Historythief is a modified version of JavaScript History Thief. It has been modified to support both Firefox and Internet Explorer, as well as sending any matched history URLs to a pre-defined attacker site.

Prerequisites: Web Server, such as IIS or Apache
Downloads: Historythief

Fuzzbox is a multi-codec media fuzzer.

Prerequisites: Python, py-vorbis 1.4, and mutagen 1.11
Downloads:
fuzzbox.tar.gz

This is a collection of scripts that can be used to generate fuzzed files, fuzzed file systems, and file systems containing fuzzed files. These can be used to test the robustness of forensics tools and examination systems.

Prerequisites: Linux/Python
Downloads:iSEC Forensics Fuzzing Tools

SAML Pummel is a BeanShell plug-in for WebScarab. It automates eight different injection attacks to assist in auditing the implementation of SAML 2.0 single sign-on systems.

• C14N Entity Expansion
• C14N Transforms
• Remote DTD
• Remote KeyInfo RetrievalMethod
• Remote KeyInfo WSSE Security Token Reference
• SignedInfo Remote Reference
• XSLT Transform URL Retrieval (Xalan)
• XSLT Transform Thread Suspension (Xalan)

Prerequisites: Java Runtime Environment 1.5 or greater, WebScarab (modified self-contained jar included)
Downloads: SamlPummel

Jailbreak is a tool for exporting certificates marked as non-exportable from the Windows certificate store. This can help when you need to extract certificates for backup or testing. You must have full access to the private key on the filesystem in order for jailbreak to work.

Prerequisites: Win32
Downloads:
jailbreak_3.0a.zip

ProxMon is an extensible Python based framework that reduces testing effort, improves consistency and reduces errors. Its use requires limited additional effort as it processes the proxy logs that you’re already generating and reports discovered issues. In addition to penetration testing, ProxMon is useful in QA, developer testing and regression testing scenarios.

Key features:

• automatic value tracing of set cookies, sent cookies, query strings and post parameters across sites
• proxy agnostic
• included library of vulnerability checks
• active testing mode
• cross platform
• open source license
• easy to program extensible python framework

Prerequisites: Python
proxmon-1.0.18.tar.gz
proxmon-1.0.18.exe

The CyberVillainsCA is a small Java library for on-the-fly generation, duplication and substitution of X.509 certificates. It is intended for use in building or extending security testing tools, for example, WebScarab (example included).

• Generates a Certification Authority certificate for importation as a Trusted Root
• Automatically generates standard SSL server certificates for a given CNAME
• Simple API to duplicate and re-sign any certificate, preserving all extensions
• Automatically manages persistence and the mapping between original and duplicated certificates
• Also can manage substitution of ‘naked’ public keys or a mixture of keys and certificates (as may be seen in WS-Security)

Prerequisites: Java Runtime Environment 1.5 or greater, Legion of the Bouncy Castle Java Cryptography Provider (included)

Download:
CyberVillainsCA.zip

These tools are useful for testing any program which processes binary file inputs such as archivers and image file viewers.

FileP is a python-based file fuzzer. It generates mutated files from a list of source files and feeds them to an external program in batches.
Prerequisites: Python 2.4

FileH is a haskell-based file fuzzer. It generates mutated files from a list of source files and feeds them to an external program in batches.
Prerequisites: GHC 6.4.2

Downloads:
filep.zip
fileh.zip

This is a collection of tools used to attack applications that use Windows Interprocess Communication mechanisms. This package includes tools to intercept and fuzz named pipes, as well as a shared memory section fuzzer.

Prerequisites: Windows, Python
iSEC_Public_IPC_Fuzzing_Tools.zip

WSMap is a Python-based tool that helps penetration testers find web service endpoints and discovery files.

• Parses WebScarab logs to find testing targets
• Tests URLs and implies URLs found in log
• Tests for WSDL and DISCO web service discovery formats

Prerequisites: WebScarab, Python 2.4, pyCurl

Download:
WSMap.py.txt

WSBang is a Python-based tool used to perform automated security testing of SOAP based web services.

• Takes URL of WSDL as input
• Fuzzes all methods and parameters in the service
• Identifies all methods and parameters, including complex parameters
• Fuzzes parameters based on type specified in WSDL
• Reports SOAP responses and faults

Prerequisites: Python 2.4, SOAPpy v11.6 , pyXML, fpconst

Downloads:
WSBang.zip
WSBang.tar.gz

SecureCookies is a tool to evaluate whether a given URL is utilizing the security options in the cookie.

Prerequisites: Win32

Download:
SecureCookies.zip

Event Log Zap (Elzap) is a tool that deletes individual events in the Windows Event Log. It can list records of the three default logs, including the Security, System, and Application logs, and then remove records without any interruption to the system.

Prerequisites: Win32

Info:
Watch the Demo (AVI)
Technical Details (PDF)

Downloads:
Elzap.zip