Interesting links – March 2
Potentially interesting links for March 2:
- “Aurora” Response Recommendations (pdf) – Recommendations on how to defend against the “aurora” attacks used against Google and others. Internal DNS monitoring, VPN enrollments and (of course) better control of Windows endpoints are three key recommendations.
- No more and = 1 – SQL injection and XSS testing assistant. Interactive and WebScarab versions. Allows you to pick XSS and SQLi from menu and copy to clipboard.
- Sahi – Simple to use automated testing tool for web applications. Record and playback scripts. Runs on any modern browser which supports javascript.
- G-SEC SSL and Bluetooth Tools – Nice set of tools: “Harden SSL/TLS” – Change SSL/TLS settings on Windows, SSL Audit – scans servers for SSL support of all known cipher suites, BTCrack – Bruteforce Bluetooth PINs from captured keypairings.
Posted in Interesting |
Tags: aurora, automation, bluetooth, endpoint+security, interesting, intrusion+prevention, Malware, pentest, sql+injection, ssl, system:filetype:pdf, system:media:document, test, testing, tool, tools, web, webappsec, xss
Tags: aurora, automation, bluetooth, endpoint+security, interesting, intrusion+prevention, Malware, pentest, sql+injection, ssl, system:filetype:pdf, system:media:document, test, testing, tool, tools, web, webappsec, xss