exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 26 - 50 of 50 RSS Feed

Files

sara-3.1.4.tar.gz
Posted Jul 13, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Improved SMB logic for Windows 9X, Improved processing for nfs exports for non world access, Corrected numerous typos in tutorial links (thanks to Walt Jones), Fixed corrupted udpscan.sara file, Fixed more problems with relay.sara, Updated tutorials and FAQ, Updated X Server logic to reduce false positives, Changed default start-up mode, and added Big Brother test.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 4fd49bce50fdaef522760d6b998dd1817cfef23867124b17276c004efabcbe42
sara-3.1.3.tar.gz
Posted Jul 6, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Incorporated SANS recommended additions to SANS/SARA Top 10, test for vulnerability in wu-ftpd 2.6.0, bug fixes.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 999e3273856fb4e005f4240706718af9c516c2852f29baf05e938b5cb6d63791
sara-3.1.2.tar.gz
Posted Jun 19, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added switch to slow the scan to minimize impact to slower networks, Added custom and multiple hosts on GUI (Target Mgt), Added test for INN 2.x.x vulnerability, Improved JetAdmin logic in http.sara, Improved the Custom attack level (see config/sara.cf), Improved printer logic in depends.sara, Fixed ftp.sara to properly report MS FTP status.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 84506ebbcbbe67a4ed331bd2d3446a9fd4e42551ddbea393dacb12a963cc7757
sara-3.1.1.tar.gz
Posted Jun 13, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Fixed FrontPage test, Added more rpc program checking, Added test for tacacs server, Added test for Sub 7 backdoor, Added test for JetAdmin directory traversal, Added test for QPOP 3.53 vulnerability, Added test for Cisco Catalyst Vulnerability, Added test for Suse imap server, and bug fixes and performance updates.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 69d7821829f339eaf8d94b1f53e86e08354a0157af0544fa752db136949e1be0
sara-3.1.0.tar.gz
Posted Jun 2, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Included SARAPRO report writer into SARA, provided report writer to SATAN and SAINT users, added SANS-10 top vulnerability filter to report writer, corrected tutorial problem with pcanywhere and kerberos, and fixed man page to include the "-n" option.
tags | tool, cgi, scanner
systems | unix
SHA-256 | b9e878d60975e8423fe2f6fd111af65627f5ad6761a8ae20153c699859a24004
sara-3.0.5.tar.gz
Posted May 25, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Addded depends.sara to minimize OS oriented false positives, Fixed login.sara to minimize false positives with JetDirect, Fixed multiple subnet scanning in firewall mode, Mitigated lockups in SARA daemon mode, Added new mode (vulnerabilities) to SARA Search, Updated http.sara to minimize FrontPage vulnerabilities, Added eight new tests to http.sara, and added test for kerberos.
tags | tool, cgi, scanner
systems | unix
SHA-256 | f8164e4e16f6ab55872213c99bed2acc5191236d18e66f25f7ef49467101a235
sara-3.0.4.tar.gz
Posted May 17, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added test for SunOS netpr vulnerability, Added test for counter http vulnerability, Added a range argument to target spec, and incorporated target specs in interactive mode.
tags | tool, cgi, scanner
systems | unix
SHA-256 | f1eadc308e0fa9c0ff68946ebf297fe6032ba691fc2059f1c021cc5c8e7b0250
sara-3.0.3.tar.gz
Posted May 11, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Fixed mstream test (PONG vs pong), Added test for timbuktu, Added tutorial for pcanywhere and timbuktu, and Incorporated Steve Rader's new relay.sara (many more tests).
tags | tool, cgi, scanner
systems | unix
SHA-256 | dd029b6b8d61c2d6fca7cfa2dc6903da6be5b0f2cac146c0a5a2a5620aa8940b
sara-3.0.2.tar.gz
Posted May 2, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. This release addresses the pirahna attack and the mstream DDOS detection. Added pirahna test (password vulnerability in Linux Web server), Updated http.sara to reduce false alarms on non 404 servers, updated sara.cf to avoid answerbook2 inadvertent denial of service, Added test for pcanywhere, Added test for mstream DDOS agents.

