Section: .. / UNIX / scanners /
| /// File Name: |
fwknop-1.9.6.tar.gz |
Description:
|
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
| | Author: | Michael Rash | | Homepage: | http://www.cipherdyne.org/fwknop/ | | Changes: | Added the ability to explicitly run major classes of tests 46 with two new command line arguments to the fwknop_test.pl script. Updated the fwknop client to randomize the UDP source port for default SPA packet generation. Various other updates and additions. | | File Size: | 566465 | | Last Modified: | Jul 24 12:23:37 2008 |
| MD5 Checksum: | 9734c99a1c0b28b1522ce50396405d54 |
|
| /// File Name: |
wpacrack.py.txt |
Description:
|
Python script that cracks a 256-bit WPA-PSK hash (64 char) using wpa_passphrase and a wordlist.
| | Author: | d3hydr8 | | Homepage: | http://www.darkc0de.com/ | | File Size: | 1500 | | Last Modified: | Jul 10 18:48:16 2008 |
| MD5 Checksum: | f526e7dcfd3f3a9583738f494b0791d1 |
|
| /// File Name: |
pktanon-1.2.0-dev.tar.gz |
Description:
|
PKtAnon performs network trace anonymization. It is highly configurable and uses anonymization profiles. Anonymization profiles allow for mapping of arbitrary anonymization primitives to protocol attributes, thus providing high flexibility and easy usability. A huge number of anonymization primitives and network protocols are supported and ready to use for online and offline anonymization.
| | Author: | Christoph Mayer | | Homepage: | http://www.tm.uka.de/pktanon | | File Size: | 160561 | | Last Modified: | Jun 30 11:50:42 2008 |
| MD5 Checksum: | 6e62d3f5495216ac5d24dd82b3025314 |
|
| /// File Name: |
dnsenum1.2.tar.gz |
Description:
|
dnsenum is a perl script that enumerates DNS information from a domain, attempts zone transfers, performs a brute force dictionary style attack, and then performs reverse look-ups on the results. It has been completely revamped.
| | Author: | Filip Waeytens | | Changes: | Various bugs and code clean up. | | File Size: | 12413 | | Last Modified: | Jun 23 18:17:04 2008 |
| MD5 Checksum: | 59d92826d06119a21f197ea7fd8bcb17 |
|
| /// File Name: |
bsqlbf-v2.1.zip |
Description:
|
Bsqlbf was originally written by A. Ramos from www.514.es and was intended to exploit blind sql injection against mysql backend database. This is a modified version of the same tool. It supports blind sql injection against the following databases: MS-SQL, MY-SQL, PostgresSQL, and Oracle.
| | Author: | Sumit Siddharth | | Homepage: | http://notsosecure.com/ | | File Size: | 8664 | | Last Modified: | Jun 23 03:59:24 2008 |
| MD5 Checksum: | 4112eeb244251498680c145ca8209a05 |
|
| /// File Name: |
fwknop-1.9.5.tar.gz |
Description:
|
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
| | Author: | Michael Rash | | Homepage: | http://www.cipherdyne.org/fwknop/ | | Changes: | Various updates and additions. Removed legacy knopmd.conf file since knopmd uses the fwknop.conf file instead. | | File Size: | 561965 | | Last Modified: | Jun 13 12:44:48 2008 |
| MD5 Checksum: | 425c54c86f60f71a58891443fec57be0 |
|
| /// File Name: |
inth-v0.2.tgz |
Description:
|
This code utilizes the p0f derived OS signature database of disco to actively fingerprint operating systems. It is able to fingerprint hosts based on a single SYN-ACK received from a probed port, and as such can be used to identify multiple hosts NAT Masquerading behind a single IP.
