Known Host Cracker (khc) is a small tool designed to recover hashed known_host files back to their plain-text equivalents.

SLURM is a resource manager for executing parallel jobs on clusters of any size. Simple configurations can be established in a couple of minutes. More complex batch scheduling configurations satisfy the needs at some HPC sites.

Installing tips:
FreeBSD: make install clean -C [path] (e.g.: /usr/sbin/tools/slurm)
Debian: apt-get install slurm

GPU Driver and SDK Requirements:

* NV users require ForceWare 195.x.
* ATI users require Catalyst 10.4 and ATI Stream SDK v2.1.

Features

* Free
* Multi-GPU
* Multi-Hash
* Linux & Windows native binaries
* Uses OpenCL
* Fastest multihash MD5 cracker on NVidia cards
* Fastest multihash MD5 cracker on ATI 5xxx cards
* Supports wordlists (not limited to Brute-Force / Mask-Attack)
* Can mix wordlists with Mask-Attack to emulate Hybrid-Attacks
* Runs very cautious, you can still watch movies while cracking

Features

* Free
* Multi-Threaded
* Multi-Hash
* Linux & Windows native binaries
* Fastest cpu-based multihash cracker
* SSE2 accelerated
* All Attack-Modes except Brute-Force and Permutation can be extended by Hybrid-Attack rules
* Very fast Hybrid-Attack engine
* Rules mostly compatible with JTR and PasswordsPro
* Possible to resume or limit session
* Automatically recognizes recovered hashes from outfile at startup
* Can automatically generate random rules for Hybrid-Attack

Gamascan’s Web application scanner protects applications and servers from hackers. It is an automated security service that searches for software vulnerabilities within web applications.

A web application scanner crawls the entire website, analyzing each & every file in-depth, assessing the entire website structure. A vulnerability assessmente scan performs an automatic audit for common security vulnerabilities while launching a series of simulated web attacks. Web security seal and free trial are available.

Gamasec’s web application vulnerability scanning does automated search for security weaknesses in web applications and produces a detailed security report with recommendations for optimally matched solutions.

GamaSec’s assessment delivered via SaaS (software-as-a-service) identifies security weaknesses in web applications. www.gamasec.com

The service identifies security vulnerabilities and produces recommended solutions that can fix or provide a viable workaround to the identified vulnerabilities, when you need them, not when it is already too late.

Presentation

Wapiti allows you to audit the security of your web applications.
It performs "black-box" scans, i.e. it does not study the source code of the application but it will scan the webpages of the deployed webapp, looking for scripts and forms where it can inject data.
Once it gets this list, Wapiti acts like a fuzzer, injecting payloads to see if a script is vulnerable.

Wapiti can detect the following vulnerabilities :

* File Handling Errors (Local and remote include/require, fopen, readfile...)

DEFT Linux v5 is based on the new Kernel 2.6.31 (Linux side) and the DEFT Extra 2.0 (Computer Forensic GUI) with the best freeware Windows Computer Forensic tools. DEFT it’s a new concept of Computer Forensic live system that use LXDE as desktop environment and thunar file manager and mount manager as tool for device management.
It is a very easy to use system that includes an excellent hardware detection and the best free and open source applications dedicated to incident response and computer forensics.
DEFT is meant to be used by:

* police
* investigators

Ever find yourself looking for that showstopper exploit in a Web-app, and forgetting to check out all the low-hanging fruit? That's intitially why we created Watcher. For one thing, we don't want to manually inspect a Web-app for many of these issues (cookie settings, SSL configuration, information leaks, etc), but we still want to find and fix them. Watcher provides this level of security analysis, plus provides hot-spot detection to help pen-testers focus in on the spots that will lead to that showstopper exploit.

Fiddler is a Web Debugging Proxy which logs all HTTP(S) traffic between your computer and the Internet. Fiddler allows you to inspect all HTTP(S) traffic, set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem, and can be extended using any .NET language.

Fiddler is freeware and can debug traffic from virtually any application, including Internet Explorer, Mozilla Firefox, Opera, and thousands more.