Section: .. / Win /
|
Windows tools - This directory contains hundreds of assorted Windows security tools. Try them out first on a test machine first unless you are sure you know what you are doing.
|
| /// File Name: |
sqldict.exe |
Description:
|
Sqldict is a dictionary attack tool for Microsoft SQL Server which lets you test if the accounts are strong enough to resist an attack or not.
| | Author: | Arne Vidstrom | | Homepage: | http://www.ntsecurity.nu/toolbox/sqldict/ | | File Size: | 135168 | | Last Modified: | Nov 9 03:35:13 2000 |
| MD5 Checksum: | 0895cc3c5abeeec189431c9ed11fb307 |
|
| /// File Name: |
pshtoolkit-1.1.tgz |
Description:
|
The Pass-The-Hash Toolkit contains utilities to manipulate the Windows Logon Sessions maintained by the LSA (Local Security Authority) component. These tools allow you to list the current logon sessions with its corresponding NTLM credentials (e.g.: users remotely logged in thru Remote Desktop/Terminal Services), and also change in runtime the current username, domain name, and NTLM hashes (YES, PASS-THE-HASH on Windows!). Both source tarball and binary tarballs are included.
| | Author: | Hernan Ochoa | | Homepage: | http://oss.coresecurity.com/ | | Changes: | Improvements for the German and French versions of Microsoft Windows XPSP2, Windows 2003 SP1/SP2, and more. | | File Size: | 134356 | | Last Modified: | Sep 5 01:08:20 2007 |
| MD5 Checksum: | c3c250b9475fbfe42cf275475d05bd3c |
|
| /// File Name: |
backstealth.zip |
Description:
|
Backstealth is a tool which bypasses outbound restrictions of personal firewalls by embedding a http client in a dll. Bypasses Kerio Personal Firewall, McAfee Personal Firewall, Norton Internet Security 2002, Sygate Personal Firewall Pro, and Tiny Personal Firewall.
| | Author: | Paolo Iorio | | Homepage: | http://piorio.supereva.it/backstealth.htm | | File Size: | 125360 | | Last Modified: | May 3 20:37:25 2002 |
| MD5 Checksum: | 3e7188d7f3e25f5427a91fe680e6fd1d |
|
| /// File Name: |
pshtoolkit-1.0.tgz |
Description:
|
The Pass-The-Hash Toolkit contains utilities to manipulate the Windows Logon Sessions maintained by the LSA (Local Security Authority) component. These tools allow you to list the current logon sessions with its corresponding NTLM credentials (e.g.: users remotely logged in thru Remote Desktop/Terminal Services), and also change in runtime the current username, domain name, and NTLM hashes (YES, PASS-THE-HASH on Windows!). Both source tarball and binary tarballs are included.
| | Author: | Hernan Ochoa | | Homepage: | http://oss.coresecurity.com/ | | File Size: | 122577 | | Last Modified: | Aug 16 04:51:32 2007 |
| MD5 Checksum: | 93512dd3912e0cbc8c16551c50592991 |
|
| /// File Name: |
VB_Script_Exe_Creator.zip |
Description:
|
VB Script Creator takes an executable, and stores it in ascii codes into a vb script. When this vb script is executed, it will create a new exe and execute it. It could be useful but it shows how an executable can live dormant inside a vb script. Windows source included.
| | Author: | Day-Jay | | File Size: | 117944 | | Last Modified: | Feb 26 03:22:00 2001 |
| MD5 Checksum: | 28517a892e018f0e4b5605b3579da567 |
|
| /// File Name: |
waterfall_122.zip |
Description:
|
Decreases your CPU temp by up to 30c. Works with Intel, Cyrix, AMD, and IDT CPU's, and does not compromise performance.
| | File Size: | 113591 | | Last Modified: | Aug 16 20:04:10 1999 |
| MD5 Checksum: | 4c2a2c2695311a573eb3a485dd067876 |
|
| /// File Name: |
uhooker_v1.0.tgz |
Description:
|
The Universal Hooker is a tool to intercept execution of programs. It enables the user to intercept calls to API calls inside DLLs, and also arbitrary addresses within the executable file in memory. The Universal Hooker tries to create very simple abstractions that allow a user of the tool to write hooks for different API and non-API functions using an interpreted language (python), without the need to compile anything, and with the possibility of changing the code that gets executed when the hooked function is called in run-time.
