This WordPress plugin searches the files on your site for a few known strings sometimes used by hackers, and lists them with code fragments taken from the files.

SideJacking is about sniffing HTTP traffic and cloning whatever cookies are exchanged between the browser and the server. In this way, the attacker can clone your session IDs and eventualy they can hijack your account.

If you are looking for a way to silently run information gathering tools out of a U3 compatible USB thumb drive, look no further. The Hack5 USB Switchblade is a great tool to turn a harmless USB pen drive into a dangerous hacking tool.

Francois Larouche announced today the availability of a new version of Sql Power Injector , an excelent application created in .Net 1.1 that helps the penetration tester to find and exploit SQL injections on a web application.

Evolution is a program that can be used to determine the relationships and real world links between people, systems and internet resources. Passive information gathering and intelligence.

Security Hacks assembled a list of Top 15 free SQL Injection Scanners which include some of the most popular SQL injection tools such as : SQLibf, Absinthe, NGSS SQL Injector, etc.

great resource of bluetooth security hacking tools

Metasploit is pleased to announce the immediate, free availability of the Metasploit Framework version 3.

SANS released a paper on Web Applications Audit. It’s more of a guide to low hanging fruit website assessment, but still is a good resource . The article begins with setting up , adjusting and configuring the tool arsenal and then walks the reader trough implementation and conclusions.

BackTrack is the most Top rated linux live distribution focused on penetration testing. The long-awaited (~5 months) tool has reached it’s Version 2.0 final stage. There are a lot of changes since the last Version as mentioned on the Changelog.