- It's the applications, stupid
- Will a whitelist save personal computing?
- Thousands of Web sites under attack
- To solve the unsolvable problem
- Re-thinking the security of virtual machines
- Security Development Lifecycle trumps code complexity
- Is your Web site FIPS compliant?
- Computer security: Why have least privilege?
- Strategic security: Get a handle on authentication
- Control user installs of software
March 22, 2006 | Comments: (0)
Exploit Sites
Here's a list of sites that you can download live exploit code from:
FRSIRT.com http://www.frsirt.com used to be one of my favorite web sites to download exploits from. Now, they've gone commercial to get ahold of their exploits. Luckily, there are dozens of sites you can download exploits from to test and harden your environment, including:
Metasploithttp://www.metasploit.com
Milw0rm http://milw0rm.com
Security.net http://securitydot.net/exploits.php
Unofficial FRSIRT cached mirrored site (containing exploits published before going commercial) http://www.elsenot.com/frsirt-google.html
Securiteam http://www.securiteam.com/exploits/
PacketStormSecurity http://www.packetstormsecurity.nl/
Send me your favorites and I'll post here.
Posted by Roger Grimes on March 22, 2006 05:29 PM
RATE THIS ARTICLE:
-
- COMMENTS
