Original Source:

Props to

for compiling the most comprehensive wordlist downloads on the web. Copying links here just in case blogspot ever blows up. Additionally head over to

they have some specialized wordlists from various sources including the hacked RockYou database and a skim of Facebook names/usernames for a total of 14,488,929 distinct passwords to be exact, collected from 32,943,045 users.

新版本改进如下：
1，增加数据压缩功能（使用系统自带的makecab.exe和expand.exe）。
2，Base64编码采用Microsoft.XMLDOM，速度快，代码更简洁。
3，echo生成临时脚本时文件名不带后缀，避免杀毒软件频繁扫描，提高效率。新版本改进如下：
1，增加数据压缩功能（使用系统自带的makecab.exe和expand.exe）。
2，Base64编码采用Microsoft.XMLDOM，速度快，代码更简洁。
3，echo生成临时脚本时文件名不带后缀，避免杀毒软件频繁扫描，提高效率。

the file includes the following  site sections:
bruteforce, c0de,  cheatsheets,  encryption,  exploits,  ircbots,  misc,  others,  scanners and  tutorials

菜刀最新版20100629
Asp.Net数据库操作更完善，原来连接会超时这次可以再体验一下！扫描模块更新、浏览器右键加入本IP网页搜索功能、反IDS的加强、其它...

Exploit-db.com has finally got around to syncing our exploits archive and SVN server. Both the downloadable archive and SVN server will be updated once a week.

谁共享一下自己的john.pot啊。

#Trace: 1.07组织结构大调整,及时更新,扩充字典.

This approach is also useful for targeted use of brute force for discovery using, for example, lists of known vulnerable scripts sorted by platform type, default locations of critical files of popular apps, high quality lists of common directory names.

Netsparker® Community Edition shares many features with Netsparker® Professional and just like Netsparker Professional, Community Edition is also False Positive Free. It can detect SQL Injection and Cross-site Scripting issues better than many other scanners (if not all), and it’s completely FREE.

SFX-SQLi (Select For XML SQL injection) is a new SQL injection technique which allows to extract the whole information of a Microsoft SQL Server 2005/2008 database in an extremely fast and efficient way.

文章作者：lovemfc
信息来源：邪恶八进制

WebCruiser - Web Vulnerability Scanner V1.3.1.0306

(source code and binaries are available)

Acunetix Web Vulnerability Scanner 6.5 Build 2010_02_10 Enterprise Version & Crack Patch

#Trace: 今天在Pst聚合上看到一个Acunetix Web Vulnerability Scanner v6.5 build 20100210的补丁，在网上没找到安装包，问了几个人也没问到，找到一个便携版的，在vmware里试了下，可以升级。源地址被墙，已经上传到Rapidshare上。