CIRT.net

When facing off against a WebDAV enabled server, there are two things to
find out quickly: can you upload files, and if so, can you execute code?

DAVTest attempts help answer those questions... as well as automatically uploading shells when possible.

Read more at the Sunera Security Blog.

Ever have to pentest a CMS and need to puzzle out what plugins and themes it has? Or ever see a cool site you know is running CMS-X but wonder what modules and themes they used? It can be tedious at best, or impossible at worst, to figure it out.

CMS Explorer was written just for that--to figure out what components (plugins and themes) CMS sites are using. The initial release works really well with Wordpress and Drupal, and has fledgling support for Mambo/Joomla! (fledgling because there is no central repo of components).

Lewis Francis has released a new version of MacNikto, which incorporates Nikto 2.1.1 and a few other fixes/updates. In case you're not familiar the program, it is a Mac OS X (universal binary) GUI for running Nikto without touching the command line:

I've had this little proof of concept tool sitting around for a while: it essentially acts as an ftp-like front end for storing files on a network aware printer.

The find_mp3_duplicates PERL script is designed to do one thing: find duplicate audio files, based on the audio content, from two distinct directory trees. It was made to help merge two somewhat-overlapping music collections.

It uses the MP3::Info module to extract the audio portion of the file, and then generates an md5 hash of the audio portion

See full description for more info.

Download
find_mp3_duplicates

Description
The find_mp3_duplicates PERL script is designed to do one thing: find duplicate audio files, based on the audio content, from two distinct directory trees. It was made to help merge two somewhat-overlapping music collections, but may be adapted for other useful purposes.