tags | tool, web, denial of service, scanner
systems | linux, unix
SHA-256 | b9a2c7095c6caeb70b3168bb283941e4326fe98c4629e23efe781d4e162e3548
sara-3.0.1.tar.gz
Posted Apr 25, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added Search to SARA, Added sgi_pmcd vulnerability test, Added Solaris nisd vulnerability test, Added Compaq CIM server vulnerability test, Added numerous new cgi vulnerability tests, fixed bugs.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 354e7145959cad880583cd5ca8e3f419e97c3f0ebba52e2a938da89d98cffb4c
sara-2.1.13.tar.gz
Posted Apr 10, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added daemon mode of SARA, Improved SMB analysis (fewer false positives), Added basic Shaft DDoS detection, Improved http.sara, fixed IRIX makefile problem, Added test for IRIX 5.x - 6.2 objectserver exploit.
tags | tool, cgi, scanner
systems | unix
SHA-256 | a518302aedb9fba4a040f690ec5857c4f04fd565819329c928fc297f5e21b89e
sara-2.1.12.tar.gz
Posted Mar 23, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added test for Subseven backdoor, Fixed new CUI/GUI problem with Analysis Reporting, Supporting older Linux releases.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 0da6410defc45031c92c0716861617f1cd069faa6027c42515377d421d828a1c
sara-2.1.11.tar.gz
Posted Mar 21, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Fixed CUI/GUI problem with Lynx and Netscape 4.72, Fixed problem with multiple reports with SNMP, Updated hosttyping database, and working on search capability.
tags | tool, cgi, scanner
systems | unix
SHA-256 | d538800c967a63a4ed1ebc5d086124ac73eea401187ce93d55555b2a31379a2d
sara-2.1.10.tar.gz
Posted Mar 13, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added yet more http vulernability testing incl infosrch, Fixed Netscape buffer overflow detection, Fixed some of the GUI interfaces, Adding SARA Search capability, and Added Napster detection.
tags | tool, cgi, scanner
systems | unix
SHA-256 | fc986312f5e6c0bd77ad5e86bf4720d9be62f158e125bd2e7f5409a06ece49bf
sara-2.1.9.tar.gz
Posted Mar 3, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added the trojan_trinoo DDOS test, Added test for the sgi_fam buffer overflow vulnerability, Fixed false alarms from Web cache manager, Updated snmp reporting, and Added support for hpux 11.x.
tags | tool, cgi, scanner
systems | unix
SHA-256 | a6111dcefd7856af7169043ad2ddb2bdba177bf2e7627961ff4c307d2f1c773e
sara-2.1.8a.tar.gz
Posted Mar 2, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Windows Trinoo detection.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 0f23bcf5fe7eea7431d64bf0c70686c0cdf278cb9cdb81234a2cfead9233e81b
sara-2.1.8.tar.gz
Posted Feb 24, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added timing/delay command line option, Corrected minor bugs on the SARA menu, and proper credit is now given.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 1588e920c9fc1c52a983d51eea4ec9c15c628f001e4efc6b8f77a739b63c8010
sara-2.1.7.tar.gz
Posted Feb 15, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Distributed DOS test added, bug fixes.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 05f97a90c0c83fb80ac39509a36683aa273b03f3d8285225520a859fd1277733
sara-2.1.6.tar.gz
Posted Feb 2, 2000
Authored by Advanced Research Corporation | Site www-arc.com

Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

Changes: Added SARA extensions to SARA, Tweaked the documentation, and Fixed problem with mimetyping.
tags | tool, cgi, scanner
systems | unix
SHA-256 | 8884a64fffc0cd9416c3fea53f209ccab6aa8dc59e4a1e3778b2ec3341b3b68a
sara-2.1.2.tar.gz
Posted Dec 11, 1999

Essentially an upgraded SATAN with a few more modern checks included. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.

tags | tool, cgi, scanner
systems | unix
SHA-256 | d5c714801c84fcb93a985fc0913622bef8749daf23109f9ca4d80d52a9bbd8b5
sara-2.0.6.tar.gz
Posted Aug 17, 1999
Authored by Advanced Research Corporation

SARA v2.0.6 - The Security Auditor's Research Assistant (SARA) is a third generation security analysis tool that is based on the SATAN model, conforms to the Open Source model, is covered by the GNU open license, fosters a collaborative environment, and is updated on a weekly basis. The author of SAINT, Bob Todd, recently joined Advanced Research and has been working non-stop to evolve SATAN and the original SAINT concept to a community oriented product (i.e, SARA) which will be available to all. Advanced Research's philosophy relies heavily on software re-use. Rather than inventing a new module, SARA is adapted to interface to other community products. For instance, SARA interfaces with the popular NMAP package for superior "Operating System fingerprinting". Also, SARA provides a transparent interface to SAMBA for SMB security analysis. SARA's features include ( the [SARA] indicates that this is a new or improved feature when compared to SAINT or SATAN): Built-in report writer (by subnet or by database) [SARA], Built-in summary table generator [SARA], Gateway to external programs (e.g., NMAP) [SARA], CGI-BIN vulnerability testing (Unix and IIS) [SARA], SSH buffer overflow vulnerabilities [SARA], Current Sendmail vulnerabilities [SARA], IMAPD/POPD buffer overflow vulnerabilities [SARA], Current FTP and WU-FTP vulnerabilities [SARA], Tooltalk buffer overflow vulnerbilities [SARA], Netbus, Netbus-2, and Back Orifice vulnerabilities [SARA], Improved Operating System fingerprinting [SARA], Firewall-aware [SARA], Weekly updates [SARA], Probing for non-password accounts [SARA], NFS file systems exported to arbitrary hosts, NFS file systems exported to unprivileged programs, NFS file systems exported via the portmapper, NIS password file access from arbitrary hosts, REXD access from arbitrary hosts, X server access control disabled, Arbitrary files accessible via TFTP, Remote shell access from arbitrary hosts, Writable anonymous FTP home directory.

