Section: .. / UNIX / security /
| /// File Name: |
netjail-1.0.0.tar.gz |
Description:
|
netjail is a user-space mechanism for limiting the ability of a process to connect sockets in the PF_INET and PF_UNIX domain. The main motivation for this is to foil (or discover) spyware or "call home" code in suspect pieces of binary-distribution-only programs.
| | Author: | Craig B. Agricola | | Homepage: | http://netjail.sourceforge.net/ | | File Size: | 9014 | | Last Modified: | May 16 22:32:01 2004 |
| MD5 Checksum: | e883615692d89da35024e7ea80519d38 |
|
| /// File Name: |
jailed-1.0.0.tar.gz |
Description:
|
jailed implements a non-privileged jailroot. It allows an environment to be specified, does std(in/out/err) redirection, and can restart a failed child. Tested on OpenBSD and Gentoo Linux.
| | Author: | Johan Lindh | | Homepage: | https://sourceforge.net/projects/jailed/ | | File Size: | 7430 | | Last Modified: | May 1 12:57:36 2004 |
| MD5 Checksum: | 4a0cb99c457d1099c4c0fcb4486acac2 |
|
| /// File Name: |
pam_lockout-0.1.tar.bz2 |
Description:
|
PAM Lockout Module is used to lock out users or groups from access to the machine. The module only supports authentication queries, and the command line arguments are used to pass the names of the locked out users and groups.
| | Author: | Brian Weaver | | Homepage: | http://www.spellweaver.org/devel/ | | File Size: | 3152 | | Last Modified: | Mar 18 11:20:10 2004 |
| MD5 Checksum: | c10fb704796aee30c7965b89e9897b5d |
|
| /// File Name: |
netspoc-2.1.tar.gz |
Description:
|
Network Security Policy Compiler (NetSPoC) is a tool for security management of large networks with different security domains. It generates configuration files for packet filters controlling the borders of security domains. It provides its own language for describing security policy and the topology of a network. The security policy is a set of rules that state which packets are allowed to pass the network and which are not. NetSPoC is topology aware - a rule for traffic from A to B is automatically applied to all managed packet filters on the path from A to B.
| | Homepage: | http://netspoc.berlios.de | | Changes: | Routing protocol EIGRP is supported. Trailing comma is allowed at end of lists now. | | File Size: | 80924 | | Last Modified: | Feb 24 13:15:00 2004 |
| MD5 Checksum: | a43acd5ca6b7ad893841542786a2a35a |
|
| /// File Name: |
jail_1.9a.tar.gz |
Description:
|
Jail Chroot Project is an attempt of write a tool that builds a chrooted environment. The main goal of Jail is to be as simple as possible, and highly portable. The most difficult step when building a chrooted environment is to set up the right libraries and files. Here, Jail comes to the rescue with a tool to automatically configures & builds all the required files, directories and libraries.
| | Author: | Juan Casillas | | Homepage: | http://www.jmcresearch.com/projects/jail/ | | Changes: | Various feature enhancements. | | File Size: | 45210 | | Last Modified: | Feb 6 17:04:00 2004 |
| MD5 Checksum: | 06824a1255ce3da1bb86cb806bf15535 |
|
| /// File Name: |
ip-sentinel-0.9.tar.bz2 |
Description:
|
IP Sentinel is a tool that prevents unauthorized usage of IP addresses within an ethernet broadcast domain by answering ARP requests. After receiving faked replies, requesting parties store the MAC in their ARP tables and will send future packets to this invalid MAC, rendering the IP unreachable. Features chroot non-root operation.
| | Author: | Enrico Scholz | | Homepage: | http://www-user.tu-chemnitz.de/~ensc/ip-sentinel | | Changes: | Fixes the handling of MAC-annotated IPs when there exists a more general rule. It provides workarounds for gcc and dietlibc bugs also, and the behavior on duplicate networks with MAC-annotation is now predictable so that e.g. MAC-pools for networks can be configured. | | File Size: | 123603 | | Last Modified: | Dec 16 16:41:12 2003 |
| MD5 Checksum: | 668ea0be6aca5b4eb5232fb2572cdb4b |
|
| /// File Name: |
Impacket-0.9.4.tar.gz |
Description:
|
Impacket is a collection of Python classes for working with network protocols. Impacket is mostly focused on providing low-level programmatic access to the packets, however some protocols (for instance NMB and SMB) are implemented in a higher level as a foundation for other protocols. Packets can be constructed from scratch, as well as parsed from raw data, and the object oriented API makes it simple to work with deep hierarchies of protocols. Impacket is most useful when used together with a packet capture utility or package such as Pcapy, an object oriented Python extension for capturing network packets.
| | Homepage: | http://oss.coresecurity.com/ | | File Size: | 64387 | | Last Modified: | Nov 30 22:12:52 2003 |
| MD5 Checksum: | 83e742d5c664ba91af78617123435dd1 |
|
| /// File Name: |
dnsa-0.4.tar.gz |
Description:
|
DNS Auditor is a tool which checks for DNS security. Looks for DNS cache poisoning (using additional RR), DNS ID Spoofing, and more. More information in a related paper is available here.
