The Security Pub

Random Thoughts About Security

Category Archives: New Software

Nessus iPhone Application

Tenable has released a free iPhone application for its Nessus Vulnerability Scanner.  This iPhone application provides Nessus users the ability to:

  • Connect to a Nessus server
  • Launch scans
  • Create new scans
  • Review reports

All you will need is an iPhone or iPod Touch running iOS 4.0 or later.  You can download the Nessus iPhone application in the App Store, under the productivity category

ZBot Removal Tool

ZBot (also known as Zeus, ZeusBot or WSNPoem, Gorhax and Kneber) is a Trojan created to steal sensitive information from compromised computers.  Zbot focuses mainly on online backing information, that unsuspected users would enter in to access the financial organizations website, however it also monitoring system information to obtain additional authentication credentials.  Some of the newer variants are doing even more now.  They are gathering visited website history and other data the user enters in online, while at the same time it is taking screen shots.

To help with this BitDefender has created a ZBot Removal Tool which checks users’ computers, detects and eliminates most of the ZBot variants spotted in the wild.

Google Releases Skipfish Application Security Scanner

Picture by: Nerdboy550

Skipfish is an active web application security reconnaissance tool. It prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes. The resulting map is then annotated with the output from a number of active (but hopefully non-disruptive) security checks. The final report generated by the tool is meant to serve as a foundation for professional web application security assessments.

However, the Skipfish scanner is not meant to be a replacement for commercial scanners, it appears. Google says in the documentation that the scanner doesn’t meet many of the evaluation criteria set out by the Web Application Security Consortium for such scanners, and also “extensive database of known vulnerabilities for banner-type checks.”

Free Backup & Recovery Software by Paragon

I just came across this free backup & recovery tool offered by Paragon Software Group.  It looks like a decent tool to backup stand-alone Windows-based systems (32-bit) or (64-bit).  Some of the features are listed below, and if you want to download it and try it out, you can go to my Toolbox page and find it their.  Please leave comments on how the tool worked for you so that anyone else can see your success or failures with this tool.

Features include:

  • Cyclic Backup – complete infrastructure for establishing a self-acting data protection system, fully compliant with the set-and-forget backup policy. Whenever Windows fails, you can get it back on track in minutes.
  • Support for the latest Windows 7 (both 32- and 64-bit). Support for all existing backup techniques and of all the latest hardware as well as hard disk partitioning schemes.
  • Backup and restore not only single GPT volumes but entire disks, including the option of resize during the restore operation.
  • Live imaging for a Win2K+ system with two snapshot technologies onboard- Zero-install accomplishment of any operation with multi-platform bootable recovery media which you can build on a CD/DVD/Blu-ray disc or a thumb drive.
  • Fast restore on a granular level without the need to restore the whole image.