tags | tool, remote, overflow, arbitrary, shell, cgi, scanner, vulnerability
systems | unix
SHA-256 | f3d92f684d08884012e8aa42642d6a6080a19ca16a145a70859ba383ad09c44e
sara-2.0.5.tar.gz
Posted Aug 17, 1999
Authored by Advanced Research Corporation

SARA v2.0.5 - The Security Auditor's Research Assistant (SARA) is a third generation security analysis tool that is based on the SATAN model, conforms to the Open Source model, is covered by the GNU open license, fosters a collaborative environment, and is updated on a weekly basis. The author of SAINT, Bob Todd, recently joined Advanced Research and has been working non-stop to evolve SATAN and the original SAINT concept to a community oriented product (i.e, SARA) which will be available to all. Advanced Research's philosophy relies heavily on software re-use. Rather than inventing a new module, SARA is adapted to interface to other community products. For instance, SARA interfaces with the popular NMAP package for superior "Operating System fingerprinting". Also, SARA provides a transparent interface to SAMBA for SMB security analysis. SARA's features include ( the [SARA] indicates that this is a new or improved feature when compared to SAINT or SATAN): Built-in report writer (by subnet or by database) [SARA], Built-in summary table generator [SARA], Gateway to external programs (e.g., NMAP) [SARA], CGI-BIN vulnerability testing (Unix and IIS) [SARA], SSH buffer overflow vulnerabilities [SARA], Current Sendmail vulnerabilities [SARA], IMAPD/POPD buffer overflow vulnerabilities [SARA], Current FTP and WU-FTP vulnerabilities [SARA], Tooltalk buffer overflow vulnerbilities [SARA], Netbus, Netbus-2, and Back Orifice vulnerabilities [SARA], Improved Operating System fingerprinting [SARA], Firewall-aware [SARA], Weekly updates [SARA], Probing for non-password accounts [SARA], NFS file systems exported to arbitrary hosts, NFS file systems exported to unprivileged programs, NFS file systems exported via the portmapper, NIS password file access from arbitrary hosts, REXD access from arbitrary hosts, X server access control disabled, Arbitrary files accessible via TFTP, Remote shell access from arbitrary hosts, Writable anonymous FTP home directory.

Changes: Now compiles under Red Hat 6.0, fixed bug in login.sara.
tags | tool, remote, overflow, arbitrary, shell, cgi, scanner, vulnerability
systems | unix
SHA-256 | ac43549c160c7e8910c611056c2fc242b8af6054980a18713656cf45464efeb5
sara-2.0.2.tar.gz
Posted Aug 17, 1999
Authored by Advanced Research Corporation

SARA v2.0.2 - The Security Auditor's Research Assistant (SARA) is a third generation security analysis tool that is based on the SATAN model, conforms to the Open Source model, is covered by the GNU open license, fosters a collaborative environment, and is updated on a weekly basis. The author of SAINT, Bob Todd, recently joined Advanced Research and has been working non-stop to evolve SATAN and the original SAINT concept to a community oriented product (i.e, SARA) which will be available to all. Advanced Research's philosophy relies heavily on software re-use. Rather than inventing a new module, SARA is adapted to interface to other community products. For instance, SARA interfaces with the popular NMAP package for superior "Operating System fingerprinting". Also, SARA provides a transparent interface to SAMBA for SMB security analysis. SARA's features include ( the [SARA] indicates that this is a new or improved feature when compared to SAINT or SATAN): Built-in report writer (by subnet or by database) [SARA], Built-in summary table generator [SARA], Gateway to external programs (e.g., NMAP) [SARA], CGI-BIN vulnerability testing (Unix and IIS) [SARA], SSH buffer overflow vulnerabilities [SARA], Current Sendmail vulnerabilities [SARA], IMAPD/POPD buffer overflow vulnerabilities [SARA], Current FTP and WU-FTP vulnerabilities [SARA], Tooltalk buffer overflow vulnerbilities [SARA], Netbus, Netbus-2, and Back Orifice vulnerabilities [SARA], Improved Operating System fingerprinting [SARA], Firewall-aware [SARA], Weekly updates [SARA], Probing for non-password accounts [SARA], NFS file systems exported to arbitrary hosts, NFS file systems exported to unprivileged programs, NFS file systems exported via the portmapper, NIS password file access from arbitrary hosts, REXD access from arbitrary hosts, X server access control disabled, Arbitrary files accessible via TFTP, Remote shell access from arbitrary hosts, Writable anonymous FTP home directory.

