El pasado 27 de noviembre/2007 se publico la nueva versión 1.3 de FireCAT, Firefox Catalog of Auditing exTensions (Exploitme tools included)
Para los que no conocen al Framework de auditoria FireCAT, les decimos que es una recopilaron de las principales extensiones que permiten utilizar a Firefox como un instrumento para la auditoría y test de seguridad informática.
Changes for version 1.3
- Category Information Gathering (Googling and Spidering)
GSI Google Site indexer (GSI Creates Site Maps based on Google queries. Useful for both Penetration Testing and Search Engine Optimization. GSI sends zero packets to the host making it anonymous) (Thanks to Jeff Stewart)
- Category Information Gathering (Data mining)
. Who is this person (Highlight any name on a web page and see matching information from Wink, LinkedIn, Wikipedia, Facebook, Google News, Technorati, Yahoo Person Search, Spock, WikiYou, ZoomInfo, IMDB, MySpace and more...)
. FaceBook Toolbar (Search Facebook from anywhere The Search Box allows you to easily search Facebook no matter)
- Category Information Gathering (Location info)
Router Status (Shows the current status of your router in the status bar and allows you to control it)
- Category Security Auditing
XSS-Me (the Exploit-Me tool used to test for reflected Cross-Site Scripting (XSS) vulnerabilities)
SQL Inject-Me (the Exploit-Me tool used to test for SQL Injection vulnerabilities)
FireWatir (Watir is a simple open-source library for automating web browsers. It allows you to write tests that are easy to read and easy to maintain. It is optimized for simplicity and flexibility)
- Category Network utilities (Database)
SQLite Manager (Manage any SQLite database on your computer.)
- Category Information Gathering (Googling and Spidering)
GSI Google Site indexer (GSI Creates Site Maps based on Google queries. Useful for both Penetration Testing and Search Engine Optimization. GSI sends zero packets to the host making it anonymous) (Thanks to Jeff Stewart)
- Category Information Gathering (Data mining)
. Who is this person (Highlight any name on a web page and see matching information from Wink, LinkedIn, Wikipedia, Facebook, Google News, Technorati, Yahoo Person Search, Spock, WikiYou, ZoomInfo, IMDB, MySpace and more...)
. FaceBook Toolbar (Search Facebook from anywhere The Search Box allows you to easily search Facebook no matter)
- Category Information Gathering (Location info)
Router Status (Shows the current status of your router in the status bar and allows you to control it)
- Category Security Auditing
XSS-Me (the Exploit-Me tool used to test for reflected Cross-Site Scripting (XSS) vulnerabilities)
SQL Inject-Me (the Exploit-Me tool used to test for SQL Injection vulnerabilities)
FireWatir (Watir is a simple open-source library for automating web browsers. It allows you to write tests that are easy to read and easy to maintain. It is optimized for simplicity and flexibility)
- Category Network utilities (Database)
SQLite Manager (Manage any SQLite database on your computer.)
Para los interesados en ver un MAPA que muestra todas las relaciones entre estas útiles extensiones de una forma mucho más gráfica tenemos las siguientes vistas:
- FireCAT 1.3 Pdf (PDF - 176.4 kb)
- FireCAT 1.3 .mm source (Zip - 4.3 kb)
- Firecat 1.3 Browsable HTML (Zip - 37 kb)
- FireCAT 1.3 .mm source (Zip - 4.3 kb)
- Firecat 1.3 Browsable HTML (Zip - 37 kb)
Actualizado
No hay comentarios:
Publicar un comentario