| | Homepage: | http://oss.coresecurity.com/projects/uhooker.htm | | File Size: | 113511 | | Last Modified: | Jun 28 23:07:25 2006 |
| MD5 Checksum: | 3ce6915a59ff45b32055d496e4f67760 |
|
| /// File Name: |
nemesis11.zip |
Description:
|
Tired of all those annoying windows trojans? are you a sysadmin who's afraid that unsuspecting users on his/her network might run trojans and then come to him with complaints? wanna help your friends by scanning them for trojans? wanna be the greatest script kiddie in the world? then download this super-fast local/remote remote administration trojans scanner (scans for hundreds of annoying trojans).
| | Author: | Raven. | | Homepage: | http://blacksun.box.sk | | File Size: | 112232 | | Last Modified: | Oct 25 14:32:38 1999 |
| MD5 Checksum: | e6df6765681bcad9389ddca60ee43222 |
|
| /// File Name: |
Tracert011f.zip |
Description:
|
Traceroute - specially for quick network route discovery (1-2 secounds to find the route). Unlike standard traceroute it traces all the way to host at once, therefore saving time. Also measures the time neccesary for packet to return and looks up all intermediate routers. Unlike Windows tracert it's based on UDP protocol, therefore allowing to trace networks where incoming ICMP messages are filtered.
| | Author: | Averk | | Homepage: | http://nscan.hypermart.net | | File Size: | 109690 | | Last Modified: | Jul 12 13:11:36 2000 |
| MD5 Checksum: | 7b7b16027951d9e22c9d70d39d47ddc2 |
|
| /// File Name: |
wsc11.zip |
Description:
|
Winsniffer is a packet sniffer for the Windows console designed to be effecient and flexible. Screenshot available here. This is a trial version.
| | Homepage: | http://winsniff.hypermart.net | | File Size: | 102335 | | Last Modified: | Sep 30 21:45:10 2000 |
| MD5 Checksum: | 86e3294892d57e11ec7d6235a112e971 |
|
| /// File Name: |
pst19upg.zip |
Description:
|
This utility was originally designed to upgrade the Microsoft Outlook PST format to version 19. One of its side effects, however, is that it can strip out the PST (Outlook) password. This can therefore be used to recover passwords you may have forgotten on your PST files.
| | File Size: | 102267 | | Last Modified: | Nov 15 22:11:54 2000 |
| MD5 Checksum: | 2f64a589b2164952251db67be3a03d65 |
|
| /// File Name: |
vxd.txt |
Description:
|
This article explains the basics of Windows 9x kernel module development and contains the full source of a VXD based loadable kernel module (LKM) named Burning Chrome which captures TCP and dialup traffic and emails captured passwords. It is virtually undetectable with standard windows tools.
| | Author: | Solar Eclipse | | File Size: | 97123 | | Last Modified: | Jul 12 20:36:01 2000 |
| MD5 Checksum: | 5ad2975cd03a01b3de5ce1b521f22dda |
|
| /// File Name: |
lsadump2.zip |
Description:
|
This is an application to dump the contents of the LSA secrets on a machine, provided you are an Administrator. It uses the same technique as pwdump2 to bypass restrictions that Microsoft added to LsaRetrievePrivateData(), which cause the original lsadump to fail.
| | Author: | Izar | | File Size: | 97086 | | Last Modified: | Feb 17 14:25:38 2000 |
| MD5 Checksum: | 2d8b4b37e20f1a5249e5be486bfa1d17 |
|
| /// File Name: |
nc11nt.zip |
Description:
|
Weld Pond's port of Hobbit's NetCat, the network Swiss Army knife.
| | File Size: | 96561 | | Last Modified: | Aug 16 20:04:09 1999 |
| MD5 Checksum: | ec23eb106197f0616a7b2b5556ad72bd |
|
| /// File Name: |
rinetd.zip |
Description:
|
rinetd redirects TCP connections from one IP address and port to another. rinetd is a single-process server which handles any number of connections to the address/port pairs specified in the file /etc/rinetd.conf. Since rinetd runs as a single process using nonblocking I/O, it is able to redirect a large number of connections without a severe impact on the machine. For Windows 95/98/NT.
| | Homepage: | http://www.boutell.com/rinetd/ | | File Size: | 85303 | | Last Modified: | Aug 16 20:04:16 1999 |
| MD5 Checksum: | d1fd34b4bf6fb523c1c4dda92d832d71 |
|
| /// File Name: |
Adig02f.zip |
Description:
|
Advanced DIG is a TCP-based DNS client for Windows that supports most of the available options, including AXFR zone transfer. It features an extended mode which utilizes a TCP connection to acquire any info that can be supplied by server and supports 20 different queries to nameserver.
