OpenFoundry - Recently Added Listings - 網路稽核 https://www.openfoundry.org/ Thu, 21 Nov 2019 23:22:18 +0100 FeedCreator 1.7.3 Ettercap https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/ettercap Ettercap is a suite for man in the middle attacks on LAN. It features sniffing of live connections, content filtering on the fly and many other interesting tricks.

It supports active and passive dissection of many protocols (even ciphered ones) and includes many feature for network and host analysis. All this feature are integrated with a easy-to-use and pleasureful ncurses/gtk interfaces.

Platform: Windows/Linux/BSD/MacOS;License:GNU General Public License v2
Reference:https://ettercap.sourceforge.net/

]]>
webmaster Thu, 18 Aug 2011 23:56:53 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/ettercap
Easy-Creds https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/easy-creds The easy-creds script is a bash script that leverages ettercap and other tools to obtain credentials during penetration testing.

Menu driven, it allows you to easily attack with basic arp spoofing, oneway arp spoofing and DHCP spoofing and the setup of a Fake AP.

In addition it has an SSLStrip log file parser that leverages a definition file to give you the compromised credentials and the site they have come from.

Platform:Linux;License:GNU General Public License v2
Reference:https://code.google.com/p/easy-creds/

]]>
webmaster Thu, 18 Aug 2011 00:12:58 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/easy-creds
Aircrack-ng https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/aircrack-ng Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the all-new PTW attack, thus making the attack much faster compared to other WEP cracking tools. In fact, Aircrack-ng is a set of tools for auditing wireless networks.

Platform:Windows/Linux ;License: GNU General Public License v2
Reference:https://www.aircrack-ng.org/

]]>
webmaster Thu, 18 Aug 2011 00:12:15 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/aircrack-ng
Aircrax https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/aircrax Easy to use wizard-like GUI tool to recover WEP/WPA keys using the aircrack-ng suite. Written in C# using Mono, GTK#, and the Funkit library.

Platform:Windows/Linux;License:GNU General Public License v3
Reference:https://sourceforge.net/projects/aircrax/

]]>
webmaster Thu, 18 Aug 2011 00:11:30 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/aircrax
Argus https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/argus Argus, the network Audit Record Generation and Utilization System. The Argus Project is focused on developing network activity audit strategies and prototype technology to support Network Operations, Performance and Security Management. If you look at packets to solve problems, or you need to know what is going on in your network, right now or way back then, you should find Argus a useful tool.

Platform:Windows/Linux;License: GNU General Public License v2
Reference: https://www.qosient.com/argus/

]]>
webmaster Thu, 18 Aug 2011 00:10:45 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/argus
Open AudIT https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/open-audit Open-AudIT is an application to tell you exactly what is on your network, how it is configured and when it changes. Open-AudIT will run on Windows and Linux systems. Essentially, Open-AudIT is a database of information, that can be queried via a web interface. Data about the network is inserted via a Bash Script (Linux) or VBScript (Windows). The entire application is written in php, bash and vbscript. These are all 'scripting' languages - no compiling and human readable source code. Making changes and customisations is both quick and easy.

Platform:Windows/Linux ;License:GNU General Public License v2
Reference:https://www.open-audit.org/

]]>
webmaster Thu, 18 Aug 2011 00:09:18 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/open-audit
Wireshark https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/wireshark Wireshark is a free and open-source packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education. Originally named Ethereal, in May 2006 the project was renamed Wireshark due to trademark issues.

Wireshark is cross-platform, using the GTK+ widget toolkit to implement its user interface, and using pcap to capture packets; it runs on various Unix-like operating systems including Linux, Mac OS X, BSD, and Solaris, and on Microsoft Windows. There is also a terminal-based (non-GUI) version for Linux called TShark. Wireshark, and the other programs distributed with it such as TShark, are free software, released under the terms of the GNU General Public License.

Platform:Windows/Linux;License: GNU General Public License v3
Reference:https://www.wireshark.org/

]]>
webmaster Thu, 18 Aug 2011 00:01:55 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/wireshark
Mitmjws https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/mitmjws Mitmjws is a basic script to automate man-in-the-middle attacks. The script calls airbase, ettercap, sslstripper and driftnet, requires aircrack-ng with experimental software. So, before test this program, you need install all dependence tools and libraries. This project's source code are released under GNU General Public License v3 (GPLv3).
Platform: Windows/Linux/BSD/Mac OS;License: GNU General Public License v3
Reference: https://code.google.com/p/mitmjws/

]]>
dio Thu, 13 Jan 2011 09:27:27 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/mitmjws
Middler https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/Middler The Middler is a Man in the Middle tool to demonstrate protocol middling attacks. Led by Jay Beale, the project involves a team of authors including InGuardians agents Justin Searle and Matt Carpenter. The Middler is intended to man in the middle, or "middle" for short, every protocol for which we can create code.

In our first alpha release, we released a core built by Matt and Jay, with introductory plug-ins by Justin and InGuardians agent Tom Liston. It runs on Linux and Mac OS X, with most of the code functional on Windows. The current codebase is in the beta state, with a full release coming soon, with better documentation (see the wiki), easier installation, and even more plug-ins, at least if Justin has his way!

Platform: Windows/Linux/BSD/Mac OS;License: GNU General Public License v2

Reference: https://code.google.com/p/middler/

]]>
dio Wed, 12 Jan 2011 17:23:04 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/Middler
IPpon-mitm https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/ippon-mitm

Software updates apply patches or introduce new features to an application. In most cases, the update procedure is conducted in an insecure manner, exposing the updater to execution of malicious code or to manipulation of application data such as anti-virus signatures. This tool uses several techniques of update-exploitation attacks which leverages a man-in-the-middle technique, to build and inject a fake update reply or hijack an on-going update session.

Platform: Windows/Linux/BSD/Mac OS;License: GNU General Public License v2

Reference: https://code.google.com/p/aimject/

]]>
dio Wed, 12 Jan 2011 09:28:08 +0100 https://www.openfoundry.org/en/resourcecatalog/Security/Network-Auditing/ippon-mitm