Section: .. / Win /
|
Windows tools - This directory contains hundreds of assorted Windows security tools. Try them out first on a test machine first unless you are sure you know what you are doing.
|
| /// File Name: |
x1bscanner.rar |
Description:
|
x1bscan is a console based tcp connect() port scanner with HTTP and service banner grabbing. Written in perl and compiled into a Windows executable.
| | Author: | x1b | | File Size: | 1070423 | | Last Modified: | Dec 14 23:49:14 2003 |
| MD5 Checksum: | 139fd385b3f2a4968e99bd935aee4273 |
|
| /// File Name: |
IRCR.zip |
Description:
|
IRCR is a collection of tools that gathers and/or analyzes forensic data on a Microsoft Windows system. You can think of this as a snapshot of the system in the past. It is similar to TCT by Dan Farmer and Wietse Venema, as most of the tools are oriented towards data collection rather than analysis. The idea of IRCR is that anyone could run the tool and send the output to a skilled Windows forensic security person for further analysis.
| | Author: | John McLeod | | Homepage: | http://www.incident-response.org/IRCR.htm | | File Size: | 1054972 | | Last Modified: | Apr 24 21:10:04 2001 |
| MD5 Checksum: | 59c334066248e963dc735f43cbbd76dd |
|
| /// File Name: |
atk-2.0.zip |
Description:
|
Attack Tool Kit, or ATK, was developed to provide a very small and handy tool for performing simple security checks on Windows. It requires minimal interaction and is very modular in design.
| | Author: | Marc Ruef | | Homepage: | http://www.computec.ch/projekte/atk/ | | File Size: | 992092 | | Last Modified: | Sep 8 18:00:37 2004 |
| MD5 Checksum: | dd0ae72cd5aeefc2ae1d1ea3072ee6a4 |
|
| /// File Name: |
process_stalker.zip |
Description:
|
Process Stalker is a software package that combines the process of run-time profiling, state mapping, and tracing. Consisting of a series of tools and scripts, the goal of a successful stalk is to provide the reverse engineer with an intuitive visual interface to filtered, meaningful, run-time block-level trace data.
| | Author: | Pedram Amini | | Homepage: | http://labs.idefense.com/ | | File Size: | 978069 | | Last Modified: | Jul 7 09:39:47 2005 |
| MD5 Checksum: | 279fef6cbfb8a5edddc8456f6942d13b |
|
| /// File Name: |
ao20pr_p.zip |
Description:
|
Advanced Office 2000 Password Recovery (professional edition) - Recovers lost passwords for Microsoft Word, Excel, Access, PowerPoint 97, Project, Money, Outlook, Backup, Schedule+, Mail, IE 3, 4, and 5, Visio 4 and 5, and others. All passwords are decrypted instantly except Word/Excel 97/2000 which has strong crypto and is only vulnerable to brute force attack. 30 day trial, although it does not actually expire.
| | Homepage: | http://www.elcomsoft.com/ao2000pr.html | | File Size: | 971536 | | Last Modified: | Dec 15 20:05:24 2000 |
| MD5 Checksum: | c85be087f2ef1e373d2703874add42b4 |
|
| /// File Name: |
spade110.exe |
Description:
|
Sam Spade is an integrated network query tool for Windows 95 and NT4.0. This latest release contains the following tools in a multi-threaded, multi-window environment: ping, nslookup, whois, IP block whois, dig, traceroute, finger, SMTP VRFY, web browser, keep-alive, DNS zone transfer, SMTP relay check, Usenet cancel check, website download, website search, email header analysis. This is a 5-star Packet Storm Security favorite! Freeware by Blighty Designs
| | File Size: | 946764 | | Last Modified: | Aug 16 20:04:14 1999 |
| MD5 Checksum: | 9add42a5fdab28fc5da74c7f44ed72ca |
|
| /// File Name: |
spade107.zip |
Description:
|
Sam Spade.
| | File Size: | 935270 | | Last Modified: | Aug 16 20:04:12 1999 |
| MD5 Checksum: | e2739358c59315b32c6b1d6b5609a55b |
|
| /// File Name: |
gswtnet.zip |
Description:
|
Windows NT Secure Telnet Server with FULL data stream encryption. Loads of features, turns NT servers into true, secure multi-user systems.
| | Author: | Georgia Softworks | | File Size: | 933204 | | Last Modified: | Aug 16 20:04:13 1999 |
| MD5 Checksum: | 6695c700cf15757bcea3dfbae60de133 |
|
| /// File Name: |
celsetupb.exe |
Description:
|
ClearEventLog is a freeware NT application that can clear the system, application, and security event logs via a simple command-line operation.
| | Author: | Mike Machado | | File Size: | 925675 | | Last Modified: | Oct 7 19:58:20 1999 |
| MD5 Checksum: | 3cd1c86b7dd6058398dbf45bc5e2faa1 |
|
| /// File Name: |
devicelock.zip |
Description:
|
Devicelock gives network administrators control over which users can access what removable devices (floppies, Magneto-Optical disks, CD-ROMs, ZIPs, etc.) on a local computer. It can protect network and local computers against viruses, trojans and other malicious programs often injected from removable disks. This version is for Windows 2000/NT. Windows ME version available here.
| | Homepage: | http://ntutility.com/dlme/ | | File Size: | 892586 | | Last Modified: | Oct 30 19:10:44 2000 |
| MD5 Checksum: | da3c0f5d58230b6048055ef47632cdb9 |
|
| /// File Name: |
xrunas12eval.zip |
Description:
|
XRunAs is a tool that allows administrators to run commands on remote computers under the context of a specified user account without the use of the Schedule service. If XRunAs is used in conjunction with a domain account, commands that are run will be able to access network resources given that the domain account used to run the command has access to the network resource. All information that is transferred over the network while using XRunAs is encrypted using a standard encryption algorithm.
| | Author: | Lazy Sysadmin | | Homepage: | http://lazysysadmin.com | | Changes: | Removed dependency on srvany.exe, enhanced speed. | | File Size: | 887686 | | Last Modified: | May 23 03:50:48 2003 |
| MD5 Checksum: | 4a8cfb4b8978eb04f257f14322bbb0c7 |
|
| /// File Name: |
crypt2pa.zip |
Description:
|
Encryption library for NT kernel.
| | File Size: | 874656 | | Last Modified: | Aug 16 20:04:09 1999 |
| MD5 Checksum: | 09b6c6aea0e4336961a28ac836695243 |
|
| /// File Name: |
spade106.zip |
Description:
|
The ULTIMATE Swiss Army Knife. Ping, nslookup, whois, IP block whois, dig, traceroute, finger, SMTP VRFY, web browser, keep-alive, DNS zone transfer, SMTP relay check, USENET cancel check, website download, website search, email header analysis. For Windows 95/98/NT. Freeware from Blighty Designs
| | File Size: | 865893 | | Last Modified: | Aug 16 20:04:12 1999 |
| MD5 Checksum: | d836eca8854db2007985d8a3633b8848 |
|
| /// File Name: |
leviathan.zip |
Description:
|
The Leviathan Auditor is an enumeration and penetration testing tool which runs on and against Microsoft machines. It dumps Users, Groups, Services, Shares, Transport devices and MAC addresses over port 139 or 445. It enumerates RPC portmapper entries over port 135 and also tries to exploit MS SQL servers if it is presented. With its built-in SQL Server exploit you can execute remote commands as Local System. Source code is freely available on demand.
| | Author: | Egemen Tas | | File Size: | 862742 | | Last Modified: | Jan 25 01:54:20 2002 |
| MD5 Checksum: | 6904f9d4553cfc85ac0b86d6f3bf1aa5 |
|
| /// File Name: |
nbtenum31eval.zip |
Description:
|
NetBIOS Enumeration Utility v3.1 is a utility for Windows which can be used to enumerate NetBIOS information from one host or a range of hosts. The information that is enumerated includes the account lockout threshold, local groups and users, global groups and users, shares, and more. This utility will also perform password checking with the use of a dictionary file. Runs on Windows NT 4.0/2000/XP.
| | Author: | Lazy Sysadmin | | Homepage: | http://lazysysadmin.com/ | | File Size: | 860044 | | Last Modified: | May 7 17:50:44 2003 |
| MD5 Checksum: | 1cb19a7ce55cf92c03f23537d2cd7fb2 |
|
| /// File Name: |
httprint_win32_200.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the Windows release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | File Size: | 844613 | | Last Modified: | Jan 8 00:39:43 2004 |
| MD5 Checksum: | 483f22a5e6ad0041e7920303632012aa |
|
| /// File Name: |
httprint_win32_107.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. The current version of httprint can import web servers from nmap network scans, if they are saved in XML format. Microsoft Windows version.
| | Homepage: | http://net-square.com/httprint/ | | File Size: | 826843 | | Last Modified: | Oct 15 00:06:41 2003 |
| MD5 Checksum: | 1277e772b4871fba372f9ec8d18d39c6 |
|
| /// File Name: |
ou-audit2002.msi |
Description:
|
Opticon Users 2002 is a simple tool to show administrators who is logged onto the network and from what workstation that user is accessing the network from. Information about the workstation used to logon from, the domain, the logon server, and the date/time of logon is also displayed. This tool makes it easy to spot unauthorized logons from a certain workstation or logons using an administrative account.
| | Author: | Security Storm | | Homepage: | http://www.securitystorm.net/ | | File Size: | 815104 | | Last Modified: | Oct 25 01:26:57 2002 |
| MD5 Checksum: | 44f1c5880e93cbc062786c7e81bc4ef4 |
|
| /// File Name: |
httprint_win32_301.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the Windows release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | Changes: | New multi-threaded engine. SSL in formation gathering. Automatic SSL port detection. Various bug fixes. | | File Size: | 811893 | | Last Modified: | Dec 28 18:16:18 2005 |
| MD5 Checksum: | a66408308c3f540030bbb0d59716b032 |
|
| /// File Name: |
httprint_win32_202.zip |
Description:
|
httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database. httprint can import web servers from nmap network scans, if they are saved in XML format. The current version adds the ability to save reports in CSV and XML formats, and features a completely new method of scoring by confidence ratings to minimize false positives. This version is the Windows release.
| | Author: | Saumil Shah | | Homepage: | http://net-square.com/httprint/ | | Changes: | Version 202 has a completely rewritten engine, internally, to increase efficiency and portability across platforms. A minor feature enhancement in version 202 is the ability to automatically follow 301 and 302 redirections. | | File Size: | 797036 | | Last Modified: | May 25 17:55:14 2004 |
| MD5 Checksum: | 20bc7ccb135a893b243cf4ebf624a8a1 |
|
| /// File Name: |
Stealth-1.0-b30.zip |
Description:
|
The Stealth HTTP Security Scanner v1.0b30 provides more than 12000 http vulnerability checks. Runs on Win32 and Linux under Wine. Free.
| | Author: | Felipe Moniz | | Homepage: | http://www.hideaway.net/stealth/ | | Changes: | New holes added: IDA "Code Red" Vulnerability and IIS Double Decode. Added Scan List and German language support. | | File Size: | 777116 | | Last Modified: | Jul 29 05:26:09 2001 |
| MD5 Checksum: | 75e04c3946ce2203ce59ac1ca9a63f12 |
|
| /// File Name: |
eraser52.zip |
Description:
|
Eraser is a utility for all versions of Windows which securely deletes data so it can not be undeleted easily.
| | Homepage: | http://www.tolvanen.com/eraser | | File Size: | 768871 | | Last Modified: | Oct 26 01:08:38 2001 |
| MD5 Checksum: | 658df79a6420fafa9ad4525f41c6b590 |
|
| /// File Name: |
Stealth-2.0-b35.zip |
Description:
|
The Stealth HTTP Security Scanner provides more than 13000 http vulnerability checks. Runs on Win32 and Linux under Wine. Free.
| | Author: | Felipe Moniz | | Homepage: | http://www.hideaway.net/stealth/ | | Changes: | More checks. | | File Size: | 737218 | | Last Modified: | Nov 5 01:32:47 2001 |
| MD5 Checksum: | 8e091abdb6e512fca19f4f8aa64c19e5 |
|
| /// File Name: |
sclean10.zip |
Description:
|
ShareClean is free Win95 software which allows you to control Win95 file sharing to prevent access to your drives by other high speed internet users while online.
| | Author: | Kevin McAleavey | | Homepage: | http://www.nsclean.com | | File Size: | 737189 | | Last Modified: | Dec 17 13:41:47 1999 |
| MD5 Checksum: | 379db47883788db2dc3bf1127206f534 |
|
| /// File Name: |
bcwipe.exe |
Description:
|
NT file wipe utility. Disables intruder restore capability.
| | File Size: | 736691 | | Last Modified: | Aug 16 20:04:08 1999 |
| MD5 Checksum: | 833084bfade27b5c6280b8e1b6da749a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
