Platform
- VMWare Workstation
- The "vulnerable stuff:"
- Windows XP
- Internet Explorer 7/8
- Firefox
- Acrobat Reader
- Flash Player
- Cygwin
- Perl
- Python
- Hex Editor Neo
- HashCalc
- IZArc
- SysAnalyzer / iDEFENSE MAP
- GMER / catchme
- Multipot
- OSAM
- HijackThis
- Startup Control Panel
- HookExplorer
- Sysinternals Suite
- ProcL
- sniff_hit
- Wireshark (run on "Host OS" outside VM)
Binary Tools
- Mandiant Red Curtain
- OllyDbg 1.10
- Various OllyDbg plugins
- PEiD
- RDG Packer Detector
- pefile / packerid.py
- ImportREC
- SpiderMonkey (Didier Stevens mod)
- ieget.sh script
- crap2shellcode.pl
- Console2 Firefox plugin
- NoScript Firefox plugin
Web Sites as Tools
Thanks much Paul. I would be interested in seeing some ISSA activity around particular tools. Like a quick and dirty 'this is the most useful task you can do with this' as far as the most useful feature(s) each tool offers - not real deep but not too shallow. Jeff and Zach had talked about this sort of thing at Schmohz later on, it sounded interesting. Just a thought.
ReplyDelete