| ..: challenges site :.. |
|---|
| home |
| articles |
| hack videos |
| comics |
| software |
| links |
| site bugs |
| register |
| login |
| faq |
| ..: members :.. |
|---|
| challenge authors |
| ranking |
| thc hall |
| banned users |
| ..: main site :.. |
|---|
| index |
| site forum |
| agn project |
| watch video |
| image manipulation |
| ..: vote for us :.. |
|---|
 |
- decompilers
- ide
- scanners
- sniffers
- password recovery
..: firefox plugins :.. | |
|---|---|
| WebDeveloper adds a menu and a toolbar with various web developer tools | https://addons.mozilla.org/en- US/firefox/addon/60 |
| FireUploader, as the name says, this firefox extension allows you to upload/download files from any website using a friendly interface. Upload files/photos/videos to Flickr, Picasa, Youtube, Box.net(1GB of free space), Facebook, Webshots and OmniDrive in this version. Next versions would support other websites like Google Videos etc. You can add multiple files to the queue at a time. Extension will take care of uploading them for you. | https://addons.mozilla.org/en- US/firefox/addon/4724 |
| NoScript provides extra protection to your Firefox. It allows JavaScript, Java and other executable content to run only from trusted domains of your choice, e.g. your home-banking web site, and guards the "trust boundaries" against cross-site scripting attacks (XSS). Such a preemptive approach prevents exploitation of security vulnerabilities (known and even unknown!) with no loss of functionality. | https://addons.mozilla.org/en- US/firefox/addon/722 |
| The Web Analytics Solution Profiler is aimed at Web Analytics implementation specialists, web analysts and savvy web surfers who wants to understand how their behavior is being analyzed by the sites they visit | https://addons.mozilla.org/en- US/firefox/addon/4001 |
| FingerAuth Password Manager is a real fingerprint login manager that allows you to log in to websites with just the touch of your finger. | https://addons.mozilla.org/en- US/firefox/addon/5331 |
| Firebug integrates with Firefox to put a wealth of development tools at your fingertips while you browse. You can edit, debug, and monitor CSS, HTML, and JavaScript live in any web page. | https://addons.mozilla.org/en- US/firefox/addon/1843 |
..: decompilers :.. | |
|---|---|
| The Interactive Disassembler, more commonly known as simply IDA, is a commercial disassembler widely used for reverse engineering. It supports a variety of executable formats for different processors and operating systems. It also can be used as a debugger for Windows PE, Mac OS X Mach-O, and Linux ELF executables. | http://www.datarescue.com |
| W32DASM disassembles Both 16 and 32 Bit Windows Programs, Displays for Exports, Imports, Menu, Dialog, and Text References, Integrated Debugger for 32 Bit Programs (16 Bit Debug Not Available), Includes Text Search and Navigation Functions | http://www.softpedia.com/get/P rogramming/Debuggers-Decompile rs-Dissasemblers/WDASM.shtml |
| Jad is a 100% pure C++ program and it generally works several times faster than decompilers written in Java. Jad doesn't use the Java runtime for its functioning, therefore no special setup is required (like changes to the CLASSPATH variable). | http://www.kpdus.com/jad.html# download |
| Sothink SWF Decompiler is a professional tool to convert SWF to FLA fully and extract elements from SWF into variable formats. Compatible with all SWF versions and converted FLA is from version 6.0 to 8.0. You can get the fully FLA file including linkage, components, *.as, etc. Also you can choose to extract ActionScripts as txt or bin, sounds as mp3 or wav, images as jpg or bmp or png, videos as flv, shapes as gls, frames/fonts/texts/buttons/sprites as swf to your local computer after an SWF is decompiled. Both SWF and EXE (Flash project) files are supported. | http://www.sothink.com/product /flashdecompiler/index.htm |
..: ide :.. | |
|---|---|
| Eclipse is well known for its Java IDE. However, there are Eclipse base language IDEs for most of the popular languages. Some are popular Eclipse open source project, such as CDT, and others are popular open source projects and commercial solutions. | http://www.eclipse.org/home/ca tegories/languages.php |