| | Author: | Pierre Betouin | | Homepage: | http://www.packetfactory.net/projects/dnsa | | File Size: | 556273 | | Last Modified: | Oct 30 00:25:55 2003 |
| MD5 Checksum: | a4437986512a00b2b48e008f4cff60ce |
|
| /// File Name: |
ncovert-1.1.tgz |
Description:
|
NMRC covert channel using ISN to transmit data from one computer to another.
| | Author: | Simple Nomad | | Homepage: | http://nmrc.org | | File Size: | 7236 | | Last Modified: | Aug 6 11:42:10 2003 |
| MD5 Checksum: | 20f2269b9d920ddfe33c251d2ddde505 |
|
| /// File Name: |
hopfake-1.5.tgz |
Description:
|
Hopfake logs traceroute attempts and can also add some extra fake hops. Works well with TCP/UDP and ICMP-ECHO based traceroutes.
| | Author: | Michele Dallachiesa aka xenion | | Changes: | pca_findalldevs function has been removed. | | File Size: | 8882 | | Last Modified: | Jul 14 20:02:29 2003 |
| MD5 Checksum: | e1f09643c1aaf3ad026514cc3c829421 |
|
| /// File Name: |
cctt-0.1.7.tar.gz |
Description:
|
Cctt, or "Covert Channel Tunneling Tool", is a tool that presents several exploitation techniques allowing the creation of arbitrary data transfer channels in the data streams (TCP, UDP, and HTTP) authorized by a network access control system.
| | Author: | Simon Castro | | Homepage: | http://www.entreelibre.com/cctt/index_en.html | | File Size: | 328863 | | Last Modified: | Jun 14 14:06:56 2003 |
| MD5 Checksum: | e248718690748bf7828de1fcc9b83250 |
|
| /// File Name: |
proxychains-1.8.2.tar.gz |
Description:
|
Proxychains is a command line tool for Linux and Solaris which allows TCP tunneling trough one or multiple (chained) HTTP proxies.
| | Author: | Proxy Labs | | Homepage: | http://www.proxylabs.com/proxychains | | Changes: | Minor bugfixes, improved compilation on FreeBSD, OpenBSD, and Sun Solaris, and addressed some cross platform issues. | | File Size: | 185357 | | Last Modified: | Jun 11 00:05:49 2003 |
| MD5 Checksum: | 276ad24c2680010a96f5e027ea27dcee |
|
| /// File Name: |
flawfinder-1.22.tar.gz |
Description:
|
Flawfinder searches through source code for potential security flaws, listing potential security flaws sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function. Secure Programming HOWTO here. Full changelog available here.
| | Author: | David A. Wheeler | | Homepage: | http://www.dwheeler.com/flawfinder | | Changes: | Output format and packaging. | | File Size: | 95670 | | Last Modified: | Apr 9 23:52:29 2003 |
| MD5 Checksum: | a6746b5e8b443e777ebd223edae33e6d |
|
| /// File Name: |
proxychains-1.8.tar.gz |
Description:
|
Proxychains is a command line tool for Linux and Solaris which allows TCP tunneling trough one or multiple (chained) HTTP proxies.
| | Author: | Net Creature | | Homepage: | http://proxychains.sourceforge.net | | Changes: | Support for SOCKS4 and 5 protocols, more options, a proper installation guide, and more. | | File Size: | 186535 | | Last Modified: | Feb 3 22:10:26 2003 |
| MD5 Checksum: | 07ce3904e8260d78bf7ec4ae53e8ab2f |
|
| /// File Name: |
hopfake13.tgz |
Description:
|
Hopfake logs traceroute attempts and can also add some extra fake hops. Works well with TCP/UDP and ICMP-ECHO based traceroutes.
| | Author: | Michele Dallachiesa aka xenion | | File Size: | 8280 | | Last Modified: | Jan 22 02:53:18 2003 |
| MD5 Checksum: | 4f7502ad4d4c3f02a9f309ce8938449a |
|
| /// File Name: |
oat-source-1.3.0.zip |
Description:
|
OAT v1.3.0 is a set of tools which can be used to audit Oracle databases running on the Microsoft Windows platform. The Tools are Java based and were tested on both Windows and Linux. They should hopefully also run on any other Java platform.
| | Author: | Patrik Karlsson | | Homepage: | http://www.cqure.net/tools08.html | | Changes: | Added support for manually specifying remote os when running (O)racle (S)ystem (E)exec. Bugfixes. | | File Size: | 290909 | | Last Modified: | Jan 5 08:54:29 2003 |
| MD5 Checksum: | 48614184126e5cf6766faa4b17f95377 |
|
| /// File Name: |
paketto-1.10.tar.gz |
Description:
|
Paketto Keiretsu v1.10 implements many of the techniques described in recent TCP/IP Black Ops talks. Scanrand implements extremely fast and efficient port, host, and network trace scanning which uses cryptographic signatures. Minewt implements technique known as MAC Address Translation which allows several backend hosts to share the same IP address. Linkcat (lc) does at Layer 2 (Ethernet) what Netcat does for Layer 4-7(TCP/UDP). Phentropy plots large amounts of arbitrary data onto a three dimensional volumetric matrix allowing you to see the Strange Attractors which can be used to predict future values from an otherwise random system. Paratrace traces the path between a client and a server like traceroute but at Layer 4. It attaches to an existing, firewall-approved TCP flow, analyzing the resultant ICMP Time Exceeded replies. A slashdot thread on these tools is here.
