Updated: 2010-03-20 06:21:26
skipfish is a high-performance, easy, and sophisticated Web application security testing tool. It features a single-threaded multiplexing HTTP stack, heuristic detection of obscure Web frameworks, and advanced, differential security checks capable of detecting blind injection vulnerabilities, stored XSS, and so forth.Changes: Initial announcement.
Tags: Security, Web, http, Scanner, crawler
Licenses: Apache 2.0
Updated: 2010-03-19 21:33:36
The WiKID Strong Authentication System is a highly scalable, secure two-factor authentication system. It is simple to implement and maintain, allows users to be validated automatically, requires no hardware tokens, has a simple API for application support (via Ruby, PHP, Java, COM, Python, etc.), supports multiple domains, and supports replication for fault tolerance and scalability. It also supports mutual /host and transaction authentication, wireless tokens only domains, locked tokens (to your PC), anti-keystroke logger keypad PIN entry, etc.
Changes: This release fixes the offline challenge-response for out-of-coverage wireless tokens.
Release Tags: Enterprise, two-factor authentication, Information Security, VPN
Tags: Security, Cryptography, Networking, two-factor authentication
Licenses: GPL, Other
Updated: 2010-03-19 21:24:47
About Us Products Technology Solutions Resources What's New Topic Cloud What's New Cenzic Blog Topics Application Security News Cenzic SmartAttack Updates for Web Vulnerabilities Web Application Security Insights Resources Podcasts Trend reports White papers THE CENZIC BLOG Subscription options what is this Read more articles in Cenzic SmartAttack Updates for Web Vulnerabilities March 19, 2010 Cenzic Detects an Apache Memory Corruption Vulnerability Weekly product update Cenzic detects an Apache Memory Corruption Vulnerability As of March 19, 2010 Cenzic now detects an Apache mod_isapi' Memory Corruption Vulnerability BugtraqID 38494 Attackers can leverage this vulnerability to execute arbitrary code with system privileges failed attacks may result in denial-of-service conditions . nbsp Apache versions prior to 2.2.15 are . affected Background on Cenzic's SmartAttacks Every week , Cenzic's suite of products is updated with the latest vulnerabilities custom , commercial , and open-source to better detect holes in Web applications . nbsp These Web application vulnerabilities include but not limited to cross site scripting , buffer overflow , path or directory traversal , SQL
Updated: 2010-03-19 21:23:47
NuFirewall is a Linux based firewall distribution which can be entirely managed through a user-friendly Qt based GUI. Components of the GUI are system configuration, firewall rules configuration, log analysis, and a PKI.Changes: Initial freshmeat release.
Release Tags: Beta
Tags: Firewall Appliance, Security, identity
Licenses: GPLv3
Updated: 2010-03-19 16:57:57
pyxser (Python XML Serialization) is a Python object to XML serializer that validates every XML deserialization against the pyxser 1.0 XML Schema. It is written entirely in C as a Python extension. It uses recursive O(n) algorithms for both serialization and deserialization.Changes: Minor bugfixes.
Tags: XML, Serialization
Licenses: LGPLv3
Updated: 2010-03-19 16:34:10
The Change Log Manager is a simple tool that allows you to centrally manage your change logs. It is built using the Open Portal.Changes: This is a complete rewrite of the change log manager. New functionality has been added and security has been improved.
Tags: Internet, Web
Licenses: GPLv3
Updated: 2010-03-19 15:42:35
WebSite Auditor is a tool for anyone dealing with Web site promotion. This software gives you an in-depth look into your top 10 competitors' page content. All the data is presented in a customizable table, accompanied by the illustrative cloudmap of keywords contained within the page. A built-in report explains in plain English what to do with the information collected. It will also use the gathered data to create an optimization plan tailored for your page. Changes: The interface is fully translated into Russian and German
Automatic data backup is added. The option of alphabetical projects sorting is provided.
Tags: SEO, search engine optimization, site promotion
Licenses: Shareware
Updated: 2010-03-19 15:37:42
nwcc is a C compiler for Unix systems. It targets Linux, Mac OS X, BSD, and Solaris on 80x86 (with nasm and gas), Linux, Mac OS X, and FreeBSD on AMD64 (with yasm and
gas), Solaris and Linux on SPARC (64-bit), AIX and Linux on PowerPC (32- and 64-bit), and IRIX on MIPS (64-bit).
Cross-compilation is also supported. It doesn't feature any software development support beyond plain compilation.Changes: This version fixes a few general and PIC-specific bugs.
Tags: Software Development, Compilers
Updated: 2010-03-19 15:28:38
Visifire is a set of data visualization components powered by Microsoft Silverlight. It lets you create and embed visually stunning animated Silverlight Charts within minutes. Visifire is easy to use and independent of the server side technology. It can be used with ASP, ASP.Net, PHP, JSP, ColdFusion, Ruby on Rails, or just simple HTML. Visifire's unique features are visually stunning animated charts, the ability to be embedded into any Web page in minutes, a tiny footprint (140 KB), and enterprise grade features.
Changes: Minor bugfixes.
Tags: Software Development, Libraries, Scientific/Engineering, Visualization, Internet, Web, Dynamic Content, CGI Tools/Libraries
Licenses: GPLv3
Updated: 2010-03-19 14:53:15
GAdmin-BIND is an easy to use GTK+ frontend for
ISC BIND.Changes: This release fixes the specfile desktop entry. It uses the correct sysinit stop command.
Tags: Internet, DNS
Licenses: GPLv3
Updated: 2010-03-19 14:40:30
Toprammer is software for the TOP2049 universal programmer. As all programming algorithm logic is implemented in software, it does not support all the devices that the original "Topwin" Windows software supports. However, support for new chips can be added, if needed.<strongChanges: Major bugfixes and feature improvements.
Tags: Hardware engineering
Licenses: GPL
Updated: 2010-03-19 14:26:41
Sencure Dept Portal is an extension to the 'Secure Portal' project that offers multi-department handling so that users can be assigned to departments.Changes: Small security fixes to stop people from accessing pages they shouldn't if they know the direct URL.
Tags: Internet, Web
Licenses: GPLv3 or later
Updated: 2010-03-19 14:24:47
Secure Portal is a very simple user portal with
built-in administration tools for user management.
It is designed to be a skeleton from which you can
build a simple managed and secure Web site. It
comes with a default admin account which
automatically becomes disabled once a real admin
account is added.
Changes: Small security fixes to stop people from accessing pages they shouldn't if they know the direct URL.
Tags: Internet, Web
Licenses: GPLv3
Updated: 2010-03-14 20:47:15
We’re trying to get some background information about who our listeners are, where they sit in their security careers and what we can do to improve the Network Security Podcast. We’d really appreciate it if you can take 5 minutes or less to fill out the survey and tell us how we can serve your [...]
