Security CheckList Sites & Benchmarks

iOS Benchmark (CiS) 

Google Android Benchmark (CiS)



Windows 7 (iaSe) 

Windows 2008 Benchmarks (iaSe) 



Ms. SQL 2005 Benchmark 


 Windows Server 2003 Security Guide (NSa)





Security tips for iPad and iPhones 


Linux CheckList (Sans) 

Best practices (NSa) 

Servicios de Windows 7

Site donde se muestran todos los servicios de Windows 7.

Link

DSi USB Write-Blocker

USB Write blocker is an application that will use the windows registry to write block USB devices.  It is a useful tool for those who wish to view the contents of USB drives without making changes to the files metadata or timestamps.  This is a critial feature in the fields of digital and computer forensics as well as electronic discovery (eDiscovery) where time stamps play a crucial role in the validity of evidence.

An added feature is the ability to see the application status in your task bar when you hover over its icon with your mouse (as seen in the screenshot below).

*NEW*: The DSi USB Write-Blocker Utility status is now shown in the OS system tray. This Allows you to see the current status of the DSi USB Write-Blocker tool with a quick glance.

Download

Windows Registry Recovery

Windows Registry Recovery permite trabajar con el registro de Windows 9x, NT, 2K, XP, 2K3, 2k8.

Algunos de sus Features:

• File Information
  In this explorer you can see basic file properties and checksums.
• Security Record Explorer
  Displays all security records used in registry. Usage counter, owner SID, group SID, list of affected keys and list of SACL and DACL is displayed for every record with flags and permissions enumerated. This explorer is available only for NT based system registry hives.
• SAM
  Displays Machine SID and part of SYSKEY. Enumerates local user and group accounts and some of their properties. This explorer is available only for NT based system registry SAM hive.
• Windows Instalation
  Displays Windows name, ID and key, install date and user registration info. Enumerates installed software with descriptions and install date and list of installed hotfixes wih description. This explorer is available only SOFTWARE registry hive (Product ID and key are extracted in SYSTEM hive too).
• Hardware
  Displays quick overview (CPU, Monitors, Video and Sound card and Network cards) and full device map of configured devices that worked on host machine. They are displayed in "like Device Manager" tree with some properties. This explorer is available for SYSTEM registry hive.
• User Data
  Displays user and machine name and tree based Start menu for selected USER hive. This explorer is available for USER registry hive.
• Startup Applications
  Enumerates applications that are registered to be run after startup. This explorer is available for SOFTWARE registry hive.
• Services and Drivers
  Enumerates all installed services and drivers with properties. This explorer is available only for NT based system registry SYSTEM hive.
• Network Configuration
  Displays all installed network clients, protocols and services. Enumerates all defined network connections with its TCP/IP configuration. This explorer is available only for NT based system registry SYSTEM hive.
• Windows Firewall Settings
  Displays settings (rules) for Windows Firewall. This explorer is available only for NT based system registry SYSTEM hive.
• Environment
  Displays all environment variables. This explorer is available only for NT based system registry SYSTEM hive.
• Shell Folders
  Displays shell folders (folders known to system). This explorer is available only for NT based system registry SYSTEM hive.
• Outlook Express
  Digs out all Outlook Express accounts and their settings. This explorer is available only for NT based system registry USER hive.
• Raw Data
  This explorer displays whole registry in known tree format. Contains powerful searching and data interpreter.

 Download: WRR.zip

SQLPing v3

SQLPing 3.0 es una simple herramienta cuya funcionalidad es escanear la red en busca de servidores SQL y a su vez detectar inconsistencias en sus configuraciones, lo que da una mano a la hora de securizar algunos puntos básicos. 

Descripción oficial:

SQLPing 3.0 performs both active and passive scans of your network in order to identify all of the SQL Server/MSDE installations in your enterprise. Due to the proliferation of personal firewalls, inconsistent network library configurations, and multiple-instance support, SQL Server installations are becoming increasingly difficult to discover, assess, and maintain. SQLPing 3.0 is designed to remedy this problem by combining all known means of SQL Server/MSDE discovery into a single tool which can be used to ferret-out servers you never knew existed on your network so you can properly secure them. .NET Framework v2.0 Required. (Note: Due to .NET policy restrictions on most computers, you'll need to execute the SQLPing 3.0.exe program from a local drive in order to get the full functionality). SQLPing 3.0 adds brute-force password capabilities and the ability to brute-force multiple instances.

Donwload: link

Regreso..

Después de una increíble luna de miel por el viejo continente vuelvo a retomar.
En unas semanas cuando me acomode con mi nuevo trabajo comenzaré a postear nuevamente...

BeEf (Browser Exploitation Framework)

BeEF es un framework de ataque para browsers, que hace que el Browser de un cliente se convierta en zombie para luego utilizarlo en otros ataques, como por ejemplo escanear puertos, hacer keylogging del usuario, robar el contenido clipboard, etc. Y todo desde el browser.

Descarga Oficial:
http://code.google.com/p/beef/

.