| | Author: | Dan Kaminsky | | Homepage: | http://www.doxpara.com | | Changes: | Now has OpenBSD and Solaris support. A new Distco mode actively discovers the distance to remote hosts by analyzing the TTL in returned TCP RST packets. Libnet was patched to pack its variables. Traceroute hopcount determination was improved. | | File Size: | 900104 | | Last Modified: | Dec 24 11:30:08 2002 |
| MD5 Checksum: | 7fd82af09a6493f24c8681f7bbf03898 |
|
| /// File Name: |
lsrscan-0.5.tar.gz |
Description:
|
Lsrscan scans remote hosts to determine if the will reverse source routed connections, and hence are vulnerable to spoofing attacks.
| | Author: | Todd MacDermid | | Homepage: | http://www.synacklabs.net/projects/lsrscan | | Changes: | Version 0.5 allows scanning of multiple arbitrary CIDR blocks, and allows insertion of intermediate hops to obfuscate the originating scanner. | | File Size: | 60715 | | Last Modified: | Dec 3 00:24:38 2002 |
| MD5 Checksum: | 8169db155a40bc8b70f9a3a4f5a5950f |
|
| /// File Name: |
vncgame.c |
Description:
|
VNC Game implements a man in the middle attack which bypasses VNC's challenge/response authentication which keeps the password from being sniffed. Written for a security audit.
| | Author: | Rafael San Miguel Carrasco | | File Size: | 3877 | | Last Modified: | Dec 2 23:56:47 2002 |
| MD5 Checksum: | e1b221352334c8f46c82b5f9dbd47fcc |
|
| /// File Name: |
paketto-1.0.tar.gz |
Description:
|
Paketto Keiretsu v1.0 implements many of the techniques described in recent TCP/IP Black Ops talks. Scanrand implements extremely fast and efficient port, host, and network trace scanning which uses cryptographic signatures. Minewt implements technique known as MAC Address Translation which allows several backend hosts to share the same IP address. Linkcat (lc) does at Layer 2 (Ethernet) what Netcat does for Layer 4-7(TCP/UDP). Phentropy plots large amounts of arbitrary data onto a three dimensional volumetric matrix allowing you to see the Strange Attractors which can be used to predict future values from an otherwise random system. Paratrace traces the path between a client and a server like traceroute but at Layer 4. It attaches to an existing, firewall-approved TCP flow, analyzing the resultant ICMP Time Exceeded replies. A slashdot thread on these tools is here.
| | Author: | Dan Kaminsky | | Homepage: | http://www.doxpara.com | | File Size: | 1130358 | | Last Modified: | Nov 19 03:50:36 2002 |
| MD5 Checksum: | f974f9f115a422c4ddff73fb1e98269c |
|
| /// File Name: |
ip-sentinel-0.1.tar.bz2 |
Description:
|
IP Sentinel is a tool that prevents unauthorized usage of IP addresses within an ethernet broadcast domain by answering ARP requests. After receiving faked replies, requesting parties store the MAC in their ARP tables and will send future packets to this invalid MAC, rendering the IP unreachable. Features chroot non-root operation.
| | Author: | Enrico Scholz | | Homepage: | http://www-user.tu-chemnitz.de/~ensc/ip-sentinel | | File Size: | 90505 | | Last Modified: | Nov 16 23:30:31 2002 |
| MD5 Checksum: | 152aab997e109c66670c68eea2d93ab7 |
|
| /// File Name: |
flawfinder-1.21.tar.gz |
Description:
|
Flawfinder searches through source code for potential security flaws, listing potential security flaws sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function. Secure Programming HOWTO here. Full changelog available here.
| | Author: | David A. Wheeler | | Homepage: | http://www.dwheeler.com/flawfinder | | Changes: | Improved the default output, added a short tutorial to man page, fixed some bugs. | | File Size: | 95679 | | Last Modified: | Oct 17 02:05:10 2002 |
| MD5 Checksum: | 4f9a408b0c73d911bc4771b3c45ac9da |
|
| /// File Name: |
rats-2.1.tar.gz |
Description:
|
RATS, the Rough Auditing Tool for Security, is a security auditing utility for C, C++, Python, Perl and PHP code. RATS scans source code in order to find potentially dangerous function calls. The output generated by RATS can be used as a good starting point for performing manual security audits. Readme available here.
| | Author: | RATS Team | | Homepage: | http://www.securesoftware.com/rats.php | | Changes: | Bugs fixed. | | File Size: | 326930 | | Last Modified: | Oct 17 01:58:08 2002 |
| MD5 Checksum: | adf31806f1eff0c353abcfd57653ecb3 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
