Section: .. / UNIX / scanners /
| /// File Name: |
nbtstat.pl |
Description:
|
nbtstat.pl is a simple Perl script that provides the basic functionality of the nbtstat utility that is available on Windows. It grabs the NetBIOS name table from a remote machine. This is a Perl port of eSDee's nbtstat.c (http://www.netric.org/tools.htm), written with portability in mind. It only requires Perl and the IO::Socket module.
| | Author: | Jimvin | | Homepage: | http://www.watersheep.org/~jim/ | | File Size: | 4287 | | Last Modified: | May 27 23:04:11 2004 |
| MD5 Checksum: | bbc3d133ee4907d3d09f837fa2c6fd87 |
|
| /// File Name: |
httprint_macosx_202.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the Mac OS-X release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | Changes: | Version 202 has a completely rewritten engine, internally, to increase efficiency and portability across platforms. A minor feature enhancement in version 202 is the ability to automatically follow 301 and 302 redirections. | | File Size: | 460991 | | Last Modified: | May 25 17:53:13 2004 |
| MD5 Checksum: | d1ff19c607b8cfe237d2a15bcbfe05b1 |
|
| /// File Name: |
httprint_freebsd_202.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the FreeBSD release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | Changes: | Version 202 has a completely rewritten engine, internally, to increase efficiency and portability across platforms. A minor feature enhancement in version 202 is the ability to automatically follow 301 and 302 redirections. | | File Size: | 491969 | | Last Modified: | May 25 17:52:38 2004 |
| MD5 Checksum: | 6997fdda9a1ad62f335dc8e6f61fac86 |
|
| /// File Name: |
httprint_linux_202.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the Linux release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | Changes: | Version 202 has a completely rewritten engine, internally, to increase efficiency and portability across platforms. A minor feature enhancement in version 202 is the ability to automatically follow 301 and 302 redirections. | | File Size: | 660323 | | Last Modified: | May 25 17:51:58 2004 |
| MD5 Checksum: | 476c221eb1db20edfb79d23b00231b6c |
|
| /// File Name: |
knock-0.3.tar.gz |
Description:
|
knock is a server/client set of tools that implements the idea known as port-knocking. Port-knocking is a method of accessing a backdoor to your firewall through a special sequence of port hits. This can be useful for opening up temporary holes in a restrictive firewall for SSH access or similar.
| | Author: | Judd Vinet | | Homepage: | http://www.zeroflux.org/knock/ | | Changes: | Added PPP (LINUX_SLL) support, various patches, multiple protocols. | | File Size: | 76211 | | Last Modified: | May 9 15:29:02 2004 |
| MD5 Checksum: | 7720747061b529d0e1b7908cc7656e5b |
|
| /// File Name: |
webrampscan-0.2.tar.gz |
Description:
|
The WebRamp scanner is program that scans for open webramp administration webpages, rips the usernames and passwords out, and dumps them into a text file. Included in the tarball is the binary, source and a script example for scanning multiple subnets.
| | Author: | Candyman | | Homepage: | http://www.haventt.net | | File Size: | 19413 | | Last Modified: | May 9 15:19:13 2004 |
| MD5 Checksum: | 11c611002a52a5a70a22fc43b70b1ec1 |
|
| /// File Name: |
hping2.0.0-rc3.tar.gz |
Description:
|
hping2 is a network tool designed to send custom ICMP/UDP/TCP packets and to display target replies like ping. It handles fragmentation and arbitrary packet body and size, and can be used to transfer files under all supported protocols. Using hping2, you can test firewall rules, perform spoofed port scanning, test net performance using different protocols, packet size, TOS (type of service), and fragmentation, do path MTU discovery, transfer files (even with really Fascist firewall rules), perform traceroute-like actions under different protocols, fingerprint remote OSs, and audit a TCP/IP stack. hping2 is very useful for learning TCP/IP.
| | Author: | Antirez | | Homepage: | http://www.hping.org | | Changes: | Added BSDi, MacOSX, WLAN, ATM, and Token Ring support. Added scan mode. Various bug fixes and feature enhancements. | | File Size: | 124573 | | Last Modified: | May 5 15:09:01 2004 |
| MD5 Checksum: | 029bf240f2e0545b664b2f8b9118d9e8 |
|
| /// File Name: |
columbo.tgz |
Description:
|
Columbo is a simple perl script that performs horizontal scanning for information gathering. It scans a range of machines for a specific port and then runs the given command against matching machines. Includes a batch mode with config file for multiple, parallel tests. Takes the repetition out of testing.
