulnerability such as XSS(Cross Site Scripting), SQL Injection,RFI.  Daily lot of websites hacked because of these vulnerability.  Read Our Security News Section to know about the Security Risks in Interent.  Standard firewall blocks Non-HTTP attacks(restriction of ports,access..).  This WAF blocks HTTP attack.

The Most common Web Application Vulnerabilities:

• SQL Injection(SQLi)
• Cross-Site Scripting (XSS)
• Broken Authentication and Session Management
• Insecure Direct Object References
• Cross-Site Request Forgery (CSRF)
• Security Misconfiguration
• Insecure Cryptographic Storage
• Failure to Restrict URL Access
• Insufficient Transport Layer Protection
• Unvalidated Redirects and Forwards

The Wep Application Firewall(WAF) must meat the following features:

• Protection Against Top Vulnerability(XSS,SQLi,..etc)
• Very Few False Positives (i.e., should NEVER disallow an authorized request)
• Strength of Default (Out of the Box) Defenses
• Power and Ease of Learn Mode
• Types of Vulnerabilities it can prevent.
• Detects disclosure and unauthorized content in outbound reply messages, such as credit-card and Social Security numbers.
• Both Positive and Negative Security model support.
• Simplified and Intuitive User Interface.
• Cluster mode support.
• High Performance (milliseconds latency).
• Complete Alerting, Forensics, Reporting capabilities.
• Web Services\XML support.
• Brute Force protection.
• Ability to Active (block and log), Passive (log only) and bypass the web trafic.
• Ability to keep individual users constrained to exactly what they have seen in the current session
• Ability to be configured to prevent ANY specific problem (i.e., Emergency Patches)
• Form Factor: Software vs. Hardware (Hardware generally preferred)

Top 10 Open Source Web Application Firefwall(WAF):

1. ModSecurity (Trustwave SpiderLabs)
2. AQTRONIX WebKnight
3. ESAPI WAF
4. WebCastellum
5. BinarySec
6. Guardian@JUMPERZ.NET
7. OpenWAF
8. Ironbee
9. Profense
10. Smoothwall

Automated Blind SQL Injection Attacking Tools~bsqlbf Brute forcer

What is Blind SQL Injection:

Some Websites are vulnerable to SQL Injection but the results of injection are not visible to the attacker.  In this situation, Blind SQL Injection is used. The page with the vulnerability may not be one that displays data but will display differently depending on the results of a logical statement injected into the legitimate SQL statement called for that page. This type of attack can become time-intensive because a new statement must be crafted for each bit recovered.

There are plenty of automated Blind Sql Injection tool available. Here i am introducing one of Tool named as bsqlbf(expanded as Blind Sql Injection Brute Forcer).

This tool is written in Perl and allows extraction of data from Blind SQL Injections. It accepts custom SQL queries as a command line parameter and it works for both integer and string based injections

Supported Database:

• MS-SQL
• MySQL
• PostgreSQL
• Oracle

The tool supports 8 attack modes(-type switch):-

Type 0: Blind SQL Injection based on true and false conditions returned by back-end server

Type 1: Blind SQL Injection based on true and error(e.g syntax error) returned by back-end server.

Type 2: Blind SQL Injection in "order by" and "group by".

Type 3: extracting data with SYS privileges (ORACLE dbms_export_extension exploit)

Type 4: is O.S code execution (ORACLE dbms_export_extension exploit)

Type 5: is reading files (ORACLE dbms_export_extension exploit, based on java)

Type 6: is O.S code execution DBMS_REPCAT_RPC.VALIDATE_REMOTE_RC exploit

Type 7: is O.S code execution SYS.KUPP$PROC.CREATE_MASTER_PROCESS(), DBA Privs

-cmd=revshell Type 7 supports meterpreter payload execution, run generator.exe first

Type 8: is O.S code execution DBMS_JAVA_TEST.FUNCALL, with JAVA IO Permissions

-cmd=revshell Type 8 supports meterpreter payload execution, run generator.exe first

For Type 4(O.S code execution) the following methods are supported:

-stype: How you want to execute command:

SType 0 (default) is based on java..will NOT work against XE.

SType 1 is against oracle 9 with plsql_native_make_utility.

SType 2 is against oracle 10 with dbms_scheduler.

Download Now

Disclaimer:

This Article is for Education purpose only.  The above mentioned software is developed for Penetration testers to test their own Web application Vulnerability. 

THC-ipv6 Toolkit – Attacking the IPV6 Protocol

A complete tool set to attack the inherent protocol weaknesses of IPV6 and ICMP6, and includes an easy to use packet factory library. Please note to get full access to all the available tools you need to develop IPV6 tools yourself or submit patches, tools and feedback to the thc-ipv6 project.


