|
(Page 1 of 7) 1 2 3 4 5 6 Next > Platform: Java Yasca Added 2008-09-30 Yasca is a source code analyzer that integrates other open-source tools (PMD, FindBugs, Jlint) to produce a single output file. Yasca is easily extensible and includes a large number of custom rules implemented via a plugin-based architecture. Yasca is designed to find "low hanging fruit" and has plugins supporting a variety of languages, but mostly focused on Java and C/C++. SELS: Secure Email List Services Added 2008-09-29 SELS provides support for secure mailing lists where email messages are signed and encrypted. Only authorized subscribers have access to messages while others, including the list server, do not. SELS is compatible with most commonly used email clients. Source Security Added 2007-01-15 sourcesec.com provides Web-based access to code auditing applications, and was created to assist developers and users in auditing their programs for vulnerabilities. You can upload your code for static analysis by RATS, Flawfinder and ITS4 as applicable - the C/C++, PHP Python and Perl languages are supported. Additionally, a simplified search function is available which easily allows efficient Web searches for security-related information. SIP Proxy VoIP Security Test Tool Added 2006-12-15 SIP Proxy is an Open Source VoIP security test tool which has been developed by the students Philipp Haupt and Matthias Hürlimann during their diploma thesis and second student research project at the University of Applied Sciences Rapperswil (www.hsr.ch). Business partner was Compass Security AG in Rapperswil (www.csnc.ch). Description: In the so called "Proxy Mode", the application acts as a proxy between a VoIP PBX (e.g. Asterisk) and a UA (VoIP hard- or softphone). SIP traffic can be sniffed and dynamically manipulated with the help of regular expressions. Logged SIP messages can be modified and resent. In the "Test Case Mode" predefined security tests which are specified as XML files can be run against a specific target. Fuzzing technology, which is a kind of black-box testing, can be applied to find weak spots in VoIP devices. There are many more specific modules which can be used within such a test case. For example Wordlist- or Bruteforce attacks. While running a test case, feedback is given by displaying a grahical report which can be exported in a printable PDF document afterwards. With the help of SIP Proxy, several software bugs and configuration faults in specific VoIP devices have already been discovered. Check out this new and innovative software on SourceForge: http://sourceforge.net/projects/sipproxy SafePasswd Added 2006-10-15 Generate safe, secure and memorable passwords quickly and easily. If a password isn't memorable it isn't used. Also visually displays how effective a password is. Castor - Novell eDirectory Password Auditor Added 2006-07-10 Castor is a security audit tool for Novell eDirectory. · Check for weak passwords (Universal or NDS) · Check for improper rights given to administrators · Backup Universal passwords Tiger Envelopes Added 2006-05-21 Tiger Envelopes lets you read and write mail without worrying about who's snooping on you. Ordinary email is like sending all your messages on postcards. Anyone who's nosy can read it. What we need is something as easy as envelopes, but for email. That's what Tiger Envelopes is. You don't need to change your mail client. There are no extra steps. Tiger even puts your message in the envelope for you. One click to install on Windows, Mac, and Linux. Automatically configures Outlook, Outlook Express, Mac Mail and KMail for you. It's free and open source, of course. Argosy TelCrest Enterprise Password Safe Added 2006-04-25 Centralized password repository accessed via a web browser with multi-user access, audit logs, audit event email alerting, and much more. Free Random WEP/WPA-PSK online generator tool Added 2005-10-19 Create and customize random WEP/WPA-PSK Key with this online tool. SecureCentral ScanFi Added 2005-09-30 ScanFi is a vulnerability management and reporting software for detecting and assessing network vulnerabilities, open ports and missing patches across heterogeneous networks comprising servers, workstations, laptops, routers, switches and other network entities. Browse by category |
|
 Privacy Statement |
