phenoelit.de/fr/tools.html
www.secwatch.org
www.securiteam
.com
exploits hone
vulnerabilities overflows
0-Day Exploits and Tutorials
The Metasploit Project is an open source computer security project which
provides information about security vulnerabilities and aids in penetration testing and IDS signature
development. Topics of interest are security, hacking, phreaking, anarchism, cryptography, spying, radio
broadcasting, coding, conspiracy, and world news.Beyond Security will help you expose your security
holes and will show you what the bad guys already know about your hosts and network.A up to date security
and exploit portal, provides commentary on many popular exploits as they develop in the wild.
malware discloses
Frequently
updated and always interesting.Phrack is an underground ezine made by and for hackers that has been
around since November 17, 1985.
Security Focus
www.security-protocols.com
Website for various exploits
and hacking tools (such as hydra)
www.malware.com/
hacking exploiting
Perfect for cleaning up after a penetration test
. Its most well-known sub-project is the Metasploit Framework, a tool for developing and executing exploit
code against a remote target machine.
PullThePlug WarGames
www.securitytracker.com
Security-Protocols Exploit
News
exploits securityfocus
www.insecure.org/sploits.html
www.hackaday.com/
Also the home of the k0ld LDAP brute force utility
.
Phrack.org Archives
www.pulltheplug.org/
Exploit database separated by exploit type (local, remote, DoS
, etc.
hacking securityfocus
A large exploit forum, with customized exploit tools and 0-day downloads.Home of a number of 0
-day exploit authors.
malware.com
exploit shellcode
SecWatch - A site dedicated to the latest in security - all the latest
and archived exploits and vulnerabilities.SecurityFocus is the most comprehensive and trusted source
of security information on the Internet.
milw0rm.com
)
discloses securityfocus
DataStroghold.Step by step guide to privilege escalation
using shatter attacks. Use our Automated Scanning service to perform a full security audit of your site
, and find the latest security news and tools on Beyond Security `s SecuriTeam web site.
Security
Tracker
Mainly specializing with Microsoft Office and Internet Explorer Vulnerabilitys.
shellcode penetration
Basics of Win32
Shatter Attacks
security.tombom.co.uk/shatter.html
Has built in memory resident shells that are cleared
when the machine is rebooted.Latest Security Exploits and codes.
fyodor exploiting
www.immunitysec.com/index.shtml
French
and English language content provided.
www.networksecurityarchive.org
www.packetstormsecurity.org/
www
.securityfocus.com
brute exploits
Exploiting Caller ID
It publishes new security information on a global network of websites
.
penetration hone
www.infosecinstitute.com/courses/ethical_hacking_training.html
The Software Orange Box is a free proof
-of-concept tool which can spoof most forms of North American Caller ID.
Hack A Day
Packet Storm is a non
-profit organization comprising computer security professionals that are dedicated to providing the information
necessary to secure the networks world-wide.
securiteam exploits
Commercial hacker training course on how to write and use
exploits. Other important sub-projects include the Opcode Database, shellcode archive, and security
research. A must have for many professional penetration testers.
www.phrack.org/archives/
vulnerabilities executing
Network Security
Archive
Rosiello Security
Trivia Security Exploits Archive
exploiting securityfocus
Canvas Exploit Platform
www.artofhacking.com
/orange.htm
PacketStorm Security
Phenoelit
Place for Programmers and Hackers to hone their technical skills
by completing challenging wargames and Programming Challenges.
executing vulnerability
The organization offers an abundant resource
of up-to-date and historical security tools, exploits, and advisories.
www.milw0rm.com
shellcode securityfocus
www.frsirt.com
/exploits/
A large and descriptive exploit archive organized by affected operating systems.A hardware
hack every day. Including Network Programming, Defeating PaX, Buffer/Heap Overflows, Format Strings
etc.Advisories, exploits, shellcodes, whitepapers, free software.
droppers hone
com Unveils how exploits and other
hacking techniques are performed, in a clear and concise method.
www.nextgenss.com/papers.htm
The Hacker`s
Choice
www.thc.org
hacking opcode
Custom built network tools designed to take advantage of the exploits within many network
hardware systems.
exploits opcode
www.datastronghold.com
www.illmob.org/
It provides network security professionals, researchers
, and all other interested individuals with the ability to analyze and learn from the tools,
www.rosiello
.org
SecuriTeam.com
vulnerabilities opcode
An active community where help is just a post away.A collection of mailing list archives
dealing with exploits, vulnerability development and hacking
Archive of exploits and security advisories
exploiting penetration
Deny.de
www.deny.de/mx/
Ethical Hacking Course
FrSIRT Exploits Archive
Metasploit Project
Series of papers
on how to write exploits and discover vulnerabilities
www.triviasecurity.net/exploits.php
Updated daily
.
exploits metasploit
Fyodor`s Exploit World
Ill Mob
Many creative Trojan droppers and methods are released here.
NGS Research
The magazine is open for contributions by anyone.
SecWatch - Keeping An Eye On Security
SecurityFocus
is a vendor-neutral site that provides objective, timely and comprehensive security information to all
members of the security community, from end users, security hobbyists and network administrators to
security consultants, IT Managers, CIOs and CSOs.
shatter overflows
Shatter Attacks use flaws within the Windows API call
SetWindowLong() as well as others.A commercial exploit platform similar to metasploit.Archive of current
0day exploits from European and Asian sources.
metasploit.org
A group that develops as well as discloses
software exploits on many of the security mailing lists.
penetration ngs
A community sponsored library.