| | Author: | Kev | | Homepage: | http://www.bournemouthbynight.co.uk | | File Size: | 2044 | | Last Modified: | Apr 21 08:57:00 2004 |
| MD5 Checksum: | e9d0464f8c34840e50d238e28da58b56 |
|
| /// File Name: |
knock-0.2.tar.gz |
Description:
|
knock is a server/client set of tools that implements the idea known as port-knocking. Port-knocking is a method of accessing a backdoor to your firewall through a special sequence of port hits. This can be useful for opening up temporary holes in a restrictive firewall for SSH access or similar.
| | Author: | Judd Vinet | | Homepage: | http://www.zeroflux.org/knock/ | | Changes: | Bug fixes, Added support for specific TCP flags. | | File Size: | 74477 | | Last Modified: | Apr 18 20:38:00 2004 |
| MD5 Checksum: | d5c199772013ff56e76423535033f5d1 |
|
| /// File Name: |
lilith-0.4c.tar.gz |
Description:
|
LiLith is a tool written in Perl to audit web applications. This tool analyses webpages and looks for html form tags, which often refer to dynamic pages that might be subject to SQL injection or other flaws. It works much like an ordinary webspider.
| | Author: | Michael Hendrickx | | Homepage: | http://angelo.scanit.biz/ | | File Size: | 7027 | | Last Modified: | Apr 15 06:19:00 2004 |
| MD5 Checksum: | 1329507e5777abdde5e6270cef203073 |
|
| /// File Name: |
knock-0.1.tar.gz |
Description:
|
knock is a server/client set of tools that implements the idea known as port-knocking. Port-knocking is a method of accessing a backdoor to your firewall through a special sequence of port hits. This can be useful for opening up temporary holes in a restrictive firewall for SSH access or similar.
| | Author: | Judd Vinet | | Homepage: | http://www.zeroflux.org/knock/ | | File Size: | 74379 | | Last Modified: | Apr 12 22:18:00 2004 |
| MD5 Checksum: | bc30ba70331ebf817a4bb2a0e9c84517 |
|
| /// File Name: |
ike-scan-1.6.tar.gz |
Description:
|
ike-scan is a utility that discovers IKE hosts and can also fingerprint them using the retransmission backoff pattern.
| | Author: | Roy Hills | | Homepage: | http://www.nta-monitor.com/ike-scan/ | | Changes: | ISAKMP payloads are now decoded, new switch options added, various bug fixes. | | File Size: | 141847 | | Last Modified: | Feb 27 15:15:00 2004 |
| MD5 Checksum: | 5cdc5633a2a7484805d76b3952b8cef6 |
|
| /// File Name: |
sambascan2-0.3.4.tar.gz |
Description:
|
Sambascan2 allows you to search an entire network or a number of hosts for SMB shares. It will also list the contents of all public shares that it finds. The difference between sambascan2 and other SMB viewers and scanners is that it will search everything using TCP/IP, and it will not send a lot of broadcast messages, so it can be used over LAN boundaries. It only uses SMB to list the shares and their contents.
| | Author: | Claudio Clemens | | Homepage: | http://asturio.gmxhome.de/sambascan.html | | File Size: | 8813 | | Last Modified: | Feb 14 13:33:00 2004 |
| MD5 Checksum: | d1c37e4edecd92c4a2e5c5311afde49c |
|
| /// File Name: |
jumper-1.2.tar.gz |
Description:
|
Jumper is a program for the search and analysis of hosts. It maps the network using the ARP protocol, and optionally can create an Nmap script. For example, it can tell you which IP addresses are free in your LAN segment or it can tell you which hosts are on your LAN.
| | Author: | Robota Seguridad | | Homepage: | http://www.robota.net/article?id=957 | | File Size: | 37301 | | Last Modified: | Feb 11 18:35:00 2004 |
| MD5 Checksum: | 32b0fe6b3ba6dd4bafc3aba3fa32d804 |
|
| /// File Name: |
systemsearcher.tgz |
Description:
|
SystemSearcher is a Linux security scanner written in Perl. It scans single hosts or subnets for anonymous FTP servers, TFTP servers, SMTP servers which allow relaying, SSH servers, Telnet servers, NFS servers with exported directories, mail servers, Web servers (HTTP/HTTPS), well- known trojan ports, and exploitable CGIs. You can also scan a list of specific servers and specific ports. It uses non-blocking socket communication with a 3-second socket timeout. It can also scan for proxy servers which are open to the world (on port 80,8080,1080, or 3128), and SMB servers or Windows boxes sharing directories.
