|
|
UDP port 1434 directed attack to AS13489 IP ranges, (Fri, May 24th)
We have seen today a big rise of incoming packets of what appears to be a SQL Slammer attacks. Some of the detected packets are:…
ISC StormCast for Thursday, May 23rd 2013 http://isc.sans.edu/podcastdetail.html?id=3326, (Thu, May 23rd)
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
MoVP II, (Thu, May 23rd)
Volatility is a Python framework for performing memory forensics. If you haven't tried it yet I highly recommend it. The Volatility Month of Volatility Plug…
Wireshark 1.10.0rc2 is now available http://www.wireshark.org/download.html, (Thu, May 23rd)
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Chrome 24.0.1312.52 has been updated for Windows, Mac, Linux, and Chrome Frame, (Wed, May 22nd)
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Apple QuickTime 7.7.4 for Windows updated, MANY security vulnerabilities: http://support.apple.com/kb/HT1222, (Wed, May 22nd)
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
|
|
|
|
|
Obeseus Distributed Denial Of Service Detector 7.1a
Obeseus is a light-weight, high-speed ip DDOS detector that has been designed to run on an Intel probe running an advanced 10 Gb/s FPGA card. It detects TCP floods, Fragment F…
360-FAAR Firewall Analysis Audit And Repair 0.4.4
360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands…
CodeCrypt 1.1
codecrypt is a GnuPG-like program for encryption and signing that uses only quantum-computer-resistant algorithms.
Sanewall 1.0.2
Sanewall is a firewall builder for Linux which uses an elegant language abstracted to just the right level. This makes it powerful and easy to use, audit, and understand. It a…
ipset 6.19
ipset allows administration of sets of IP addresses/networks, ports, MAC addresses, and interfaces, which are stored in hash or bitmap data structures. These can then be used…
Packet Fence 4.0.0
PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secur…
Bing LFI / RFI Scanner
This is a python script for searching Bing for sites that may have local and remote file inclusion vulnerabilities.
Sanewall 1.1.1
Sanewall is a firewall builder for Linux which uses an elegant language abstracted to just the right level. This makes it powerful and easy to use, audit, and understand. It a…
NTDS Hash Decoder 01.b
This application dumps LM and NTLM hashes from active accounts stored in an Active Directory database.
|
|
|
DShield.org Recommended Block List
This list summarized the top 20 attacking class C (/24) subnets over the last three days. The number of 'attacks' indicates the number of targets reporting scans from this subnet. |
DShield.org Suspicious Domain List
|
GRC ShieldsUP!
Internet Vulnerability Profiling |
Geo IP Location Service
This Geo Ip Location service (IP Address Map lookup service) is provided for FREE by Geobytes, Inc. to assist you in locating the geographical location of an IP Address. |
IANA Port Number List
The port numbers are divided into three ranges: the Well Known Ports,
the Registered Ports, and the Dynamic and/or Private Ports. |
InterNIC Whois Search
A query and response protocol that is widely used for querying databases that store the registered users or assignees of an Internet resource, such as a domain name, an IP address block, or an autonomous system. |
|
|
|
|
|
|
|
|
|
yougube.com (2013/05/20_18:00)
Host: yougube.com, IP address: 199.223.209.169, ASN: 25847, Country: US, Description: Redirects to Rogue.FakeFlashPlayer…
youtuhe.com (2013/05/20_18:00)
Host: youtuhe.com, IP address: 174.140.17.100, ASN: 32311, Country: US, Description: Redirects to Rogue.FakeFlashPlayer…
flashplayerupdate.trusted-downloads.org (2013/05/20_18:00)
Host: flashplayerupdate.trusted-downloads.org/33/, IP address: 199.223.209.169, ASN: 25847, Country: US, Description: Rogue.FakeFlashPlayer…
dls.nicdls.com (2013/05/20_18:00)
Host: dls.nicdls.com/p/157/FlashPlayer/415/526, IP address: 37.59.180.17, ASN: 16276, Country: FR, Description: Rogue.FakeFlashPlayer…
youtibe.com (2013/05/20_20:35)
Host: youtibe.com, IP address: 173.193.106.10, ASN: 36351, Country: US, Description: Redirects to Rogue.FakeFlashPlayer…
103.4.218.22:8080 (2013/05/12_14:55)
Host: -, IP address: 103.4.218.22:8080//get/e3943d7369aa6add911aca18b3a507f4.exe, ASN: 131472, Country: TH, Description: Trojan.FakeAlert…
180.235.132.29:8080 (2013/05/12_14:55)
Host: -, IP address: 180.235.132.29:8080//get/e3943d7369aa6add911aca18b3a507f4.exe, ASN: 55639, Country: HK, Description: Trojan.FakeAlert…
208.88.5.229:8080 (2013/05/12_14:55)
Host: -, IP address: 208.88.5.229:8080//get/e3943d7369aa6add911aca18b3a507f4.exe, ASN: 36218, Country: CA, Description: Trojan.FakeAlert…
217.8.253.250:8080 (2013/05/12_14:55)
Host: -, IP address: 217.8.253.250:8080//get/e3943d7369aa6add911aca18b3a507f4.exe, ASN: 20738, Country: GB, Description: Trojan.FakeAlert…
|
|
|
|