XPY


xpy is a small tool which disables the default threats of a windows xp installation. Besides the classic antispy features, xpy closes recent security holes like the remote procure call (rpc) service and the distributed component object model (dcom).

Here are some key features of "xpy":

- disable windows "calling home"
- disable questionable services
- unarm internet explorer
- unarm media player
- remove windows messenger
- improve security
- improve performance

Though xpy is smaller than 70 kilobytes, it can close serious threats on long distance, where large service-packs can only protect you until a new security hole has been found.

Download XPY

Determine Processor Security Features

SecurAble is a utility that allows you to q[FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=-1]uickly determine, display, and explore the availability and consequences of the state-of-the-art security-related features available in the system's processor. It is put out by Steve Gibson at Gibson Research Corp, the creators of Shields Up!

GRC|SecurAble: Determine Processor Security Features|
[/SIZE][/FONT]

Unplug & Pray

[FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=-1][FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=-1]"eEye has discovered three vulnerabilities within Microsoft's UPnP implementation: a remotely exploitable buffer overflow that allows an attacker gain SYSTEM level access to any default installation of Windows XP, a Denial of Service (DoS) attack, and a Distributed Denial of Service (DDoS) attack. eEye would like to stress the extreme seriousness of this vulnerability. Network administrators are urged to immediately install the patch released by Microsoft at http://www.microsoft.com/technet/security/bulletin/MS01-059.asp"

"The most serious of the three Windows XP vulnerabilities is the remotely exploitable buffer overflow. It is possible for an attacker to write custom exploit code that will allow them to execute commands with SYSTEM level access, the highest level of access within Windows XP."

"The other two vulnerabilities are types of denial of service attacks. The first is a fairly straightforward denial of service attack, which allows an attacker to remotely crash any Windows XP system. The crash will require Windows XP users to physically power down their machines and start them up again before the system will function. The second denial of service attack is a distributed denial of service attack. This vulnerability allows attackers to remotely command many Windows XP systems at once in an effort to make them flood/attack a single host."[/SIZE][/FONT] [/SIZE][/FONT] [FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=-1]
[/SIZE][/FONT]
[FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=-1]Translating eEye's and Microsoft's statements into consequences, this means that without the security update patch, and with the Universal Plug and Play (UPnP) system in its default "enabled" state, any of the many millions of Internet-connected UPnP-equipped Windows systems could be remotely commandeered and forced to download and run any malicious code of a hacker's design. This includes using the machine to launch potent Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks. [/SIZE][/FONT]
[FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=-1]This means that extremely damaging CodeRed and Nimda-style worms can now be written for millions of Windows machines. Whereas the Microsoft IIS server worms of 2001 found and infested 'only' several hundred thousand IIS servers, a Windows "Universal Plug and Play" worm would have more than ten million XP systems, in addition to many more Windows 98/ME systems, upon which to prey today. [/SIZE][/FONT]

GRC|UnPlug n' Pray - Disable the Dangerous UPnP Internet Server

ShootTheMessenger

[FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=-1]This utility closes up a vulnerability inherent in Windows that allows for a hidden internet server to be run by default on all Windows machines which run Windows Messenger.

This vulnerability was fixed with XP SP2

GRC|Shoot The Messenger
[/SIZE][/FONT]

DCOMbobulator

[FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=-1]Ever since Windows 98, a powerful, but unnecessary and rarely used facility known as DCOM (Distributed Component Object Model) has been an integral part of Windows. The DCOMbobulator checks the effectiveness of Microsoft's security patches and allows the user to increase the security of their system by simply turning DCOM off.

GRC|DCOMbobulator
[/SIZE][/FONT]

A password generator

Gibson Research Corp has put out another tool: A password generator.

More information here:
https://www.grc.com/passwords.htm

Every time the page is refreshed the utility generates high quality very strong passwords.



Also another good link.....http://portableapps.com/apps/utilities/keepass_portable

BugOff

All,

The developer of HijackThis! created a tool called BugOff which disables three exploits that are commonly used by browser hijackers if you use Internet Explorer

Security Tools

The Electronic Frontier Foundation has released a new Firefox addon called HTTPS Everywhere that forces Firefox to encrypt your communications via SSL (https://) when communicating with certain sites. This will allow you to transmit data to any of these sites securely and privately.

HTTPS Everwhere was originally created to communicate with Google's new encrypted search option, but was further enhanced to force Firefox to use other sites https:// connection. These sites are:
Google Search
Wikipedia
Twitter and Identi.ca
Facebook
EFF and Tor
Ixquick, DuckDuckGo, Scroogle and other small search engines


Encrypt the Web with the HTTPS Everywhere Firefox Extension | Electronic Frontier Foundation

Thanks Crush..........

Re: Security Tools

Just a word of warning: when used with Facebook it disables Facebook Chat so, if you use the chat feature, you must disable HttpsAnywhere on facebook via the settings.

You can also extend its functionality beyond the sites offered in the program by writing your own rule sets. See how here

Virustotal

Virustotal is a service that analyzes suspicious files and URLs and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines.





VirusTotal - Free Online Virus, Malware and URL Scanner

Jotti malware scan

When VT is down or busy Jotti also is a good one to use

Jotti's malware scan


EDIT: reference post #5