| | Author: | Averk | | Homepage: | http://nscan.hypermart.net | | File Size: | 84770 | | Last Modified: | Jul 12 13:22:19 2000 |
| MD5 Checksum: | 7e3fc8430f09ece5d1ec86b15a8e0911 |
|
| /// File Name: |
RegistryAnalyzer.zip |
Description:
|
Registry Analyzer is a program that can analyze a Windows 95/98 registry file (user.dat,system.dat). Use this program to read the registry database of another computer registry file.
| | Author: | TheWiz | | File Size: | 83077 | | Last Modified: | Apr 12 16:04:00 2000 |
| MD5 Checksum: | eb45ece94f91f65ba2f53de76766df3e |
|
| /// File Name: |
getwksinfo.exe |
Description:
|
Getwksinfo is a little program coded for Windows 95/98/NT/2000 that gets the parameters of a remote Windows NT server, parameters include NetBIOS name, NetBIOS domain/workgroup, amount of users currently logged in, and remote operating system version.
| | Author: | Missnglnk | | Homepage: | http://tribune.intranova.net/archives/ | | File Size: | 80896 | | Last Modified: | Jan 11 16:30:29 2000 |
| MD5 Checksum: | 8d0c2ceb3d5086baac6b4dbd29ecfdb8 |
|
| /// File Name: |
Whois02f.zip |
Description:
|
Whois - flexible whois client that automatically finds requested info in the 4 predefined databases and able to search in user-defined databases also. Supports easy linked navigation in the database, data saving, interface customization and holds the list of old requests.
| | Author: | Averk | | Homepage: | http://nscan.hypermart.net | | File Size: | 80233 | | Last Modified: | May 22 14:19:40 2000 |
| MD5 Checksum: | cc483218f0a07d98573bec7841ae2111 |
|
| /// File Name: |
webscan.exe |
Description:
|
This is a web security scanner designed to find known web server security issues. Runs on Windows 95, 98, NT 4 and 2000.
| | Author: | Cerberus Information Security | | Homepage: | http://www.cerberus-infosec.co.uk/ | | File Size: | 77824 | | Last Modified: | Dec 3 19:33:52 1999 |
| MD5 Checksum: | 6b6fcc6307e6123f503525fd48f76a94 |
|
| /// File Name: |
nncookct.zip |
Description:
|
Netscape Navigator Cookie Cutter - Let you choose which cookies to use under Windows Netscape.
| | Homepage: | http://www.roninsg.com/nncookct.htm | | File Size: | 77496 | | Last Modified: | Jan 1 00:35:31 2001 |
| MD5 Checksum: | 86e6e99134299a355ec53ba16ceab2d4 |
|
| /// File Name: |
uhooker_v1.3.tgz |
Description:
|
The Universal Hooker is a tool to intercept execution of programs. It enables the user to intercept calls to API calls inside DLLs, and also arbitrary addresses within the executable file in memory. The Universal Hooker tries to create very simple abstractions that allow a user of the tool to write hooks for different API and non-API functions using an interpreted language (python), without the need to compile anything, and with the possibility of changing the code that gets executed when the hooked function is called in run-time.
| | Homepage: | http://oss.coresecurity.com/projects/uhooker.htm | | Changes: | Several bug fixes. | | File Size: | 74047 | | Last Modified: | Dec 17 21:10:18 2007 |
| MD5 Checksum: | 677ed30fea6cdd16a26416b1b89bf16c |
|
| /// File Name: |
proton-1.0.0.4-setup.zip |
Description:
|
Proton is a proxy tunneling application for Windows which supports SOCKS v4 and 5. When a connection is established with ProTon, it'll create a chain of proxy connections through many proxy servers until it reaches its destination.
| | Author: | movax4c00 int21 | | Homepage: | http://www.ftpscanner.com/proton.htm | | File Size: | 70571 | | Last Modified: | Oct 23 22:37:56 2001 |
| MD5 Checksum: | 049cd55543e4824a92a1808c1d816f98 |
|
| /// File Name: |
NBTEnum21.zip |
Description:
|
NetBIOS Enumeration Utility v2.0 is a utility for Windows which can be used to enumerate NetBios information from one single host or an entire class C subnet. The information that is enumerated includes the account lockout threshold, local groups and users, global groups and users, and shares. This utility will also perform password checking with the +use of a dictionary file. Runs on Windows NT 4.0/2000/XP.
| | Author: | NTSleuth | | Homepage: | http://ntsleuth.0catch.com/ | | Changes: | Bug fixes. | | File Size: | 68802 | | Last Modified: | Mar 22 11:01:20 2002 |
| MD5 Checksum: | a606b7498943d3b29950151b2b988cd0 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