| | Author: | ByteBeater | | Homepage: | http://www.geektown.de | | File Size: | 191982 | | Last Modified: | Feb 6 17:03:00 2004 |
| MD5 Checksum: | bc0ace69b5648e351d559893bfa25129 |
|
| /// File Name: |
httprint_macosx_200.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the Mac OS-X release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | File Size: | 690035 | | Last Modified: | Jan 8 00:38:49 2004 |
| MD5 Checksum: | f2339dc65f778912bb9ecb0b8f3fc237 |
|
| /// File Name: |
httprint_linux_200.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the Linux release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | File Size: | 656927 | | Last Modified: | Jan 8 00:38:06 2004 |
| MD5 Checksum: | 64146ac382f862211fb75bed1b6112a4 |
|
| /// File Name: |
httprint_freebsd_200.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the FreeBSD release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | File Size: | 709893 | | Last Modified: | Jan 8 00:35:27 2004 |
| MD5 Checksum: | 1248147d76ab8ffa4ed0123f22a43d78 |
|
| /// File Name: |
PScanDetect-0.8.c |
Description:
|
PScanDetect version 0.8 is a utility that will detect TCP-based portscans. Tested under FreeBSD 5.1, OpenBSD 3.3, and Slackware Linux 9.0.
| | Author: | dodo | | File Size: | 14764 | | Last Modified: | Dec 23 05:35:08 2003 |
| MD5 Checksum: | 9e459e0614a935d0a5b983be1abf750b |
|
| /// File Name: |
arpscan-0.2.tar.gz |
Description:
|
Arpscan sends out ARP requests to specified IP addresses and displays a list of the found hosts. Useful for scanning your local network's IP's for live hosts.
| | Author: | Jason Ish | | Homepage: | http://codemonkey.net/~jason/arpscan | | File Size: | 35462 | | Last Modified: | Dec 1 22:02:12 2003 |
| MD5 Checksum: | a832c8946dc9e2d66c8fa02a7a8b8059 |
|
| /// File Name: |
ike-scan-1.5.1.tar.gz |
Description:
|
ike-scan is a utility that discovers IKE hosts and can also fingerprint them using the retransmission backoff pattern.
| | Author: | Roy Hills | | Homepage: | http://www.nta-monitor.com/ike-scan/ | | Changes: | More backoff patterns added, more flexible pattern specification, man page added, and more. | | File Size: | 122595 | | Last Modified: | Nov 25 00:16:57 2003 |
| MD5 Checksum: | 6425534104fd9f6f644c6f7286ed40e1 |
|
| /// File Name: |
p0f-2.0.3.tgz |
Description:
|
p0f performs passive OS detection by watching SYN packets with tcpdump. Additionally, it is able to determine distance to remote host, and can be used to determine the structure of a foreign or local network. When running on the gateway of a network it is able to gather huge amounts of data and provide useful statistics. On a user-end computer it could be used to track which operating systems are making each connection. p0f supports full tcpdump-style filtering expressions, and has an easily modified fingerprinting database. Tested on Linux, FreeBSD, OpenBSD, NetBSD, SunOS, and Solaris.
| | Author: | Michal Zalewski | | Homepage: | http://lcamtuf.coredump.cx/p0f.shtml | | Changes: | Masquerade detection code now checks for time going backwards in timestamps, added uptime in query data and p0fq.c, added -F fuzzy TTL matching option, added more signatures, and fixed some bugs. | | File Size: | 119407 | | Last Modified: | Nov 21 14:21:04 2003 |
| MD5 Checksum: | 583688a4c5718eec0bb34102b3ac457b |
|
| /// File Name: |
mfp_classClscan.sh |
Description:
|
Class C address scanner and lookup tool.
| | Author: | m4rc3l0 | | File Size: | 1535 | | Last Modified: | Nov 8 20:06:24 2003 |
| MD5 Checksum: | e71f89be361b2d76f63a94f5c047f718 |
|
| /// File Name: |
DMit-v1.0beta.tgz |
Description:
|
Dmitry (Deepmagic Information Gathering Tool) is a a UNIX/(GNU)Linux Command Line program coded purely in C with the ability to gather as much information as possible about a host. Gets netcraft information, whois lookup, tcp port scan, looks for subdomains, and grabs banners. Tested on *BSD and some Linux variations.
| | Author: | Kernel-- | | Homepage: | http://www.deep-magic.org | | File Size: | 114789 | | Last Modified: | Nov 7 23:39:01 2003 |
| MD5 Checksum: | 0c5ebcb5ca83c557660d51a7849c1fc6 |
|
| /// File Name: |
ms03-043scanner.c |
Description:
|
Scanner for ms03-043, the Microsoft Messenger Service vulnerability.
| | Author: | Crowley | | Homepage: | http://www.kiwi-hacker.net | | File Size: | 17735 | | Last Modified: | Nov 4 01:33:32 2003 |
| MD5 Checksum: | 213e5c9ea9cb318e303ab614821d7905 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
