-
Tools for auditing SIP based VoIP systems. Has the ability to identify SIP phones, PBXs and other entities on the network. It can also find out which extensions are active on a PBX and bruteforce the password for these extensions.
-
Generic payloads for common web applications such as Wordpress and Joomla. Examples include addition of backdoor code, rogue administrators and stealing of credentials.
-
TFTP Theft is a tool which allows one to quickly scan/bruteforce a tftp server for files and download them instantly.
-
Forces web browsers to reveal their (insecure) cookies for HTTP and HTTPS sites. The demonstration shows how this can be done on Gmail, but the vulnerability affects many online services on the Internet, such as Ebanking and Financial sites.
-
WAFW00F allows one to identify and fingerprint WAF products protecting a website.