Tools Included :

• parasite6: icmp neighbor solitication/advertisement spoofer, puts you as man-in-the-middle, same as ARP mitm (and parasite)
• alive6: an effective alive scanng, which will detect all systems listening to this address
• dnsdict6: parallized dns ipv6 dictionary bruteforcer
• fake_router6: announce yourself as a router on the network, with the highest priority
• redir6: redirect traffic to you intelligently (man-in-the-middle) with a clever icmp6 redirect spoofer
• toobig6: mtu decreaser with the same intelligence as redir6
• detect-new-ip6: detect new ip6 devices which join the network, you can run a script to automatically scan these systems etc.
• dos-new-ip6: detect new ip6 devices and tell them that their chosen IP collides on the network (DOS).
• trace6: very fast traceroute6 with supports ICMP6 echo request and TCP-SYN
• flood_router6: flood a target with random router advertisements
• flood_advertise6: flood a target with random neighbor advertisements
• fuzz_ip6: fuzzer for ipv6
• implementation6: performs various implementation checks on ipv6
• implementation6d: listen daemon for implementation6 to check behind a FW
• fake_mld6: announce yourself in a multicast group of your choice on the net
• fake_mipv6: steal a mobile IP to yours if IPSEC is not needed for authentication
• fake_advertiser6: announce yourself on the network
• smurf6: local smurfer
• rsmurf6: remote smurfer, known to work only against linux at the moment
• sendpees6: a tool by willdamn@gmail.com, which generates a neighbor solicitation requests with a lot of CGAs (crypto stuff ;-) to keep the CPU busy.

Download

What is Aircrack-ng? WEP and WPA-PSK Cracking Tool

What is Aircrack-ng?
          Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the all-new PTW attack, thus making the attack much faster compared to other WEP cracking tools. In fact, Aircrack-ng is a set of tools for auditing wireless networks. 

PDF Unlocker - PDF Password Removal and Unlocker Tool

 

What is PDFUnlocker?

PDFUnlocker is free software that remove the passwords from the password protected PDF.  If you forget the password of your PDF file or you are forensic engineer, this tool will be very useful to remove the protection of the PDF .

ArpON (Arp handler inspectiON) v2.7-Security Softwares

What is ArpOn?
ArpON (Arp handler inspectiON) is a portable handler daemon that make ARP secure in order to avoid the Man In The Middle through ARP Spoofing/Poisoning. Detects/blocks the DNS, WEB Spoofing, Session Hijacking, SSL/TLS Hijacking & co attacks.

This is possible using three kinds of anti ARP Spoofing tecniques: the first is based on SARPI or "Static ARP Inspection" in statically configured networks without DHCP; the second on DARPI or "Dynamic ARP Inspection" in dynamically configured networks having DHCP; the third on HARPI or "Hybrid ARP Inspection" in "hybrid" networks, that is in statically and dynamically (DHCP) configured networks together.

WINDOWS AUTOPWN auto (hacking)shell gaining tool

WINDOWS AUTOPWN or winAUTOPWN is an auto (hacking) shell gaining tool. WINDOWS AUTOPWN Exploit Loading Framework

winAUTOPWN Features :

• Above 500 vulnerability exploits for softwares applications.
• Custom-compiled executables of famous and effective exploits alongwith a few original exploits.
• Exploits available in the form of PE-exe, ELF, php, perl, python.
• A smart multi-threaded PortScanner.
• A exploit loading framework to test effectiveness of IDS/IPS

Download it from here:

http://marijuanaunion.net/quaker/v2/w/old_releases/winAUTOPWN_2.6.RAR

Download documentations from here:

http://marijuanaunion.net/quaker/v2/w/winAUTOPWN_HowTo_Part-I.pdf

Squert released new versione SQueRT 0.9.0

Squert is a web application that is used to query and view event data stored in a Sguil database (typically IDS alert data). Squert is a visual tool that attempts to provide additional context to events through the use of metadata, time series representations and weighted and logically grouped result sets. The hope is that these views will prompt questions that otherwise may not have been asked.

Keep in mind that Squert is not a replacement for the Sguil client; it is also not intended to be a real-time (or near real-time) event console.

Requirements

* PHP5 with CLI
o pecl-stats
o mysql
o GD
* TCL, TclX
o mysqltcl
o uri
o ftp
o ftp::geturl
o md5
* MySQL client
* Graphviz (with PNG)
* Perl Text::CSV

How to install?

http://www.squertproject.org/install

Screen shots here:

http://www.squertproject.org/screenshots

source: http://www.squertproject.org/

"Hide The IP" best IP hiding software tool

As i said Internet is less secure medium, you have to hide your identity from intruders/attackers.( Using Internet, hackers can steal your confidential data like credit card number, bank account, facebook accounts.) One of the identity is IP address. When you visit website, it may store your IP Address . Using your IP address anyone hack your computer. So it is important to hide your IP address.

Today let me introduce a IP hiding software, named as "Hide the IP"

Hide the IP

Hide the IP is best IP hiding software. One simple click, your IP address will be hidden and show some fake IP address , surf anonymously over the internet. Now hackers can't find your original IP address.

Features of Hide the IP

• Select your physical Location: You can decide your region. Your IP will be set based on your country selection
• Send Anonymously Mail: while sending email , your IP also included in Header section of mail. This "Hide The IP "software will hide IP in your mail header also.
• Breaking restrictions: is your IP banned to register in any forums ? Some websites restricts certain country region. Using this software you can break the restrictions and register or visit websites
• you can install in 2 computers. But you can not use simultaneously.

how it works?
when you run the application, it connects to their server and get the new and stable IP address.

