Section: .. / UNIX / cgi-scanners /
| /// File Name: |
x1bpackV1.tar.gz |
Description:
|
The x1b pack is a series of scripts written by the author as an exercise into socket programming with perl. Included are a port scanner with banner grabbing capabilities, a DNS service enumeration script with zonetransfer, some brute forcing utilities, a CGI web scanner, and a couple of other utilities.
| | Author: | Lawrence Lavigne | | File Size: | 6439775 | | Last Modified: | Jun 7 17:02:08 2004 |
| MD5 Checksum: | a4f30b7624eda9bcedf87bc0ca6758fe |
|
| /// File Name: |
screamingCobra-1.04.tar.gz |
Description:
|
ScreamingCobra is an application for remote vulnerability discovery in ANY UNKNOWN web applications such as CGIs and PHP pages. Simply put, it attempts to find vulnerabilities in all web applications on a host without knowing anything about the applications. Modern CGI scanners scan a host for CGIs with known vulnerabilities. ScreamingCobra is able to 'find' the actual vulnerabilities in ANY CGI, whether it has been discovered before or not.
| | Author: | Samy Kamkar | | Homepage: | http://cobra.LucidX.com | | Changes: | Several bug fixes, support for adding attacking techiques and a Windows binary has been added. | | File Size: | 414990 | | Last Modified: | Jan 13 21:23:34 2002 |
| MD5 Checksum: | a36d646cb96a64a95f7aa2f5c07224e7 |
|
| /// File Name: |
Stealth-1.0-b23.zip |
Description:
|
Stealth HTTP Security Scanner 1.0 build 23 - Checks for 2967 http vulnerabilities. Run on Win32 and Linux under Wine. Free.
| | Author: | Felipe Moniz | | Changes: | Added anti-redirect system, extended unicode test, and new holes. | | File Size: | 368494 | | Last Modified: | May 21 19:57:49 2001 |
| MD5 Checksum: | b27e344269b422127abc1550ebbdc8cc |
|
| /// File Name: |
twwwscan12.zip |
Description:
|
TWWWscan is a Windows based www vulnerability scanner which looks for 400 www/cgi vulnerabilities . Displays http header, server info, and tries for accurate results. Now features anti-IDS url encoding and passive mode scan. Tested on win95 osr2 win98,win98se,win nt4,win 2k/Me.
| | Author: | Pilot | | Homepage: | http://search.iland.co.kr/twwwscan | | Changes: | Major update - Added virtual host scan, GET method, http request injection, blowfish support, and bug fixes. | | File Size: | 354154 | | Last Modified: | Feb 20 20:33:34 2001 |
| MD5 Checksum: | e2d407b2dd2b84f3ce234dd3cacebe61 |
|
| /// File Name: |
voideye.zip |
Description:
|
VoidEye CGI scanner. Scans for 119 known vulnerabilities. Runs on: win9x, winNT, win2000. Features: Three IDS tactics, user can add his own holes, editing "exp.dat" in any text editor or via program interface, user can process a site list, editing it via the program interface or the file "servers.dat", scanner can work via a proxy, for more security. Multi-threaded and fast. This is the worlds first skinnable hacking tool.
| | Author: | Duke. | | File Size: | 336465 | | Last Modified: | Feb 15 15:59:25 2000 |
| MD5 Checksum: | 9ceb106268b075e5dd1cb4a16414546f |
|
| /// File Name: |
nikto-2.01.tar.gz |
Description:
|
Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.
| | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | Changes: | Multiple enhancements. | | File Size: | 233930 | | Last Modified: | Dec 14 13:00:16 2007 |
| MD5 Checksum: | 8af0dca235bbca9bf86b7017229a825f |
|
| /// File Name: |
nikto-2.00.tar.gz |
Description:
|
Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.
| | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | Changes: | Version 2 adds many enhancements to reduce false positives, server fingerprinting, scan tuning, HTML report templates, optimizations and more. | | File Size: | 232564 | | Last Modified: | Nov 12 23:12:52 2007 |
| MD5 Checksum: | 64814606e342d3988093c7b8af9779c4 |
|
| /// File Name: |
nikto-1.35.tar.gz |
Description:
|
Nikto is a perl open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2400 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.
| | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | Changes: | Has patches from Pavel Kankovsky to support multiple config files and to reduce false positives. Also includes updated databases and several bug fixes. | | File Size: | 190033 | | Last Modified: | May 30 17:40:45 2005 |
| MD5 Checksum: | 908f6b5c670434324633db48bd4537cd |
|
| /// File Name: |
nikto-1.36.tar.bz2 |
Description:
|
Nikto is a perl open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2400 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.
| | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | Changes: | Nikto 1.36 has been released. This version adds a new option for setting a 404 string from the command line, a new plugin to test PUT/DELETE methods, new header checks and obligatory bug fixes. | | File Size: | 174696 | | Last Modified: | Feb 14 15:47:49 2007 |
| MD5 Checksum: | 3baff72d534228575556e8cf5d34e49c |
|
| /// File Name: |
whisker-1.4+SSL.tar.gz |
Description:
|
whisker v1.40 with native SSL support. Adds a -x option which uses the Net::SSLeay perl module and OpenSSL. Whisker is what I've dubbed a 'next generation' CGI scanner. I've implemented anti-IDS checks into the scan. Includes over 200 checks. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host support. Proxy support. Can be used as a CGI.
| | Author: | Rain Forrest Puppy and ssl patch by H.D. Moore | | Homepage: | http://www.wiretrip.net | | Changes: | SSL patch by H.D. Moore at http://www.digitaloffense.net:8000. | | File Size: | 173401 | | Last Modified: | Oct 24 02:56:25 2000 |
| MD5 Checksum: | f7dc98073ab34f8f2717f8dcda302b80 |
|
| /// File Name: |
whisker-1.4.0.tar.gz |
Description:
|
whisker is what I've dubbed a 'next generation' CGI scanner. It is Scriptable. It's a programming-ish language that is tailored to do lots of flexible web scanning. Very stealthy. I've implemented anti-IDS checks into the scan. Includes over 200 checks. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host support. Proxy support. Can be used as a CGI.
| | Author: | Rain Forrest Puppy | | Homepage: | http://www.wiretrip.net | | Changes: | Includes 10 anti-IDS tactics, brute force user names, brute force basic authentication guessing, now uses perl modules if available for extra speed, HTTP return values can be redefined, can now be used as a CGI, html output, SSL support, more vulnerabilities in the scan.db, and bug fixes. | | File Size: | 170372 | | Last Modified: | Aug 5 03:22:43 2000 |
| MD5 Checksum: | 82bfffab803d74c8d6e064e3c4533a34 |
|
| /// File Name: |
nikto-1.31.tar.gz |
Description:
|
Nikto 1.31 is a PERL, open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2000 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.
| | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | Changes: | LibWhisker 1.8, additional configuration options, enhanced multiple-host scanning, and multiple bug fixes and more. | | File Size: | 166796 | | Last Modified: | Sep 29 16:34:42 2003 |
| MD5 Checksum: | cb6719d7e0fd4659cb826f821f01cd64 |
|
| /// File Name: |
ucgi1565.zip |
Description:
|
CGI vulnerability scanner version 1.56. Checks for over 90 CGI vulnerabilities. Tested on slackware linux with kernel 2.0.35-2.2.5, Freebsd 2.2.1-3.2, IRIX 5.3, DOS, and windows.
| | Author: | su1d sh3ll of UnlG | | File Size: | 150709 | | Last Modified: | Oct 13 12:46:42 1999 |
| MD5 Checksum: | cdcf5abdb50ac056a5d9a9649fc32e2a |
|
| /// File Name: |
nikto-1.30.tar.gz |
Description:
|
Nikto 1.30 is a PERL, open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2000 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.
| | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | Changes: | Now has multiple host/port scanning, username guessing via cgiwrap, NTLM auth support, CSV output format & more. | | File Size: | 137459 | | Last Modified: | May 28 04:37:12 2003 |
| MD5 Checksum: | fdc8fb9aa86e090ee104903d3b2e0a28 |
|
| /// File Name: |
twwwscan07.zip |
Description:
|
TWWWscan is a Windows based www vulnerability scanner which looks for 300 www/cgi vulnerabilities . Displays http header, server info, and tries for accurate results. Now features anti-IDS url encoding and passive mode scan. Tested on win95 osr2 win98,win98se,win nt4,win 2k/Me.
| | Author: | Pilot | | Homepage: | http://search.iland.co.kr/twwwscan | | Changes: | Includes NT/2000 IIS detailed patch information, CVE information support, and report support. | | File Size: | 130478 | | Last Modified: | Dec 26 02:18:29 2000 |
| MD5 Checksum: | 0883ee41c038940fa7658a29397d5722 |
|
| /// File Name: |
nikto-1.23.tar.gz |
Description:
|
Nikto 1.23 is a PERL, open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2000 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.
| | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | Changes: | Now has Apache username guessing, static auth cookies, static base directories, proxy id/password prompting and bug fixes. | | File Size: | 123976 | | Last Modified: | Jan 5 03:06:01 2003 |
| MD5 Checksum: | 59b561c2e086167c4469bd21e3e44bff |
|
| /// File Name: |
twwwscan06.zip |
Description:
|
TWWWscan is a Windows based www vulnerability scanner which looks for 300 www/cgi vulnerabilities . Displays http header, server info, and tries for accurate results. Now features anti-IDS url encoding and passive mode scan. Tested on win95 osr2 win98,win98se,win nt4,win 2k/Me.
