NCPQuery is an open source tool that allows probing of a Novell Netware 5.0/5.1 server running IP. It uses TCP port 524 to enumerate objects with public read access, disclosing such information as account names, server services, and other various objects. A remote attacker can gather the equivalent information provided by the console command "display servers" and the DOS client command "cx /t /a /r" without authentication. Includes a Win32 port.
354012e902e80df46b1bf28adfc90559ba18f2db45bf019a1b8745c756211795Object Enumeration in Novell Environments - Due to a combination of legacy support and default settings, Novell Netware servers using native IP will leak system information via TCP port 524 when properly queried. In mixed Novell/Microsoft environments, information regarding Microsoft devices is leaked via the Service Advertising Protocol (SAP) table. Third party products, such as those used to synchronize directory services between environments can further the problem. Essentially, a remote attacker can gather the equivalent information provided by the console command "display servers" and the DOS client command "cx /t /a /r" without authentication.
f09861f9843c17db74e28912eb8310b10f91156447711890837c68c8aac45b4eNCPQuery is an open source tool that allows probing of a Novell Netware 5.0/5.1 server running IP. It uses TCP port 524 to enumerate objects with public read access, disclosing such information as account names, server services, and other various objects. A remote attacker can gather the equivalent information provided by the console command "display servers" and the DOS client command "cx /t /a /r" without authentication.
97f05208a1c028a90715780ea2c8dea387e4888c2aff9bf2d8ce53286f2f65ceSeveral previously unreleased utilities for hacking Netware 3. Qloop and Qloop 2 take superviser privileges if the superuser prints something. Addobj allows user to add objects specifying name, type and whether it's a login account. Qlogin users to login to accounts which are not user type. Lstpsrv lists print servers on target server.
03043d45b63bd48add549e98ca0ca468d8c94adc18c851ada3b0bdc6ed071090Pandora v4 Beta 2.1 Netware Attack tool for Linux - Offline password auditing and Online attack for the X Windows platform on Linux. The Online software requires an IPX-aware kernel and root.
04176a26ae4765b00ef4e4f75faf0e72600d8e13e260d89cfd33ce9a9697bc98Pandora v4 Beta 2 Full Source Code for Linux.
6289c497b8bcdbb15790b35262f4b9178a0cb00e7ffac4bf3b561bb7a96ab924BETA - Documentation on using Pandora v4, with updated white papers, tips, and tricks. Included with the regular software, download this if you just wish to read the docs.
44e204f97e6c01e95f171dedd42e4589b8b55ec79a6b5d9d7868521bb2ed6bcePandora v4 Beta 2 Full Source Code for Windows.
db40217fe9c204f517fc1c297739c59110cd3db27f3c17085c141a05c0c4c1faPandora v4 Beta 2 for Linux BETA 2 - Offline password auditing and Online attack for the X Windows platform on Linux. The Online software requires an IPX-aware kernel and root. THIS SOFTWARE IS SUBJECT TO CHANGE FAIRLY QUICKLY, SO CHECK BACK OFTEN. Tar xvzf in your fave dirctory and build an icon to online/Pan-on in your fave X Windows manager. Hack Netware 4 and 5 from Linux!
59c80875d872f13fe9e905a9994b46635800ae3a01f1accd3a63d809ba9ebd59Pandora v4 Beta 2 Online for Windows NT BETA 2 - Online point and click attacking of Novell Netware from Windows NT. Currently spoofing works but lots of crashes on SP3 (we're working on it). Unzip and run the setup.exe program. DO NOT FORGET TO INSTALL THE PACKET DRIVER OR THIS PROGRAM WILL NOT WORK!
d91c583bef20173ab5fc33a5877053eaa74ce5b7eb172fab7b4db670614c764dPandora v4 Beta 2 Online for Windows 95/98 BETA 2 - Online point and click attacking of Novell Netware from Windows 95/98. Unzip and run the setup.exe program. DO NOT FORGET TO INSTALL THE PACKET DRIVER OR THIS PROGRAM WILL NOT WORK!
