We cannot guarantee our tools work for you. Use them at your own risk. We provide source code whenever possible.
IOS Surface Security Checker
A very light scanner that replaces some features of MobSF framework
CRL Revocation Checker where other scanners fail.
supports HTTP, SMTP at this moment, 2016-11
DLL Hijack Helper
A manual DLL Hijacking tool
Ready-to-run Mallory GUI Vmware edition. You can get the original Mallory Minimal version to save time in getting it from its author's sometimes-unstable torrent URL.
Pre-compiled ready-to-run Firewalk for BackTrack Distro. Fixed version for the famous Firewalk tool (http://packetstormsecurity.org/UNIX/audit/firewalk/.) that couldn't be compiled on modern nix boxes due to compilation errors.
Modified fixed source code included.
Platform: BackTrack 5+ Distro
Find your desired strings in Windows. It's similar to the *inux equivalent tool, strings. Using this tool, you can identify sensitive information disclosure in thickclient applications as stated in CWE-316.
Fuzzing > DLLHijackAuditKitx
By default, DLLHijackAuditKit scans all associated file extensions with all installed applications in default timer of 3 seconds. DLLHijackAuditor from SecurityXploded is great for targetting only one application.
However, according to our testing, it sometimes misses flaws. So, we tried to save time by adding timer support and regex support to our favorite HDM's DLLHijackAuditKit. Note that dll files in DLLHijackAuditKit will be detected as virus/trojan as they are generated using Metasploit. We protected it with password - yehg.net
Platform: Windows 2K3/XP
Security > DropItsRights
DropItsRights is a wrapper implementation of DropMyRights program by Michael Howard
featured at MSDN. The DropMyRights program puts burden to us because
it supports only command line. So, I tweaked it as parameter support and shell extension tweak that allow you to right-click on desired executable or its shortcut that is to be executed with DropMyRights. The original DropMyRights was recompiled and insecure functions such as wcsncat were replaced with their secure versions. Source code included.
Platform: Windows 2K/2K3/XP
Language: MS Visual C++.Net, AutoIt