Check the following Security Projects
BootStomp: An Android boot-loader Bug Finder
To run BootStomp’s analyses, please read the following instructions. Note that BootStomp works with boot-loaders compiled for ARM architectures (32 and 64 bits both) and that results might slightly vary depending on angr and Z3’s versions. This is because of the time angr takes to analyze basic blocks and to Z3’s expression concretization results.
Spectre And Meltdown Vulnerability Checker For Linux
Meltdown and Spectre exploit critical vulnerabilities in modern processors . These hardware vulnerabilities allow programs to steal data which is currently processed on the computer.
Spectre Vulnerability:
Spectre is a vulnerability that affects modern microprocessors that perform branch prediction. On most processors, the speculative execution resulting from a branch misprediction may leave observable side effects that may reveal private data to attackers.
Meltdown Vulnerability:
Meltdown is a hardware vulnerability affecting Intel x86 microprocessors and some ARM-based microprocessors. It allows a rogue process to read all memory, even when it is not authorized to do so.
Meltdown affects a wide range of systems. At the time of disclosure, this included all devices running any but the most recent and patched versions of iOS, Linux, macOS, or Windows. Accordingly, many servers and cloud services were impacted, as well as a potential majority of smart devices and embedded devices using ARM based processors (mobile devices, smart TVs and others), including a wide range of networking equipment.
Find Spectre And Meltdown Vulnerability Checker For Linux
- A simple shell script to tell if your Linux installation is vulnerable against the 3 “speculative execution” CVE’s that were made public early 2018.
- Without options, it’ll inspect your currently running kernel. You can also specify a kernel image on the command line, if you’d like to inspect a kernel you’re not running.
- The script will do its best to detect mitigation’s, including back-ported non-vanilla patches, regardless of the advertised kernel version number.
Parrot Security OS 3.10 Version Released
Debian based Parrot OS developer released new version updating Ethical Hacking and GNU/Linux distribution.
Parrot OS using for professional tools for security testing, software development and privacy defense, all in one place. Its available as Full and Home Edition for both 32 bit and 64 bit Computers.
It includes a full portable laboratory for security and digital forensics experts, but it also includes all you need to develop your own software or protect your privacy while surfing the net.
Read more
BlackArch Linux
BlackArch Linux is an Arch Linux-based penetration testing distribution for penetration testers and security researchers. The repository contains 1910 tools. You can install tools individually or in groups. BlackArch Linux is compatible with existing Arch installs.
From 30 November 2017,the BlackArch Linux operating system will be support only for 64Bit Operating System. You need to upgrade though a reinstallation to 64-Bit OS, in case if you are running 32-bit Machine.
Hack.me
It is a FREE, community based project powered by eLearnSecurity. The community can build, host and share vulnerable web application code for educational and research purposes.
The platform is available without any restriction to any party interested in Web Application Security: students, universities, researchers, penetration testers and web developers. Every time you run a new Hackme the site will initiate a new sandbox for you. You will get isolated access to it so that you will always know that the application is safe for you to use. No other students can add malware or exploits in your sandbox.
Features:
- Practice webapp security
- Isolated environment
- Online: nothing to download!
- Upload your own code
- Online IDE for PHP & MySQL
- Your code hosted in the cloud
- FREE!! FREE!!!
Try www.hack.me