| | Author: | skrye | | File Size: | 22947 | | Last Modified: | Jun 9 18:41:52 2008 |
| MD5 Checksum: | a8fd06ab8f79804d5d8ea6a3c0fc72e3 |
|
| /// File Name: |
fwknop-1.9.4.tar.gz |
Description:
|
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
| | Author: | Michael Rash | | Homepage: | http://www.cipherdyne.org/fwknop/ | | Changes: | Added two new port randomization options. Various module additions and bug fixes. | | File Size: | 570223 | | Last Modified: | Jun 2 17:47:32 2008 |
| MD5 Checksum: | bccaa8abe6e807d41378b46b379edc7b |
|
| /// File Name: |
haxssl.tgz |
Description:
|
This Ruby code will test a specified Host's SSL certificate against the Debian-based blacklist of keys (RSA 2048 and DSA 1024) generated during the period where openssl on Debian-based installs suffered from a weakness in random number generation. Note that the blacklist is embedded in the code so the file is about 23 MB.
| | Author: | Cody Tubbs | | Related File: | dsa-1571-1.txt | | File Size: | 13052186 | | Related CVE(s): | CVE-2008-0166 | | Last Modified: | May 29 14:12:08 2008 |
| MD5 Checksum: | 96666f341f89b312294862723156679c |
|
| /// File Name: |
lynis-1.1.3.tar.gz |
Description:
|
Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
| | Author: | Michael Boelen | | Homepage: | http://www.rootkit.nl/projects/lynis.html | | File Size: | 55617 | | Last Modified: | May 27 19:38:11 2008 |
| MD5 Checksum: | bf6984cd11846353a32dd979971d20c5 |
|
| /// File Name: |
sqlninja-0.2.3.tgz |
Description:
|
sqlninja is a small tool to exploit SQL injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable database server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a database Server when a SQL injection vulnerability has been discovered. It is written in perl and runs on Unix-like boxes.
| | Author: | icesurfer | | Homepage: | http://sqlninja.sourceforge.net | | Changes: | Added metasploit module and makescr.pl. | | File Size: | 124338 | | Last Modified: | May 27 18:21:29 2008 |
| MD5 Checksum: | daa9e815aa82d9f3859fb416e6eda1d0 |
|
| /// File Name: |
volatile.txt |
Description:
|
Volatile is an automatic SQL injection exploitation tool that takes advantage of applications discovered in search results and attempts to leverage xp_cmdshell.
| | Author: | rfds,hash | | Homepage: | http://www.rfdslabs.com.br/ | | File Size: | 8176 | | Last Modified: | May 22 01:46:10 2008 |
| MD5 Checksum: | c65ad112959ae126db862ae0b8b75f8c |
|
| /// File Name: |
sp_2.0.zip |
Description:
|
SQL Playground (SP) is a tool written in Perl that aims to exploit SQL injection vulnerabilities while presenting itself in a command line shell. Full paper provided to explain use.
| | Author: | real | | File Size: | 16174 | | Last Modified: | Apr 23 12:41:47 2008 |
| MD5 Checksum: | 8a7582ef7cdb8c929e8ad1d44c9b6017 |
|
| /// File Name: |
blindsql.tgz |
Description:
|
Blind SQL injection tool for MySQL servers using a true-false method. You can obtain MySQL information and extract data from tables without the use of quotes.
| | Author: | Pepelux | | Homepage: | http://www.enye-sec.org/ | | File Size: | 6850 | | Last Modified: | Apr 11 14:41:39 2008 |
| MD5 Checksum: | c2da36dbe2c1b79886994cd3815ae15c |
|
| /// File Name: |
fwknop-1.9.3.tar.gz |
Description:
|
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
| | Author: | Michael Rash | | Homepage: | http://www.cipherdyne.org/fwknop/ | | Changes: | Added MASQUERADE and SNAT support. Added hex_dump() feature. Some minor bug fixes. | | File Size: | 557119 | | Last Modified: | Apr 7 23:06:39 2008 |
| MD5 Checksum: | 0a13e94474284d1568cded14ba1f03f0 |
|
| /// File Name: |
FTPNullSearch02.tar.gz |
Description:
|
FTPNullSearch is a FTP scanner that can scan a range of IPs looking for servers that allow anonymous logins. Written for Linux.
