THC Backdoor ported to OpenBSD - This is a simple but useful backdoor for OpenBSD based on a FreeBSD lkm by pragmatic/THC.
11ada1cc8831dc0a793e5b9c3a2c9b78SRaw for OpenBSD is a kld which makes all users able to open raw sockets. Supported protocols are IPPROTO_RAW, IPPROTO_ICMP, IPPROTO_IPIP, IPPROTO_IPV4, IPPROTO_IGMP.
f5b4d4b2eec79664d724e25cee06d8b2SRaw is a kld for FreeBSD which disables EPERM in socket() and permits to allocate inpcb even if the socket is raw and users haven't root permissions bypassing suser() in pru_attach() functions.
eb7720cc8aef3dc091d05c01307c65d8Syscall Monitor for FreeBSD - Using this tool you are allowed to monitor the use of the syscalls on your system and to prevent their execution for the specified users/groups.
aeb3c22d03b85b81f229dea7e57eb14cSecurelevel Bypass - This kld gives you permission to load/unload a kld and modify a sysctl value even if you aren't root and securelevel is higher than 0.
7e09e9214328484326990e89f0fb198fKsec (Kernel Security Checker) is a tool for FreeBSD and OpenBSD which can find an attacker by direct analysis of the kernel via /dev/mem, bypassing the hiding techniques of the intruder (kernel static recompilation/use of LKMs). KSec can find the modified syscalls from userspace, detect the promisc interfaces, find the modifications applied to a protocol and much more.
d084d77610110ba6fa0784418443629bLKM for OpenBSD which makes ipfilter always accept packets from a certain IP.
152172a4150816265d58039a7e404402Anti-spoofing lkm for OpenBSD via setsockopt() - detects and logs IP header manipulation.
29ccce542461940624e0353917b43a0fTotal obscurity for BPF Promisc Mode. OpenBSD Port.
2a1531337ab8059845db579358fa3212SRaw for FreeBSD ( sock.c ) - Enables all users to open raw sockets.
fe4b6efeed4426441e7e3672834666b6LKM for FreeBSD which makes ipfilter always accept packets from a certain IP.
3eeebbc3a32fda0cfed1a8b824b91b12DETECT UDP SP00FiNG ON OUR FREEBSD BOX VIA KLD.
60ca24d54f0af45281bd803a2872f1bbLKM Detector - This module lets you a compare between a syscall & its kernel function, so you can detect any lkm which modifies your system. More documentation available here.
4e1b0504e4fda8949438eef407231207s0ftpj snmp community name sniffer.
64d11e37b41195d8296d46a08b78702fIP_HDRINCL protection beta version 1.
ba2fa75ab5d9b47db5ec5f72b25f67dcTotal obscurity for BPF Promisc Mode.
65900333453657ee11bb728a1ca18714This simple source code uses sysctlbyname() to fetch statistics for a protocol that you can use for security purposes or for kernel testing.
fbb0c43d5b6b7a83551bd7c3a6665bc7IGMP/ICMP/IPIP/IDP/RSVP/IPIP/IPPROTO_RAW KERNEL CHECKER.
f1bd4cdbfbaff4500c5d2246177a3151Anti-spoofing lkm for FreeBSD via setsockopt() - detects and logs IP header manipulation.
28aa34facd8f7a86b9811e2bb464b061Simple Example of log for bad packets.
e439b0d8f1d81c35ab09608ca0b56782This kld gives you an example of how you can modify the output function of an Ethernet Interface.
43b56ecf3b62ad03acbdafda52ae8e93IPFW-FILTER-REVISION#2 - FreeBSD kernel module that allows a certain IP to bypass ipfilter firewall rules. Tested on FreeBSD 4.0-19990705-CURRENT.
fe36dcfd172fb72922ae72ad41e8c4e7FreeBSD kernel module which can change options at every layer in a connection.
ffc89a579ef3bce8fd43bc51f97a2bcdBSD kernel module which prevents ipfw from blocking a specified IP address.
6ad0523663225eeed26e569d111e1509This src grabs documents printed on a network printer installed with lpd by sniffing it from the network.
b6905373f36d19a1b81a9647028598fe
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed