Section: .. / UNIX / scanners /
| /// File Name: |
xprobe2-0.2.tar.gz |
Description:
|
Xprobe2 is a remote active operating system fingerprinting tool. Xprobe2 uses advanced techniques, such as the usage of fuzzy logic to match fingerprinting results with the tool's signature database and unique fingerprinting methods to provide accurate results.
| | Author: | Fyodor Yarochkin | | Homepage: | http://www.sys-security.com/html/projects/X.html | | File Size: | 474216 | | Last Modified: | Oct 15 00:13:22 2003 |
| MD5 Checksum: | ca723a7e4c8c5001191efdb43e63bbee |
|
| /// File Name: |
httprint_macosx_107.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. The current version of httprint can import web servers from nmap network scans, if they are saved in XML format. Mac OSX version.
| | Homepage: | http://net-square.com/httprint/ | | File Size: | 678822 | | Last Modified: | Oct 15 00:05:22 2003 |
| MD5 Checksum: | 6622e2ccd92d5623f7d1f3c70e104bb7 |
|
| /// File Name: |
httprint_linux_107.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. The current version of httprint can import web servers from nmap network scans, if they are saved in XML format. Linux version.
| | Homepage: | http://net-square.com/httprint/ | | File Size: | 644225 | | Last Modified: | Oct 15 00:04:23 2003 |
| MD5 Checksum: | 7dc1061cfcaca9b5d0f7a1b8759c4c79 |
|
| /// File Name: |
metacoretex-0.8.0.tar.gz |
Description:
|
MetaCoretex is an entirely JAVA based vulnerability scanning framework which puts special emphasis on databases. Probe objects are written in JAVA for the sake of the ability to extend the AbstractProbe class. Additionally, probe generators make the process of writing simple probes a small task for the end user.
| | Author: | visigoth | | File Size: | 5296595 | | Last Modified: | Oct 2 12:59:24 2003 |
| MD5 Checksum: | 0505b17ff98627f7a43663211e5c7a89 |
|
| /// File Name: |
p0f-2.0.2.tgz |
Description:
|
p0f performs passive OS detection by watching SYN packets with tcpdump. Additionally, it is able to determine distance to remote host, and can be used to determine the structure of a foreign or local network. When running on the gateway of a network it is able to gather huge amounts of data and provide useful statistics. On a user-end computer it could be used to track which operating systems are making each connection. p0f supports full tcpdump-style filtering expressions, and has an easily modified fingerprinting database. Tested on Linux, FreeBSD, OpenBSD, NetBSD, SunOS, and Solaris.
| | Author: | Michal Zalewski | | Homepage: | http://lcamtuf.coredump.cx/p0f.shtml | | Changes: | Complete rewrite of version 1 code, making signatures more flexible and to improve fingerprint accuracy. | | File Size: | 72715 | | Last Modified: | Sep 22 18:28:47 2003 |
| MD5 Checksum: | 5686d672ba6762bb965ab5854880d543 |
|
| /// File Name: |
DominoHunter-0.92.zip |
Description:
|
Domino Hunter 0.92 is a Lotus Domino web server scanner, written in Perl. It attempts to access default NSF databases, as well as crawl user-defined bases. It tries to enumerate the database structure, enumerate available views, available documents, and ACLs set on documents. It also tries to retrieve documents from available views in order to check if ACLs are correctly set to restrict documents and not views. The scanner works in both anonymous mode or privileged mode if user supplied credentials are supplied to then be passed to the default names.nsf/?Login form.
| | Author: | Pierre CARON | | Changes: | Various bug fixes, more verbose of output, and a progress bar has been added. Fast ACL enumeration and various bugfixes. | | File Size: | 15901 | | Last Modified: | Sep 16 17:21:51 2003 |
| MD5 Checksum: | 0decf15695afcb40e2799e83661cba21 |
|
| /// File Name: |
Scan-0.2.tar.gz |
Description:
|
This utility makes use of google.com to figure out what domains are running vulnerable PHP servers. Instructions are written in French.
