Live Chat

Live Traffic

The Enhanced Mitigation Experience Toolkit EMET 4.0

The Enhanced Mitigation Experience Toolkit (EMET) is a utility designed to help IT Professionals and users block hackers from gaining access to their systems through common attacks. EMET enables users to manage security mitigation technologies that help make it more difficult for attackers to exploit vulnerabilities in a given piece of software. EMET is a free utility that helps prevent memory corruption vulnerabilities in software from being successfully exploited for code execution.
EMET has the following protection mechanisms built into it:
- Data Execution Prevention (DEP)
- Structured Exception Handler Overwrite Protection (SEHOP)
- Address Space Layout Randomization (ASLR)
- Certificate Trust (Pinning)
For ROP mitigations, heres the following methods for protection:
- Load Library checks : monitors load library and prevents loading libraries from UNC path.
- Memory protection checks : disallow making the stack area executable.
- Caller checks : checks to see when a critical function is reached if its reached through a call instruction rather than a RET. When building ROP gadgets, using return oriented programming, you build your ROP gadget through returns until you eventually have a way to circumvent data execution prevention.
- Simulate execution flow : tries to detect ROP gadgets following a call to a critical function.
- Stack pivot : checks to see if the stack has been pivoted.
- Deep hooks : protection of critical APIs and lower level APIs used by top level critical APIs.
- Anti Detours : Common shellcode techniques for evasion of hooks by executing a copy of the hooked function then jump to the function past the prologue will not work properly.
- Banned functions : Additional APIs will be detected and blocked.
Download The Enhanced Mitigation Experience Toolkit EMET 4.0
5:12 PM | 0 comments | Read More
0 comments
Labels: , , , , ,

Free .NET Decompiler DotNet Resolver

DotNet Resolver is a free .NET decompiler written in C#. This decompiler is able to read, translate and edit applications written in any .NET language. The application has been designed to be as stable as possible, and therefore it doesn't fail that fast when opening protected or obfuscated applications.
DotNet Resolver Features :
- Translate to C# and Visual Basic
- Editing MSIL Instructions
- Stable Assembly Reader
- Member Analyser
- Plugin Support ex string searcher 
7:13 PM | 4 comments | Read More
4 comments
Labels: , , , , ,

Free Download Sandboxie 4.02 Full Version

Sandboxie - Sandbox security software for Windows. Install and run programs in a virtual sandbox environment without writing to the hard drive. Sandboxie runs your programs in an isolated space which prevents them from making permanent changes to other programs and data in your computer.
Sandboxie 4.02 Benefits :
- Secure Web Browsing: Running your Web browser under the protection of Sandboxie means that all malicious software downloaded by the browser is trapped in the sandbox and can be discarded trivially.
- Enhanced Privacy: Browsing history, cookies, and cached temporary files collected while Web browsing stay in the sandbox and don't leak into Windows.
- Secure E-mail: Viruses and other malicious software that might be hiding in your email can't break out of the sandbox and can't infect your real system.
- Windows Stays Lean: Prevent wear-and-tear in Windows by installing software into an isolated sandbox.
Sandboxie 4.02 Features :
- Full protection is offered on both 32-bit and 64-bit Windows. The Experimental Protection feature, which enabled full protection on 64-bit Windows, is no longer needed, and was removed.
- Improved compatibility with avast!, Driver Verifier, EMET, F-Secure, KeyScrambler, Lingoes, Listary, Norton Internet Security, Office 2013, PGP, Proxifier, ProxyCap, Solid Converter PDF, Windows 8.
- Removed support for Windows 2000. Service Pack 3 is required for use on Windows XP.

6:56 PM | 0 comments | Read More
0 comments
Labels: , , , , ,

Immunity Debugger 1.85 : Reverse Engineering Tool

Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry's first heap analysis tool built specifically for heap creation, and a large and well supported Python API for easy extensibility.
Immunity Debugger interfaces include the GUI and a command line. The command line is always available at the bottom of the GUI. It allows the user to type shortcuts as if they were in a typical text-based debugger, such as WinDBG or GDB. Immunity has implemented aliases to ensure that your WinDBG users do not have to be retrained and will get the full productivity boost that comes from the best debugger interface on the market.
Immunity Debugger benefits :
- A debugger with functionality designed specifically for the security industry
- Cuts exploit development time by 50%
- Simple, understandable interfaces
- Robust and powerful scripting language for automating intelligent debugging
- Lightweight and fast debugging to prevent corruption during complex analysis
- Connectivity to fuzzers and exploit development tools
Download Immunity Debugger 1.85

7:07 PM | 0 comments | Read More
0 comments
Labels: , , , , , ,

Hashcat Advanced Password Recovery Tool

Hashcat Advanced Password Recovery Tool
- Worlds fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker
- Worlds first and only GPGPU based rule engine
Hashcat Advanced Password Recovery Features :
- Multi-Threaded
- Free
- Multi-Hash (up to 24 million hashes)
- Multi-OS (Linux, Windows and OSX native binaries)
- Multi-Algo (MD4, MD5, SHA1, DCC, NTLM, MySQL, ...)
- SSE2 accelerated
- All Attack-Modes except Brute-Force and Permutation can be extended by rules
- Very fast Rule-engine
- Rules compatible with JTR and PasswordsPro
- Possible to resume or limit session
- Automatically recognizes recovered hashes from outfile at startup
- Can automatically generate random rules
- Load saltlist from external file and then use them in a Brute-Force Attack variant
- Able to work in an distributed environment
- Specify multiple wordlists or multiple directories of wordlists
- Number of threads can be configured
- Threads run on lowest priority
- Supports hex-charset
- Supports hex-salt
- 30+ Algorithms implemented with performance in mind
... and much more
Download Hashcat Advanced Password Recovery Tool
10:31 PM | 0 comments | Read More
0 comments
Labels: , , , , ,
Subscribe to: Posts (Atom)