NCPQuery is an open source tool that allows probing of a Novell Netware 5.0/5.1 server running IP. It uses TCP port 524 to enumerate objects with public read access, disclosing such information as account names, server services, and other various objects. A remote attacker can gather the equivalent information provided by the console command "display servers" and the DOS client command "cx /t /a /r" without authentication. Includes a Win32 port.
8f0ebc47aeb03c48c6970c78d3275d79Object Enumeration in Novell Environments - Due to a combination of legacy support and default settings, Novell Netware servers using native IP will leak system information via TCP port 524 when properly queried. In mixed Novell/Microsoft environments, information regarding Microsoft devices is leaked via the Service Advertising Protocol (SAP) table. Third party products, such as those used to synchronize directory services between environments can further the problem. Essentially, a remote attacker can gather the equivalent information provided by the console command "display servers" and the DOS client command "cx /t /a /r" without authentication.
ed52bf34d17e54095f1b53202c9dea03NCPQuery is an open source tool that allows probing of a Novell Netware 5.0/5.1 server running IP. It uses TCP port 524 to enumerate objects with public read access, disclosing such information as account names, server services, and other various objects. A remote attacker can gather the equivalent information provided by the console command "display servers" and the DOS client command "cx /t /a /r" without authentication.
294c7dddb91d74f1e182b0d96273012cSeveral previously unreleased utilities for hacking Netware 3. Qloop and Qloop 2 take superviser privileges if the superuser prints something. Addobj allows user to add objects specifying name, type and whether it's a login account. Qlogin users to login to accounts which are not user type. Lstpsrv lists print servers on target server.
62c8e9d516a2e6b03d65e76a12c49484Pandora v4 Beta 2.1 Netware Attack tool for Linux - Offline password auditing and Online attack for the X Windows platform on Linux. The Online software requires an IPX-aware kernel and root.
ac9f165a580e9bc451e0e66b15064028Pandora v4 Beta 2 Full Source Code for Linux.
b489e501ec9bd46220b75aa3007db7c5BETA - Documentation on using Pandora v4, with updated white papers, tips, and tricks. Included with the regular software, download this if you just wish to read the docs.
c934738488a063a95e729af1a948b9e8Pandora v4 Beta 2 Full Source Code for Windows.
72932bc7430e83bdf72c421871121c46Pandora v4 Beta 2 for Linux BETA 2 - Offline password auditing and Online attack for the X Windows platform on Linux. The Online software requires an IPX-aware kernel and root. THIS SOFTWARE IS SUBJECT TO CHANGE FAIRLY QUICKLY, SO CHECK BACK OFTEN. Tar xvzf in your fave dirctory and build an icon to online/Pan-on in your fave X Windows manager. Hack Netware 4 and 5 from Linux!
78833edcec432a1dbc763a63a10a8c78Pandora v4 Beta 2 Online for Windows NT BETA 2 - Online point and click attacking of Novell Netware from Windows NT. Currently spoofing works but lots of crashes on SP3 (we're working on it). Unzip and run the setup.exe program. DO NOT FORGET TO INSTALL THE PACKET DRIVER OR THIS PROGRAM WILL NOT WORK!
56291ee418dd3ffa928201e33aacad22Pandora v4 Beta 2 Online for Windows 95/98 BETA 2 - Online point and click attacking of Novell Netware from Windows 95/98. Unzip and run the setup.exe program. DO NOT FORGET TO INSTALL THE PACKET DRIVER OR THIS PROGRAM WILL NOT WORK!
be98f79ec47084cb6c27a97e0e8e8a04Pandora v4 Beta 2 Offline for Windows 95/98/NT BETA 2 - Offline Novell password auditing for the Windows platform. Unzip and run the setup.exe program. Fully optimized for Pentium platforms to maximize password cracking.
d18964bd4e6a4a953bda70f0fd495657A simple GUI trojan that when added to the autostart *see regedit* registry will log the passwords of the Novell NetWare School Vista user to c:\windows\samples .txt. Loginw31.exe is an exact duplicate of the login while Login31(2).exe is a system confirmation tricking the user to re-enter their password.
b658276334887b395ce4b44d8e5d7779Code for breakings Novell NetWare 4.x.
7da7cf4fd8b4e12ad9f09067c48a3158Pandora 2 for DOS.
b7ab0fffa8210a73f2dc11c221f5d3beimp v2.1 (self-extracting) - Imp is a NetWare password cracking utility with a GUI (Win95/NT). It loads account information directly from NDS or Bindery files and and allows the user to attempt to compromise the account passwords with various attack methods. It is based heavily on (and in fact "borrows" all the crypto code from) the Simple Nomad and NMRC. New features in this release: bindery support, template attack, passwords saved between sessions, optional installation utility, plus many, many bug fixes and code optimizations.
9864e6aa8052af1ebcc7da2748cc3cc0Imp v2.11 (self-extracting archives) is a NetWare password cracking utility with a GUI (Win95/NT). It loads account information directly from NDS or Bindery files and and allows the user to attempt to compromise the account passwords with various attack methods. It is based heavily on (and in fact "borrows" all the crypto code from) the "Pandora" project by Simple Nomad and the team at http://www.nmrc.org. Check out the Unofficial NetWare Hack FAQ for full details. Too many new features and bugfixes to list.
6252e4ecf757ab14206ebef4c8e83cc3FAQ for Pandora3.
2b331f3688a5eda7554b3e4f66e29beaimp v2.1 (zipped) - Imp is a NetWare password cracking utility with a GUI (Win95/NT). It loads account information directly from NDS or Bindery files and and allows the user to attempt to compromise the account passwords with various attack methods. It is based heavily on (and in fact "borrows" all the crypto code from) the Simple Nomad and NMRC. New features in this release: bindery support, template attack, passwords saved between sessions, optional installation utility, plus many, many bug fixes and code optimizations.
30188e82c1759cc2527cff2d6abd9a8cPandora3 API.
5983a0708c6405204d205f19c162d1d7Pandora 3 source code for DOS.
ba964f0b90aea1856077163d7fb127d4Pandora v3.01 binary for DOS.
980cca1b293259fc08284b966edd71d2Charles Sandmann's DPMI provider, binaries.
46fc67eb7b2fa00c7540aad478b3be4eGUI interface for Pandora.
24232cd94d1492bf5a6791f680f6006bImp v2.11 (non self-extracting archives) - Imp is a NetWare password cracking utility with a GUI (Win95/NT). It loads account information directly from NDS or Bindery files and and allows the user to attempt to compromise the account passwords with various attack methods. It is based heavily on (and in fact "borrows" all the crypto code from) the Simple Nomad and NMRC. New features in this release: bindery support, template attack, passwords saved between sessions, optional installation utility, plus many, many bug fixes and code optimizations.
1f65a94826493abd6cdb89539e6637fb
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed