SuperSocket 1.4 SP2 Release

SuperSocket is a light weight, cross platform and extensible socket application framework. You can use it to build a server side socket application (like FTP server, SMTP/POP3/IMAP4 server, SIP server, SNMP server, etc) easily without thinking about how to use socket, how to maintain the socket connections and how socket works(synchronize/asynchronize).

It is a pure C# project which is designed to be extended, so it is easy to be integrated to your existing system. If your systems (like forum/CRM/MIS/HRM/ERP) are developed in .NET language, you must be able to use SuperSocket to build your socket application as a part of your current system perfectly.

I know there are two famous NIO open source frameworks named “MINA” and “Netty” in Java World which are used widely by developers. If you want to look for a .NET portion of MINA or Netty, I suggest you trySuperSocket, although SuperSocket is not strong like MINA and Netty but it is very simple and you can use it easily.

Features:

  • Very easy to use. You can create a robust socket server only by several classes
  • Support Sync and Async communication modes. You can change your socket server running mode by only changing configuration wihtout any code changes
  • Support custom protocol, no matter your protocol is a command line protocol or a binary one. Another open source project SuperWebSocket is built upon SuperSocket and take advantage of this custom protocol feature of it.
  • Support SSL/TLS encryption automatically
  • Support multiple socket server instances. You can define many socket servers on different ports in configuration, SuperSocket can run those servers in the same application/service
  • SuperSocket can run as console application and windows service. It provide a bat file to installSuperSocket as a windows service.
  • Flexible logging strategy which can log most of socket activities
  • Also support UDP socket
  • Support IPv6
  • Support Windows Azure
  • Support running in Unix system (by Mono 2.10 or above version)
  • Built-in socket policy server for Flash and Silverlight clients which you can use directly

Download in here

Advertisements

Security Analysis of a PUF based RFID Authentication Protocol

Abstract: In this paper we consider the security of a PUF based RFID Authentication protocol which has been recently proposed by Bassil et al. The designers have claimed that their protocol offers immunity against a broad range of attacks while it provides excellent performance. However, we prove in contrary to its designers claim that this protocol does not provide any security. We present an efficient secret disclosure attack which retrieves all secret parameters of the protocol. Given those secret parameters, it would be trivial to apply any other attack in the context on the protocol. However, to highlight other weaknesses of the protocol we present extra reader traceability, impersonation and desynchronization attacks that do not require disclosing the secret parameters necessarily. Success probability of all mentioned attacks is almost “1” while the complexity is at most two runs of protocol.

Category : cryptographic protocols / RFID, Authentication, PUF, Traceability Attack, Reader Impersonation Attack, Tag impersonation Attack, Desynchronization Attack

Download this Papers

Lynis Auditing Tool 1.3.0

Description

Security and system auditing tool

Project information

Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.

This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems. It can be run without prior installation, so inclusion on read only storage is no problem (USB stick, cd/dvd).

Lynis assists auditors in performing Basel II, GLBA, HIPAA, PCI DSS and SOX (Sarbanes-Oxley) compliance audits.

Intended audience:
Security specialists, penetration testers, system auditors, system/network managers.

Examples of audit tests:
– Available authentication methods
– Expired SSL certificates
– Outdated software
– User accounts without password
– Incorrect file permissions
– Firewall auditing

Current state:
Stable releases are available, development is active.


Download In herelynis-1.3.0.tar.gz | read more in here

Dafuscator

Dafuscator is a database data obfuscation system that allows you to tactically obfuscate or delete data out of your production database while leaving most of the data intact. Real data behaves differently than fake generated data, so when testing, performing QA or sending a database off to a 3rd party for testing you can maintain Sarbanes Oxley and HIPPA compliance by changing PIA (Personally Identifiable Information) while still keeping most data intact for testing or analysis.

Provided generators :

  • Account Number An account number that could be used to replace an external or internal account number (Example: G5B-2M1QU1F)
  • Address Can generate 3 address lines (Street, Suite and C/O) (Example: 3127 Lafayette Walk)
  • Character Random single character generator (Example: Z)
  • City Name Real city names from the United States (Example: Truesdale)
  • Company Name Generates a real looking company name with optional suffix (Inc, LLC, PLC, etc) (Example: Microcada L.L.C.)
  • Country Real country names (Example: Honduras)
  • Date Generate a random date within a range (Example: 10/5/1986)
  • Email Address Real looking email address (Example: pBlevins@Ventureloft.net)
  • First Name String (Example: Cori)
  • Last Name String (Example: Pressman)
  • Login Unique, realistic login name generator (Example: AObando187)
  • Number Random Number Generator (Example: 19875)
  • Phone Number Phone number generator with optional area code (Example: 597-458-1974)
  • Social Security Number Generates an invalid, but real looking SSN (Example: 937-58-0360)
  • State Real state names (Example: Nevada)
  • String Random Strings (Character, Numbers and Special Characters) (Example: eFRmdMGj)
  • Url Top Level Domain Url generator, human readable and real looking (Example: http://www.Graynet.org)
  • Zip Code (Postal Code) Zip codes and optional 4 digit suffix (Example: 23341-1377)
  • Clear (Eraser) Replaces data with empty strings or NULL (Example: “”/NULL)
  • Full Name Full real name with optional middle initial or full middle name (Example: Maira Nidia Lamothe)
  • Stock Symbol Real stock symbol generator from multiple exchanges (Equities, Indexes, ETF’s, Funds) (Example: ASCRX)
  • Stock Name Equity, Index, ETF and Fund names from multiple exchanges (Example: Lodgian Inc.)
  • Hex Random Hex Generator (Example: 0xF31A59D)
  • Guid Random Guid Generator (Example: {21EC2020-3AEA-1069-A2DD-08002B30309D})
  • Token Generates a string given a user supplied pattern (Example: {random})

Licensed under the Microsoft Public License (MS-PL)

You will need the .Net Framework 4 and Database to use Dafuscator.

Download in here | or read more in here

Shadow Scanner – Forensic Shadow Volume Analyzer

Shadow Scanner : This program will compare shadow volumes on a Windows Vista or Windows 7 operating system against the active files on the system. Examiners can quickly identify files which exist in the Shadow Volumes that are no longer present on the active file system. It also locates previous versions of files found on the active file system.

 This truly unique product allows examiners to preview changes made to files over time by comparing the historical shadow volumes (“backups”) of the files 1) against each other, and/or 2) against the “live” version of the file.

 DOWNLOAD SHADOW SCANNER 2.0 HERE

Shadow Scanner requires Java 1.7
Download Here: 64 bit Java 1.7   |   32 bit Java 1.7

Or read more in here

Terminals – 2 Beta 4 Release

Terminals is a secure, multi tab terminal services/remote desktop client. It uses Terminal Services ActiveX Client (mstscax.dll). The project started from the need of controlling multiple connections simultaneously. It is a complete replacement for the mstsc.exe (Terminal Services) client.

Supported server protocols:

  • Windows remote desktop (RDP)
  • VNC
  • VMRC
  • SSH
  • Telnet
  • RAS
  • ICA Citrix
  • HTTP and HTTPs based viewers

Features

User Interface :

  • Multi tab interface
  • Open terminal in full screen, switch between full screen mode
  • Resizable terminal window
  • Attached and dettached Windows
  • Connections history
  • Customizable toolbars
  • Open custom application from Terminals window
  • Toolbar for computer control panel applets

Connection Options :

  • Select one of available protocols and custom port
  • Terminal fonts and colors (ssh)
  • Automatically connect with stored credentials
  • Custom connection icon
  • Screen size and screen mode (RDP)
  • Before connection scripts
  • Organize connections by Tags

Networking Tools :

  • Ping
  • Tracert
  • DNS tools
  • Wake on lan
  • Port scanner
  • Shares
  • Services
  • Who is?
  • Interfaces

Microsoft Shared Source Community License (MS-CL)

Download In here : Zipper size 4,4 mb

BlocksKit 1.0.0 Released

Overview

Blocks in C and Objective-C are downright magical. They make coding easier and potentially quicker, not to mention faster on the front end with multithreading and Grand Central Dispatch. BlocksKit hopes to facilitate this kind of programming by removing some of the annoying – and, in some cases, impeding – limits on coding with blocks.

BlocksKit is a framework andr static library for iOS 4.0+ and Mac OS X 10.6+.

what in the box

  • Performing blocks on an NSObject, with or without delay.
  • Key-value observation (<NSKeyValueObserving>) with block handlers.
  • Associated objects in an Obj-C API. (Not directly block-related.)
  • NSArray, NSSet, NSDictionary, and NSIndexSet filtering and enumeration.
  • Filtering for mutable collections.
  • NSInvocation creation using a block.
  • NSTimer block execution.
  • Both delegation and block callbacks on NSURLConnection.
  • Delegate callback for NSCache.

UIKit Extensions

  • UIAlertView, UIActionSheet with block callbacks and convenience methods.
  • Block initializers for UIControl and UIBarButtonItem.
  • Block initializers for UIGestureRecognizer.
  • On-touch utilities for UIView.
  • Block callbacks for MFMailComposeViewController and MFMessageComposeViewController.
  • Delegate alternative for UIWebView.

Download : For iOSX and iOS  Or read more in here