| Zend Studio is the leading PHP Integrated Development Environment (IDE) designed for professional developers, which includes all the development components necessary for the full PHP application lifecycle. | http://www.zend.com/en/downloa ds/index |
| Assembly Programming IDE is a full IDE for x86 Assembly Language Programming, featuring : * Project Management of files/libraries * Code Browser * Syntax Highlighting * TASM/TASM32/MASM support * Visual Studio style interface * Designed for Windows XP/2K/NT | http://www.programmersheaven.c om/download/23476/download.asp x |
| Built for both designers and developers, Dreamweaver offers the choice of working in an intuitive visual layout interface or a streamlined coding environment. Intelligent integration with Adobe Photoshop® CS3, Adobe Illustrator® CS3, Adobe Fireworks® CS3, Adobe Flash® CS3 Professional, and Adobe Contribute® CS3 software ensures efficient workflow across your favorite tools. | http://www.adobe.com/products/ dreamweaver/ |
..: scanners :.. | |
|---|---|
| Nmap (Network Mapper) is a free and open source (license) utility for network exploration or security auditing. | http://insecure.org/nmap/ |
| Nessus vulnerability scanner, is the world-leader in active scanners, featuring high speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis of your security posture. | http://www.nessus.org/nessus/ |
| GFI LANguard Network Security Scanner is leading network security scanning tool on the market. It also provides full patch management ensuring all the latest Microsoft patches and updates are deployed throughout your network. | http://www.gfi.com/ |
| SAINT uncovers areas of weakness and recommends fixes. | http://www.saintcorporation.co m |
..: sniffers :.. | |
|---|---|
| Wireshark (better know as Ethereal) has several powerful features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session. It also supports hundreds of protocols and media types. | http://www.wireshark.org/ |
| Cain and Abel can recover passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations etc. | http://www.oxid.it/cain.html |
| Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system. Kismet will work with any wireless card which supports raw monitoring (rfmon) mode, and can sniff 802.11b, 802.11a, and 802.11g traffic. | http://www.kismetwireless.net/ |
| NetStumbler is the best known Windows tool for finding open wireless access points. | http://www.stumbler.net/ |
| ngrep ngrep strives to provide most of GNU grep's common features, applying them to the network layer. ngrep is a pcap-aware tool that will allow you to specify extended regular or hexadecimal expressions to match against data payloads of packets. It currently recognizes TCP, UDP, ICMP, IGMP and Raw protocols across Ethernet, PPP, SLIP, FDDI, Token Ring, 802.11 and null interfaces, and understands bpf filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop. | http://www.packetfactory.net/p rojects/ngrep/ |
| TCPDump is a classic sniffer for network monitoring and data acquisition | http://www.tcpdump.org/ |
..: password recovery :.. | |
|---|---|
| RainbowCrack is a tool for hash cracking that makes use of a large-scale time-memory trade-off. A traditional brute force cracker tries all possible plaintexts one by one, which can be time consuming for complex passwords. RainbowCrack uses a time-memory trade-off to do all the cracking-time computation in advance and store the results in so-called rainbow tables. | http://www.antsight.com/zsl/ra inbowcrack/ |
| Cain and Abel can recover passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols. | http://www.oxid.it/cain.html |
| John the Ripper is a fast and popular password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), DOS, Win32, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types which are most commonly found on various Unix flavors, as well as Kerberos AFS and Windows NT/2000/XP LM hashes. | http://www.openwall.com/john/ |
| L0phtcrack attempts to crack Windows passwords from hashes which it can obtain (given proper access) from stand-alone Windows NT/2000 workstations, networked servers, primary domain controllers, or Active Directory. | http://sectools.org/tools2.htm l |
| Brutus is a windows-only cracker that bangs against network services of remote systems trying to guess passwords by using a dictionary and permutations thereof. It supports HTTP, POP3, FTP, SMB, TELNET, IMAP, NTP, and more. | http://www.hoobie.net/brutus/ |