| | Author: | TSS | | Homepage: | http://search.iland.co.kr/twwwscan | | Changes: | Redhat 7 webserver detection patch, Internet Information Server Sample Directory and file Search Scan-iissample, Netscape Enterprise Server Vulnerability Scan-nesscan, and Detail Windows NT/2k Patch Information. | | File Size: | 120338 | | Last Modified: | Nov 17 11:36:57 2000 |
| MD5 Checksum: | ca5309d08b465a9cda4752d5e3c39cae |
|
| /// File Name: |
nikto-1.20.tar.gz |
Description:
|
Nikto 1.20 is a PERL, open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site. New this version: password file guessing, Google file-hunting, SSL details and bug fixes.
| | Author: | Sullo | | Homepage: | http://www.cirt.net/code/nikto.shtml | | File Size: | 107361 | | Last Modified: | Aug 11 19:18:35 2002 |
| MD5 Checksum: | e437a187ba945390d38dee5a70350623 |
|
| /// File Name: |
twwwscan.exe |
Description:
|
TWWWscan v0.3 - Windows based www vulnerability scanner which looks for 186 www/cgi vulnerabilities . Displays http header, server info, and tries for accurate results. Now features anti-IDS url encoding. Tested on win95 osr2 win98,win98se,win nt4,win 2k.
| | Author: | TSS | | Homepage: | http://search.iland.co.kr/twwwscan/ | | Changes: | Added passive mode, included Windows 2000 and NT patch information, scan interface changed. | | File Size: | 94208 | | Last Modified: | May 31 19:38:52 2000 |
| MD5 Checksum: | 72565fdcab48b626cf2fa8b1f2e3a95c |
|
| /// File Name: |
libwhisker-1.6.tar.gz |
Description:
|
Libwhisker is a perl module for performing whisker CGI vulnerability checks. It adds a vast array of functionality and has robust functions that are geared toward network auditing. Function reference available here. Changelog available here.
| | Author: | RFP | | Homepage: | http://www.wiretrip.net | | Changes: | Major fixes - All users should upgrade. | | File Size: | 78668 | | Last Modified: | Dec 6 05:34:26 2002 |
| MD5 Checksum: | 06ac9f0f28d5269c893937e03d342c64 |
|
| /// File Name: |
cgiaudit-1.0.tar.gz |
Description:
|
CGIAudit is a black-box debugging tool which automatically audits CGI entities with only an interface specification, the HTML form. Attack types that a CGI script or program become subject to are configurable, as well as server replies that denote a possible penetration success. Other features include a built-in spider, proxy support, and hexadecimal encoding of requests.
| | Author: | S | | File Size: | 69018 | | Last Modified: | Jan 11 13:09:36 2002 |
| MD5 Checksum: | 8a5e585d220f86b1b68363490dbefde2 |
|
| /// File Name: |
unicode.db |
Description:
|
Unicode.db is an unicode/double-decode plugin for use with whisker.
| | Author: | B-root | | File Size: | 66683 | | Last Modified: | Aug 30 01:39:09 2001 |
| MD5 Checksum: | c16ae80fc793c9cf7d86cf68439e3513 |
|
| /// File Name: |
whisker-2.1.tar.gz |
Description:
|
Whisker is a high quality URL scanner which is used to search for known vulnerable CGIs on websites. Whisker does this by both scanning the the CGIs directly as well as crawling the website in order to determine what CGIs are already currently in use. Whisker is scriptable and is easily tailored to do lots of flexible web scanning. Very stealthy. Implemented anti-IDS techniques. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host, Proxy, and SSL support.
| | Author: | Rain Forrest Puppy | | Homepage: | http://www.wiretrip.net | | Changes: | Tons of changes - so many it's not worth individually documenting. Added the newbie.help guided configuration walkthrough. Fixed bugs. | | File Size: | 62861 | | Last Modified: | Dec 6 05:23:17 2002 |
| MD5 Checksum: | cb51d20dad52350c93845fdc6829d577 |
|
| /// File Name: |
libwhisker-1.3.tar.gz |
Description:
|
Libwhisker is a perl module for performing whisker CGI vulnerability checks. It adds a vast array of functionality and has robust functions that are geared toward network auditing.
| | Author: | RFP | | Homepage: | http://www.wiretrip.net/rfp/p/doc.asp/i7/d21.htm | | File Size: | 62681 | | Last Modified: | Mar 31 01:25:32 2002 |
| MD5 Checksum: | 321791a97018d7ea19009201f1d6f59c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