36c2d370416cc675506924ffe914c39de77ba897ac6e9152960d99152ccfd8e3Pandora v4 Beta 2 Offline for Windows 95/98/NT BETA 2 - Offline Novell password auditing for the Windows platform. Unzip and run the setup.exe program. Fully optimized for Pentium platforms to maximize password cracking.
be5edd61749ef0a35dd50d9a007f8fe9b8e55331a82504bdb76d99e71a1b07eaA simple GUI trojan that when added to the autostart *see regedit* registry will log the passwords of the Novell NetWare School Vista user to c:\windows\samples .txt. Loginw31.exe is an exact duplicate of the login while Login31(2).exe is a system confirmation tricking the user to re-enter their password.
58d1a61a0dad0a8bd9fdf8856cb55f06ea965f5b92b98a29653c46aae61937c7Code for breakings Novell NetWare 4.x.
cbd05859bbddf1c5d3c5acf3389bad1ff92379e7e211163ca83bddf8cd568205Pandora 2 for DOS.
e3e0aaaa65217d2bbda0ec6605d1257a192eedccf8ab9433d3d3518c6288b14eimp v2.1 (self-extracting) - Imp is a NetWare password cracking utility with a GUI (Win95/NT). It loads account information directly from NDS or Bindery files and and allows the user to attempt to compromise the account passwords with various attack methods. It is based heavily on (and in fact "borrows" all the crypto code from) the Simple Nomad and NMRC. New features in this release: bindery support, template attack, passwords saved between sessions, optional installation utility, plus many, many bug fixes and code optimizations.
3513eb1060c5b109e0eb39667a341d0d3d96f3aacb996ca9ee89e1b0515bc713Imp v2.11 (self-extracting archives) is a NetWare password cracking utility with a GUI (Win95/NT). It loads account information directly from NDS or Bindery files and and allows the user to attempt to compromise the account passwords with various attack methods. It is based heavily on (and in fact "borrows" all the crypto code from) the "Pandora" project by Simple Nomad and the team at http://www.nmrc.org. Check out the Unofficial NetWare Hack FAQ for full details. Too many new features and bugfixes to list.
d7db05f28ce797a47b5435d77fd7b5c14910f0a0a00804d82807d323c7f3c83aFAQ for Pandora3.
601001e2e6e570c50754717d5ae3e72c365062e3ed1949f2e22590459227b91eimp v2.1 (zipped) - Imp is a NetWare password cracking utility with a GUI (Win95/NT). It loads account information directly from NDS or Bindery files and and allows the user to attempt to compromise the account passwords with various attack methods. It is based heavily on (and in fact "borrows" all the crypto code from) the Simple Nomad and NMRC. New features in this release: bindery support, template attack, passwords saved between sessions, optional installation utility, plus many, many bug fixes and code optimizations.
af9ba17c4959cd7df70ba15060fb092439d7b18b92312c1738dd42a6d7387e41Pandora3 API.
8030942efcff25071ce70e4fae35b641d00477059eea10000242a30c56db48afPandora 3 source code for DOS.
e44d75f944ca82eb3ac7aa1af8b56e8478f27e799213cd32da9b52704b0e4cd4Pandora v3.01 binary for DOS.
baac8c4d3e99f8b8752f2789cb64a6b3bb515b04b5a3e48ad7634c71a6cb78e2Charles Sandmann's DPMI provider, binaries.
e1dae4feb639ebf3384501de35eaeef1478d1f8f91286dfd803d8422d8452432GUI interface for Pandora.
e53713d7868faa141246bda25044d4ec0093b3fe1fefb5bba9b606dd99dbacd9Imp v2.11 (non self-extracting archives) - Imp is a NetWare password cracking utility with a GUI (Win95/NT). It loads account information directly from NDS or Bindery files and and allows the user to attempt to compromise the account passwords with various attack methods. It is based heavily on (and in fact "borrows" all the crypto code from) the Simple Nomad and NMRC. New features in this release: bindery support, template attack, passwords saved between sessions, optional installation utility, plus many, many bug fixes and code optimizations.
0d9d2ea0fc9ef8969485df8c0e06fb2d2f21b53bf5e3e0d79a8415662a2eb3d5
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed