Section: .. / UNIX / security /
| /// File Name: |
oat-source-1.3.0.zip |
Description:
|
OAT v1.3.0 is a set of tools which can be used to audit Oracle databases running on the Microsoft Windows platform. The Tools are Java based and were tested on both Windows and Linux. They should hopefully also run on any other Java platform.
| | Author: | Patrik Karlsson | | Homepage: | http://www.cqure.net/tools08.html | | Changes: | Added support for manually specifying remote os when running (O)racle (S)ystem (E)exec. Bugfixes. | | File Size: | 290909 | | Last Modified: | Jan 5 08:54:29 2003 |
| MD5 Checksum: | 48614184126e5cf6766faa4b17f95377 |
|
| /// File Name: |
paketto-1.0.tar.gz |
Description:
|
Paketto Keiretsu v1.0 implements many of the techniques described in recent TCP/IP Black Ops talks. Scanrand implements extremely fast and efficient port, host, and network trace scanning which uses cryptographic signatures. Minewt implements technique known as MAC Address Translation which allows several backend hosts to share the same IP address. Linkcat (lc) does at Layer 2 (Ethernet) what Netcat does for Layer 4-7(TCP/UDP). Phentropy plots large amounts of arbitrary data onto a three dimensional volumetric matrix allowing you to see the Strange Attractors which can be used to predict future values from an otherwise random system. Paratrace traces the path between a client and a server like traceroute but at Layer 4. It attaches to an existing, firewall-approved TCP flow, analyzing the resultant ICMP Time Exceeded replies. A slashdot thread on these tools is here.
| | Author: | Dan Kaminsky | | Homepage: | http://www.doxpara.com | | File Size: | 1130358 | | Last Modified: | Nov 19 03:50:36 2002 |
| MD5 Checksum: | f974f9f115a422c4ddff73fb1e98269c |
|
| /// File Name: |
paketto-1.10.tar.gz |
Description:
|
Paketto Keiretsu v1.10 implements many of the techniques described in recent TCP/IP Black Ops talks. Scanrand implements extremely fast and efficient port, host, and network trace scanning which uses cryptographic signatures. Minewt implements technique known as MAC Address Translation which allows several backend hosts to share the same IP address. Linkcat (lc) does at Layer 2 (Ethernet) what Netcat does for Layer 4-7(TCP/UDP). Phentropy plots large amounts of arbitrary data onto a three dimensional volumetric matrix allowing you to see the Strange Attractors which can be used to predict future values from an otherwise random system. Paratrace traces the path between a client and a server like traceroute but at Layer 4. It attaches to an existing, firewall-approved TCP flow, analyzing the resultant ICMP Time Exceeded replies. A slashdot thread on these tools is here.
| | Author: | Dan Kaminsky | | Homepage: | http://www.doxpara.com | | Changes: | Now has OpenBSD and Solaris support. A new Distco mode actively discovers the distance to remote hosts by analyzing the TTL in returned TCP RST packets. Libnet was patched to pack its variables. Traceroute hopcount determination was improved. | | File Size: | 900104 | | Last Modified: | Dec 24 11:30:08 2002 |
| MD5 Checksum: | 7fd82af09a6493f24c8681f7bbf03898 |
|
| /// File Name: |
pam_lockout-0.1.tar.bz2 |
Description:
|
PAM Lockout Module is used to lock out users or groups from access to the machine. The module only supports authentication queries, and the command line arguments are used to pass the names of the locked out users and groups.
| | Author: | Brian Weaver | | Homepage: | http://www.spellweaver.org/devel/ | | File Size: | 3152 | | Last Modified: | Mar 18 11:20:10 2004 |
| MD5 Checksum: | c10fb704796aee30c7965b89e9897b5d |
|
| /// File Name: |
passlogd-0.1a.tar.gz |
Description:
|
Passlogd is a sniffer which logs traffic on the UDP syslog port, allowing a syslog receiver to have no open ports.
| | File Size: | 7028 | | Last Modified: | Jun 7 14:54:23 2001 |
| MD5 Checksum: | 292f484a37e05dc8cf38c8e0e0b51bd6 |
|
| /// File Name: |
passlogd-0.1c.tar.gz |
Description:
|
Passlogd is a sniffer which logs traffic on the UDP syslog port, allowing a syslog receiver to have no open ports.
| | Changes: | Fixed parser. | | File Size: | 7700 | | Last Modified: | Jun 8 15:53:45 2001 |
| MD5 Checksum: | 8daf2d86ce9b7a319ae48ab1158375e8 |
|
| /// File Name: |
passlogd-0.1d.tar.gz |
Description:
|
Passlogd is a sniffer which logs traffic on the UDP syslog port, allowing a syslog receiver to have no open ports.
| | Author: | Christian Void | | Homepage: | http://www.morphine.com/src/passlogd.html | | Changes: | Fixed serious bugs that caused all hell to break loose. Since you do not like hell breaking loose in passlogd, you will upgrade. | | File Size: | 8178 | | Last Modified: | Nov 21 01:25:02 2001 |
| MD5 Checksum: | 859385e7cbfa3b9e193fc298e2f7a0f5 |
|
| /// File Name: |
proxychains-1.8.2.tar.gz |
Description:
|
Proxychains is a command line tool for Linux and Solaris which allows TCP tunneling trough one or multiple (chained) HTTP proxies.
| | Author: | Proxy Labs | | Homepage: | http://www.proxylabs.com/proxychains | | Changes: | Minor bugfixes, improved compilation on FreeBSD, OpenBSD, and Sun Solaris, and addressed some cross platform issues. | | File Size: | 185357 | | Last Modified: | Jun 11 00:05:49 2003 |
| MD5 Checksum: | 276ad24c2680010a96f5e027ea27dcee |
|
| /// File Name: |
proxychains-1.8.tar.gz |
Description:
|
Proxychains is a command line tool for Linux and Solaris which allows TCP tunneling trough one or multiple (chained) HTTP proxies.
| | Author: | Net Creature | | Homepage: | http://proxychains.sourceforge.net | | Changes: | Support for SOCKS4 and 5 protocols, more options, a proper installation guide, and more. | | File Size: | 186535 | | Last Modified: | Feb 3 22:10:26 2003 |
| MD5 Checksum: | 07ce3904e8260d78bf7ec4ae53e8ab2f |
|
| /// File Name: |
proxychains-3.0.tar.gz |
Description:
|
Proxychains is a command line tool for Linux and Solaris which allows TCP tunneling trough one or multiple (chained) HTTP proxies.
| | Author: | Proxy Labs | | Homepage: | http://www.proxylabs.com/proxychains | | Changes: | new feature - DNS resolving form behind proxy. | | File Size: | 327001 | | Last Modified: | Mar 8 01:18:25 2006 |
| MD5 Checksum: | 27d7564f4f0f708c5d7ac9c6b49d50fa |
|
| /// File Name: |
proxychains-3.1.tar.gz |
Description:
|
Proxychains is a command line tool for Linux and Solaris which allows TCP tunneling trough one or multiple (chained) HTTP proxies.
| | Author: | netcreature | | Homepage: | http://proxychains.sourceforge.net | | Changes: | fixes new DNS resolver. | | File Size: | 327057 | | Last Modified: | Mar 15 15:33:48 2006 |
| MD5 Checksum: | 4629c156001ab70aa7e98960eb513148 |
|
| /// File Name: |
rats-1.5.tar.gz |
Description:
|
RATS, the Rough Auditing Tool for Security, is a security auditing utility for C, C++, Python, Perl and PHP code. RATS scans source code, finding potentially dangerous function calls. The goal of the RATS project is to provide a starting point for performing manual security audits.
| | Author: | RATS Team | | Homepage: | http://www.securesw.com/rats/ | | Changes: | RATS version 1.5 is a bug fix release. | | File Size: | 301972 | | Last Modified: | May 15 01:00:03 2002 |
| MD5 Checksum: | 628e4c6000ab635b1894945c09cc1d2c |
|
| /// File Name: |
rats-2.0.tar.gz |
Description:
|
RATS, the Rough Auditing Tool for Security, is a security auditing utility for C, C++, Python, Perl and PHP code. RATS scans source code in order to find potentially dangerous function calls. The output generated by RATS can be used as a good starting point for performing manual security audits.
| | Author: | RATS Team | | Homepage: | http://www.securesw.com/rats/ | | Changes: | RATS version 2.0 has updated databases, better output features, a statistics feature and much more. | | File Size: | 326825 | | Last Modified: | Sep 20 03:20:00 2002 |
| MD5 Checksum: | 7eb9ea4262723b9b588628b497f85ea1 |
|
| /// File Name: |
rats-2.1.tar.gz |
Description:
|
RATS, the Rough Auditing Tool for Security, is a security auditing utility for C, C++, Python, Perl and PHP code. RATS scans source code in order to find potentially dangerous function calls. The output generated by RATS can be used as a good starting point for performing manual security audits. Readme available here.
| | Author: | RATS Team | | Homepage: | http://www.securesoftware.com/rats.php | | Changes: | Bugs fixed. | | File Size: | 326930 | | Last Modified: | Oct 17 01:58:08 2002 |
| MD5 Checksum: | adf31806f1eff0c353abcfd57653ecb3 |
|
| /// File Name: |
rootjail-0.1.tar.gz |
Description:
|
RootJail is a small program designed help run dangerous or unreliable services more securely. It works like init in that it spawns processes and watches for them, respawning them upon death. If the child is misbehaving, in that it's dieing repeatedly, it is then disabled. In addition, it uses chroot to prevent the service from accessing files outside its directory.
| | Homepage: | http://strange.nsk.yi.org/rj | | File Size: | 10482 | | Last Modified: | Feb 16 14:10:51 2001 |
| MD5 Checksum: | 5cd058119410bccaec0590d5f29526b4 |
|
| /// File Name: |
scponly-1.1.tgz |
Description:
|
Scponly is an alternative shell (of sorts) for system administrators who would like to provide file transfer over SSH without providing any remote execution privileges. Functionally, it is best described as a wrapper to the "tried and true" ssh suite of applications. Features extra logging, chroot, file listing, and security checks.
| | Author: | Joe | | Homepage: | http://sublimation.org/scponly | | Changes: | Fixed wildcard functionality. | | File Size: | 7099 | | Last Modified: | Feb 26 02:54:13 2001 |
| MD5 Checksum: | f7bf7f2ddc1e631e874a3c24823df5df |
|
| /// File Name: |
scponly-2.1.tgz |
Description:
|
scponly is an alternative shell for system administrators who would like to provide access to remote users to both read and write local files without providing any remote execution privileges. Functionally, it is a wrapper around the ssh suite of applications.
| | Author: | Joe | | Homepage: | http://sublimation.org/scponly | | Changes: | winscp compatibility was added. This is a substantial code change. | | File Size: | 12334 | | Last Modified: | Jul 9 01:39:52 2002 |
| MD5 Checksum: | 2c913afdf12feb800c5159f9bd178a70 |
|
| /// File Name: |
scponly-3.0.tgz |
Description:
|
scponly is an alternative shell for system administrators who would like to provide access to remote users to both read and write local files without providing any remote execution privileges. Functionally, it is a wrapper around the ssh suite of applications.
| | Author: | Joe | | Homepage: | http://sublimation.org/scponly | | Changes: | Now supports Solaris and gftp. System() has been dropped, and wildcards are expanded with glob() depending on the availability of this function. autoconf has been expanded. | | File Size: | 64924 | | Last Modified: | Sep 10 01:17:30 2002 |
| MD5 Checksum: | 517f6c0cbc8398feb545c48cea6ed29f |
|
| /// File Name: |
scponly-4.6.tgz |
Description:
|
scponly is an alternative shell for system administrators who would like to provide access to remote users to both read and write local files without providing any remote execution privileges. Functionally, it is a wrapper around the ssh suite of applications.