| | Author: | alex | | File Size: | 333839 | | Last Modified: | Aug 25 23:03:30 2003 |
| MD5 Checksum: | 77cc166621b423bcbbf8a5df77154b76 |
|
| /// File Name: |
dnsenum.zip |
Description:
|
A Perl script that enumerates DNS information from a domain, attempts zone transfers, performs a brute force dictionary style attack, and then performs reverse look-ups on the results.
| | Author: | Filip Waeytens | | File Size: | 2976 | | Last Modified: | Aug 25 22:52:07 2003 |
| MD5 Checksum: | d04ba89b205f4e707804ab4b5a46fdd6 |
|
| /// File Name: |
banscan.c |
Description:
|
Banner scanning utility that generates random IP addresses, can search for specified strings, and has a default list of ports to scan if not given a list. Works extremely streamlined as it spawns sixteen children processes.
| | Author: | phender | | File Size: | 11721 | | Last Modified: | Aug 25 22:46:08 2003 |
| MD5 Checksum: | e907f63ce400cbae5daaf465aa4adeb4 |
|
| /// File Name: |
DominoHunter-0.91.zip |
Description:
|
Domino Hunter 0.91 is a Lotus Domino web server scanner, written in Perl. It attempts to access default NSF databases, as well as crawl user-defined bases. It tries to enumerate the database structure, enumerate available views, available documents, and ACLs set on documents. It also tries to retrieve documents from available views in order to check if ACLs are correctly set to restrict documents and not views. The scanner works in both anonymous mode or privileged mode if user supplied credentials are supplied to then be passed to the default names.nsf/?Login form.
| | Author: | Pierre CARON | | Changes: | Fast ACL enumeration and various bugfixes. | | File Size: | 15302 | | Last Modified: | Aug 5 15:10:13 2003 |
| MD5 Checksum: | 9d1a20f3afbd6d625079db98633f5a96 |
|
| /// File Name: |
bannascanna-v0.2.3.c |
Description:
|
Threaded banner scanner that is rather versatile and lightweight.
| | Author: | Intrusive | | File Size: | 8850 | | Last Modified: | Jul 24 11:01:58 2003 |
| MD5 Checksum: | 167ef4b6e6d5398569c963bb15ad6256 |
|
| /// File Name: |
qSSHscan.tar.gz |
Description:
|
A threaded ssh banner scanner written in Java that takes in a list of IPs or hostnames. Written and tested for Linux and Windows.
| | Author: | Joker | | Homepage: | http://olives.ath.cx/~j0ker/ | | File Size: | 5588 | | Last Modified: | Jul 17 21:33:27 2003 |
| MD5 Checksum: | cd8ad978c27225b245cf235a5437f30d |
|
| /// File Name: |
DominoHunter-0.9.zip |
Description:
|
Domino Hunter is a Lotus Domino web server scanner, written in Perl. It attempts to access default NSF databases, as well as crawl user-defined bases. It tries to enumerate the database structure, enumerate available views, available documents, and ACLs set on documents. It also tries to retrieve documents from available views in order to check if ACLs are correctly set to restrict documents and not views. The scanner works in both anonymous mode or privileged mode if user supplied credentials are supplied to then be passed to the default names.nsf/?Login form.
| | Author: | Pierre CARON | | File Size: | 11190 | | Last Modified: | Jun 29 17:34:28 2003 |
| MD5 Checksum: | 6abc393845374a05d146c3c2002dd1b2 |
|
| /// File Name: |
snacktime.tgz |
Description:
|
Remote OS fingerprinting tool written in Perl that analyzes the retransmission timeout lengths of a TCP handshake to detect remote operating systems.
| | Author: | Tod Beardsley | | Homepage: | http://www.planb-security.net/ | | File Size: | 27259 | | Last Modified: | Jun 24 01:12:31 2003 |
| MD5 Checksum: | cbe0db6081b8fb1c0cd46a7f1f3f31a6 |
|
| /// File Name: |
isurlscan.pl |
Description:
|
This simple utility will connect to a webserver of your choosing and verify whether or not it is compliant to RFC 2616. Designed to verify Microsoft IIS servers.