There is three different plans(standard, professional, plantinum) .

Download trick version here
Buy this software from here

How to hack a remote computer using Real time spy software

Realtime-spy

Now monitor any system remotely using the real time spy tool. This real-time spy provides webspace to store the log details. It can log whatever the target is doing or viewing.
Miscellaneous:No need of Physical Installation

This can record the following

Introduction to Angry Ip Scanner(Port Scanner)-Ethical Hacking Tutorials

What is Angry Ip Scanner?

Angry Ip scanner is a tool that scans network for open Ip addresses. Designed for network administrator to check the newtork security.

Features of Angry Ip scanner Tool:

How to Launch the Password Cracker 1.1 Application?

Recently i have developed a simple password cracking tool and released as open source software.  Today let us see how to launch PasswordCracker 1.1(HashCodeCracker 1.1). 

How to use Password Cracker? 

Minimum Requirements:
JRE(Java run time Environment) 1.6 should be installed .

Password Cracker Open Source Software Created by BreakTheSecurity

Hi Break The Security's Hackers, i have created Password Cracking Tool.  I have released it as open source software in sourceforge.net.

This tool uses Dictionary Attack method to crack the MD5, SHA-1,MD4,SHA-128,256,512 hash codes.  Now it is simple and basic tool.  In future it will become more efficient tool.

Introduction to Cain & Abel tool-How to use cain and abel?

Cain and abel tools is password recovery tools(let us use it as Hacking/Cracking Tools). This cracking tool allows us to crack the password using different kind of methods.
Some of them are:

• Brute Force Attack
• Dictionary attack
• Crypt Analysis attack
• recording VoIP conversations
• sniffing the network
• decoding scrambled passwords
• recovering wireless network keys
• revealing password boxes
• uncovering cached passwords
• analyzing routing protocols

Cain and abel is mainly developed in order to help for security professionals,Network admins.  The new version of cain label supports APR (Arp Poison Routing) attacks. 

If you want to download this Password cracking tool,then follow this link:

http://www.oxid.it/cain.html

Havij Tool - Automatic SQL Injection Process

Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page.
It can take advantage of a vulnerable web application. By using this software user can perform back-end database fingerprint, retrieve DBMS users and password hashes, dump tables and columns, fetching data from the database, running SQL statements and even accessing the underlying file system and executing commands on the operating system.
The power of Havij that makes it different from similar tools is its injection methods. The success rate is more than 95% at injectiong vulnerable targets using Havij.
The user friendly GUI (Graphical User Interface) of Havij and automated settings and detections makes it easy to use for everyone even amateur users.

Where i can get open source softwares?

Do you know that where you can find all open source softwares? If you don't know means, this article is for you.

Open source software:
open source means any one can edit and develop the software. Any one can use the source code. It is free for everyone.

Eg:
Wamp server

open source os is linux .

Where you can download it?
You can download all open source softwares in

www.sourceforge.net

you can find antivirus,anti-spyware,players,converter,etc....

Download open source softwares and enjoy !

If you want to add more details , you can comment here

Introducing a new Task Manager for analysing process

Do you know what programs are processing in your pc?  You use Default task manager for seeing the list of Process.  In Default task manage it just show only the list of process and memory usage.   You may not know which one is system process,malware program,application program.  Some advanced users can analyze himself what process are going on.  He can end the process by right clicking on the process.  But this will stop the program at the moment only.  When he restart the system or after sometime,the process may continue.

To analyze the system program, detect the malware and stop the program i am going to introduce a new software "Security Windows Manager".

How to use the Axcrypt for encryption?

In my last i gave you details about Axcrypt.  In this post i am going to guide you how to encrypt the file using Axcrypt software.

Download the Axcrypt from here:

 http://space.dl.sourceforge.net/project/axcrypt/AxCrypt/1.6.4.4/AxCrypt-Setup.exe

If the above link is not working then try this:

 http://downloads.sourceforge.net/axcrypt/AxCrypt-Setup.exe?Download

Axcrypt Software-an encrypting software tool

Hi friends now you know about encryptions right ? if you don't know about encryption ,please read this article
Introduction to cryptography
Now you know the importance of encryption.  If you like to protect your documents using encryption, then here is the tool for you.  This is open source software.  So no need to worry about the key,it is completely free.

Features of Axcrypt :

The following are features that re

How to remove spyware and Trojans?

Instant Spyware remover

Hi friends now i am going to introduce a new spyware and trojan detecting software.  It is best software.  I had one Trojan namely  "xkmq47.exe@ ".  When i install this sofware ,it founds this file.  But i had doubt "is this spyware software working correctly or showing important files as trojan?".  So i searched for the definiton of  " xkmq47.exe@ " in google search engine.  At the end of the result I found another spyware removal tool(in next post i will post about that tools after i use it).  Finally i came to one conclusion that this spyware removal tool is working perfectly.

I like to share that spyware removal tool with you.  Its name is "Instand Spyware Remover".