OWASP HTTP Post Tool Released

BackTrack Final: Metasploit Tutorial: "How tough is it to really compromise a system? As an ethical hacking instructor, that is a question that I get asked quite frequently. My us..."

SecTor 2010 - Ryan Linn - Metasploit Tips and Tricks from Vivek Ramachandran on Vimeo.

 GGNS3 is a graphical network simulator that allows simulation of complex networks. It’s an excellent complementary tool to real labs for network engineers, administrators and people wanting to pass certifications such as CCNA, CCNP, CCIP, CCIE, JNCIA, JNCIS, JNCIE. It can also be used to experiment features of Cisco IOS, Juniper JunOS or to check configurations that need to be deployed later on real routers.


To allow complete simulations, GNS3 is strongly linked with:

• Dynamips, the core program that allows Cisco IOS emulation.
• Dynagen, a text-based front-end for Dynamips.
• Qemu, a generic and open source machine emulator and virtualizer.

Features Overview

• Design of high quality and complex network topologies.
• Emulation of many Cisco IOS router platforms, IPS, PIX and ASA firewalls, JunOS.
• Simulation of simple Ethernet, ATM and Frame Relay switches.
• Connection of the simulated network to the real world!
• Packet capture using Wireshark.

This project is an open source, free program that may be used on multiple operating systems, including Windows, Linux, and MacOS X.
You can download GNS3 v0.7.2 here:
Windows All-in-one – GNS3-0.7.2-win32-all-in-one.exe
Windows Binary – GNS3-0.7.2-bin-win32.zip
Mac DMG Package – GNS3-0.7.2-intel-x86_64.dmg
Linux/Source – GNS3-0.7.2-src.tar.gz
Or read more here.

XSSer is an open source penetration testing tool that automates the process of detecting and exploiting XSS injections against different applications.


It contains several options to try to bypass certain filters, and various special techniques of code injection.

New Features

• Added “final remote injections” option
• Cross Flash Attack!
• Cross Frame Scripting
• Data Control Protocol Injections
• Base64 (rfc2397) PoC
• OnMouseMove PoC
• Browser launcher
• New options menu
• Pre-check system
• Crawler spidering clones
• More advanced statistics system
• “Mana” ouput results

You can download XSSer v1.0 here:
xsser-1.0.tar.gz

Or read more here.

This article is a good demonstration or we can say POC for Cisco Router how to compromise devices and get into network.

Today only lazy or out from the IT sphere person never heard about Cisco. Company specialized in developing network devices and solving all related problems. IOS (Internetwork Operation System) is installed on Cisco networking equipment and allows flexible system configuration. There is different method for attacking Cisco devices but what we will be looking at is attacking Cisco devices using TCL.