| | Author: | Filip Maertens | | File Size: | 2364 | | Last Modified: | Jun 3 03:06:37 2003 |
| MD5 Checksum: | fe22d87903b7abf05fd1d322bbe55e3d |
|
| /// File Name: |
orbs-1.1.tar.gz |
Description:
|
orbs, or Omniscient Remote Banner Scanner, is a fast and light-weight banner scanner with features like telnet negotiation and HTML output.
| | Author: | methodic | | Homepage: | http://libpcap.net/orbs/ | | File Size: | 9010 | | Last Modified: | May 28 04:18:27 2003 |
| MD5 Checksum: | b5eb868122199e067531104f58ecf014 |
|
| /// File Name: |
smtpscan-0.5.tar.gz |
Description:
|
Smtpscan is a tool to guess which MTA is used by sending several "special" SMTP requests and by comparing error codes returned with those in the fingerprint database. It does not take into account banners and other text information, that cannot be trusted, only error codes. A document describing the fingerprinting method implemented in smtpscan is available here.
| | Author: | Julien Bordet | | Homepage: | http://www.greyhats.org/outils/smtpscan | | Changes: | Updated fingerprint database that contains more than 3,000 entries. | | File Size: | 162643 | | Last Modified: | May 7 18:10:52 2003 |
| MD5 Checksum: | 375e1a64347da0b39994910bcdd213db |
|
| /// File Name: |
snmpenum.zip |
Description:
|
Simple Perl script to enumerate information on Machines that are running SNMP
| | Author: | Filip Waeytens | | Homepage: | http://www.scanit.be | | File Size: | 3030 | | Last Modified: | Apr 29 23:06:18 2003 |
| MD5 Checksum: | f19a37f5f407c74ab09b588ec9f7e3cd |
|
| /// File Name: |
FendIIS.pl |
Description:
|
This utility scans a class C or B network for hosts infected with the Code Red II worm. It does this by checking for the presence of /scripts/root.exe which is the backdoor Code Red II leaves behind.
| | Author: | Matt 'Zola' Stevens | | Homepage: | http://www.zola.org.uk | | File Size: | 4967 | | Last Modified: | Apr 29 22:39:53 2003 |
| MD5 Checksum: | 733d670cf08ab4150c39fe6785c39d19 |
|
| /// File Name: |
arb-scan-0.5.0.tar.gz |
Description:
|
Arb-Scan is a remote banner scanner, written in Bash and Perl. It currently supports ftpd, sshd, smtpd, domain, finger, httpd, pop2, pop3 and imapd banner checks. It features IP file reading and logging.
| | Homepage: | http://arbon.elxsi.de | | Changes: | Added imapv3(port 220) banner check, renamed imap to imapv2. | | File Size: | 6722 | | Last Modified: | Apr 21 13:43:00 2003 |
| MD5 Checksum: | f345608299bca075143f63c866c7e3c3 |
|
| /// File Name: |
nmbping.pl |
Description:
|
Utility for finding Samba and Windows Netbios services. Udp based and very quick.
| | Author: | H D Moore | | Homepage: | http://www.digitaldefense.net/ | | File Size: | 8890 | | Last Modified: | Apr 9 23:05:57 2003 |
| MD5 Checksum: | 77e6247fa08bbdb6a9ee37604eb9d1d6 |
|
| /// File Name: |
goons.sh |
Description:
|
Simple scripting utility that will perform DNS, SMTP, and HTTP scans on a hostname list given by google.com.
| | Author: | xenion | | Homepage: | http://www.antifork.org | | File Size: | 5265 | | Last Modified: | Apr 9 21:32:33 2003 |
| MD5 Checksum: | 0ff16d0dfc6d0cac0fe3dd9165720ef5 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