| | Author: | Joe | | Homepage: | http://sublimation.org/scponly | | Changes: | Added missing semicolon. | | File Size: | 96578 | | Last Modified: | Feb 2 06:23:32 2006 |
| MD5 Checksum: | 0425cb868cadd026851238452f1db907 |
|
| /// File Name: |
scponly.tgz |
Description:
|
Scponly is an alternative shell (of sorts) for system administrators who would like to provide file transfer over SSH without providing any remote execution privileges. Functionally, it is best described as a wrapper to the "tried and true" ssh suite of applications. Features extra logging, chroot, file listing, and security checks.
| | Author: | Joe | | Homepage: | http://sublimation.org/scponly | | File Size: | 7133 | | Last Modified: | Feb 22 15:28:21 2001 |
| MD5 Checksum: | 9955272245e9ffc232c3ba6607349d67 |
|
| /// File Name: |
sqlat-src-1.0.0.tar.gz |
Description:
|
SQLAT is a suite of tools which could be useful for pen-testing a MS SQL Server. The tools do dictionary attacks, upload files, read registry and dump the SAM. They do this by wrapping extended stored procedures. There is also a tool for doing a minimal analysis of a SQL Server with output as HTML. You need to be 'sa' to run some of the tools, but this usually isn't a problem. SQLAT works over port 1433.
| | Author: | Patrik Karlsson | | Homepage: | http://www.cqure.net/tools06.html | | File Size: | 81417 | | Last Modified: | Feb 26 01:03:15 2002 |
| MD5 Checksum: | d3ea5274c317e3c1b93feb79ab4f80d2 |
|
| /// File Name: |
sqlat-src-1.1.0.tar.gz |
Description:
|
SQLAT is a suite of tools which could be useful for pen-testing a MS SQL Server. The tools do dictionary attacks, upload files, read registry and dump the SAM. They do this by wrapping extended stored procedures. There is also a tool for doing a minimal analysis of a SQL Server with output as HTML. You need to be 'sa' to run some of the tools, but this usually isn't a problem. SQLAT works over port 1433.
| | Author: | Patrik Karlsson | | Homepage: | http://www.cqure.net/tools06.html | | Changes: | Applied patches from Eric Augustus and minor changes. | | File Size: | 50292 | | Last Modified: | Jun 18 03:29:11 2004 |
| MD5 Checksum: | 244ddbb483724666dbad252dd8916360 |
|
| /// File Name: |
taranis-0.81.tar.gz |
Description:
|
Taranis redirects traffic on switch hardware by sending spoofed ethernet traffic. This is not the same as an ARP poisoning attack as it affects only the switch, and doesn't rely on ARP packets. Plus, it is virtually invisible because the packets it sends aren't seen on any other port on the switch. Evading detection by an IDS that may be listening on a monitoring port is as simple as changing the type of packet that is sent by the packet spoofing thread.
| | Author: | Jonathan Wilkins | | Homepage: | http://www.bitland.net/taranis | | File Size: | 42978 | | Last Modified: | Aug 16 00:42:15 2001 |
| MD5 Checksum: | 9c30fff9a4e546b1a1435bb06e641aae |
|
| /// File Name: |
tcptraceroute-1.2.tar.gz |
Description:
|
Tcptraceroute is an implementation of traceroute which uses TCP SYN packets, instead of the more traditional UDP or ICMP ECHO packets. In doing so, it is able to trace through many common firewall filters.
| | Homepage: | http://michael.toren.net/code/tcptraceroute | | Changes: | Lots of new features, including the ability to send more than one probe to each hop, to send probes with the ECN bits set, to send probes of an arbitrary length, and many more. | | File Size: | 25096 | | Last Modified: | Aug 4 07:50:45 2001 |
| MD5 Checksum: | e31e3f5bfd817d32ed6d954382ca768d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
