Company Profile | Services | Vulnerability management | Training | Research and Technology | Contact Us
Research | Books | Conferences | White Papers | Tools | Miscellaneous | Register


Tools

Here you'll find tools developed in-house by SensePost.

BiDiBLAH

BiDiBLAH is an assessment/attack console that is implements almost all of SensePost's external assessment methodologies. The tool automates 80% of the tasks.

This covers footprinting, portscanning, banner scanning, targeting, vulnerability discovery, and vulnerability exploitation. The tool also includes report generation in MS Office.

BiDiBLAH home page

CrowBar

CrowBar is a generic web application brute forcer. It has the ability to perform a brute force on any part of the HTTP request. Using fuzzy logic it compares the content of each response and gives the analyst the oppurtunity to set trigger conditions.

CrowBar home page

E-Or

E-Or is SensePost's long awaited web application scanner. E-Or gives an analyst the ability to decide exactly which actions or parameters to test, and uses a normal browser to extract both graphical and text results.

E-Or home page

Wikto

Wikto is Nikto for Windows - but with a couple of fancy extra features including Fuzzy logic error code checking, a back-end miner, Google assisted directory mining and real time HTTP request/response monitoring. Wikto is coded in C# and requires the .NET framework.

Wikto home page

Casper

Early in 2002 SensePost revealed GATSLAG, a win32 Trojan that made use of (invisible) Internet Explorer sessions to tunnel information in and out of target networks. An amped-up version called SETIRI was demonstrated at BlackHat Vegas 2002. While sizable snippets of Setiri code were given to anti-virus researchers in order to possibly detect Setiri derivatives, none of the personal firewall vendors appear to have clamped down on the actual problem. This (short!) paper and accompanying tool demonstrates that a simple and effective solution would be easy to implement in personal firewalls, anti-virus scanners or even the OS itself.

Whilst Casper is a working utility that helps defend against tools like Setiri, its primary purpose is to act as Proof-of-Concept for the solution we're suggesting.

Download the paper (644 kb)
Download the code (614 kb)
8ca72bd1cb69d791d6b9e639529fceb3



Top of Page

Quick Links

« Wikto
« BiDiBLAH
« E-Or

« Research
« Books
« Conferences
« White Papers
« Tools
« Miscellaneous
    Copyright © 2005 SensePost | Privacy Statement | Conditions of Use