| | Author: | Simpp | | File Size: | 4538 | | Last Modified: | Apr 4 18:49:04 2008 |
| MD5 Checksum: | 71b1286f3af2a1d9dd75a3de11410700 |
|
| /// File Name: |
proxystrike-v1.0.zip |
Description:
|
ProxyStrike is an active Web Application Proxy and is a tool designed to find vulnerabilities while browsing an application. It current has SQL injection and cross site scripting modules. This is the Windows version. Written in Python.
| | Author: | Carlos del Ojo Elias | | Homepage: | http://www.edge-security.com/ | | File Size: | 8579802 | | Last Modified: | Mar 31 22:41:52 2008 |
| MD5 Checksum: | bd80bf552c714af9a119ea7644e9f236 |
|
| /// File Name: |
proxystrike-v1.0.tar.gz |
Description:
|
ProxyStrike is an active Web Application Proxy and is a tool designed to find vulnerabilities while browsing an application. It current has SQL injection and cross site scripting modules. This is the Linux / Mac OSX version. Written in Python.
| | Author: | Carlos del Ojo Elias | | Homepage: | http://www.edge-security.com/ | | File Size: | 34585 | | Last Modified: | Mar 31 22:41:12 2008 |
| MD5 Checksum: | c21708cc21671b83f1bd286f0407e4bb |
|
| /// File Name: |
ScanPort.c |
Description:
|
Simple and compact TCP port scanner.
| | Author: | Simpp | | File Size: | 5277 | | Last Modified: | Mar 31 21:57:05 2008 |
| MD5 Checksum: | d487837208790298d438596160304aea |
|
| /// File Name: |
GoolagScanner-1.0.41.rar |
Description:
|
The Goolag Scanner is a tool that has been released by the Cult of the Dead Cow to automate Google hacking using 1,500 predefined search queries.
| | Author: | cDc | | Homepage: | http://www.goolag.org/ | | File Size: | 3487590 | | Last Modified: | Mar 24 17:20:48 2008 |
| MD5 Checksum: | 5cf3e369e5b4268523a9917f613cad99 |
|
| /// File Name: |
ws100-1.00.tgz |
Description:
|
Webshag is a multi-threaded, multi-platform web server audit tool. Written in Python, it gathers commonly useful functionalities for web server auditing like website crawling, URL scanning or file fuzzing. Linux and source tarballs included. Also, a Windows installer executable and a manual are included.
| | Homepage: | http://www.scrt.ch/pages_en/outils.html | | File Size: | 7901360 | | Last Modified: | Mar 20 17:08:01 2008 |
| MD5 Checksum: | ce1ccf6a7b0310c2eaa192b646f5af05 |
|
| /// File Name: |
cms_few.py.txt |
Description:
|
Joomla, Mambo, PHP-Nuke, and XOOPS CMS SQL injection vulnerability scanning tool written in Python.
| | Author: | Beenu Arora | | File Size: | 33734 | | Last Modified: | Mar 19 19:17:24 2008 |
| MD5 Checksum: | d5ff217131d723ba85752d5d3d810840 |
|
| /// File Name: |
FTP_AnoScan.tar.gz |
Description:
|
FTP_AnoScan is a FTP scanner that can scan a range of IPs looking for servers that allow anonymous logins. Written for Linux.
| | Author: | Simpp | | File Size: | 3640 | | Last Modified: | Mar 17 15:41:11 2008 |
| MD5 Checksum: | a7a7d49796a178e8b0be1a91d9152ec5 |
|
| /// File Name: |
fwknop-1.9.2.tar.gz |
Description:
|
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
| | Author: | Michael Rash | | Homepage: | http://www.cipherdyne.org/fwknop/ | | Changes: | Added more granular source IP and allowed IP tests so that access to particular internal IP addresses can be excluded in --Forward-access. Added BLACKLIST functionality to allow source IP addresses to easily be excluded from the authentication process. Various other bug fixes and additions. | | File Size: | 556923 | | Last Modified: | Mar 17 14:41:31 2008 |
| MD5 Checksum: | 7466c3a99d5be7965cff9d91f265e264 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