tags | tool, remote, overflow, arbitrary, shell, cgi, scanner, vulnerability
systems | unix
SHA-256 | c11cc04d682e421daca393f631ccdd4f4ba9e92966a47d9354c881ee7d161c34
sara-2.0.3.tar.gz
Posted Aug 17, 1999
Authored by Advanced Research Corporation

SARA v2.0.3 - The Security Auditor's Research Assistant (SARA) is a third generation security analysis tool that is based on the SATAN model, conforms to the Open Source model, is covered by the GNU open license, fosters a collaborative environment, and is updated on a weekly basis. The author of SAINT, Bob Todd, recently joined Advanced Research and has been working non-stop to evolve SATAN and the original SAINT concept to a community oriented product (i.e, SARA) which will be available to all. Advanced Research's philosophy relies heavily on software re-use. Rather than inventing a new module, SARA is adapted to interface to other community products. For instance, SARA interfaces with the popular NMAP package for superior "Operating System fingerprinting". Also, SARA provides a transparent interface to SAMBA for SMB security analysis. SARA's features include ( the [SARA] indicates that this is a new or improved feature when compared to SAINT or SATAN): Built-in report writer (by subnet or by database) [SARA], Built-in summary table generator [SARA], Gateway to external programs (e.g., NMAP) [SARA], CGI-BIN vulnerability testing (Unix and IIS) [SARA], SSH buffer overflow vulnerabilities [SARA], Current Sendmail vulnerabilities [SARA], IMAPD/POPD buffer overflow vulnerabilities [SARA], Current FTP and WU-FTP vulnerabilities [SARA], Tooltalk buffer overflow vulnerbilities [SARA], Netbus, Netbus-2, and Back Orifice vulnerabilities [SARA], Improved Operating System fingerprinting [SARA], Firewall-aware [SARA], Weekly updates [SARA], Probing for non-password accounts [SARA], NFS file systems exported to arbitrary hosts, NFS file systems exported to unprivileged programs, NFS file systems exported via the portmapper, NIS password file access from arbitrary hosts, REXD access from arbitrary hosts, X server access control disabled, Arbitrary files accessible via TFTP, Remote shell access from arbitrary hosts, Writable anonymous FTP home directory.

tags | tool, remote, overflow, arbitrary, shell, cgi, scanner, vulnerability
systems | unix
SHA-256 | d9ccc5d0f69e8f9e3b50d9c94445defbb0224ddbff75161b9c81d8fa2d79ad07
sara-2.0.4.tar.gz
Posted Aug 17, 1999
Authored by Advanced Research Corporation

SARA v2.0.4 - The Security Auditor's Research Assistant (SARA) is a third generation security analysis tool that is based on the SATAN model, conforms to the Open Source model, is covered by the GNU open license, fosters a collaborative environment, and is updated on a weekly basis. The author of SAINT, Bob Todd, recently joined Advanced Research and has been working non-stop to evolve SATAN and the original SAINT concept to a community oriented product (i.e, SARA) which will be available to all. Advanced Research's philosophy relies heavily on software re-use. Rather than inventing a new module, SARA is adapted to interface to other community products. For instance, SARA interfaces with the popular NMAP package for superior "Operating System fingerprinting". Also, SARA provides a transparent interface to SAMBA for SMB security analysis. SARA's features include ( the [SARA] indicates that this is a new or improved feature when compared to SAINT or SATAN): Built-in report writer (by subnet or by database) [SARA], Built-in summary table generator [SARA], Gateway to external programs (e.g., NMAP) [SARA], CGI-BIN vulnerability testing (Unix and IIS) [SARA], SSH buffer overflow vulnerabilities [SARA], Current Sendmail vulnerabilities [SARA], IMAPD/POPD buffer overflow vulnerabilities [SARA], Current FTP and WU-FTP vulnerabilities [SARA], Tooltalk buffer overflow vulnerbilities [SARA], Netbus, Netbus-2, and Back Orifice vulnerabilities [SARA], Improved Operating System fingerprinting [SARA], Firewall-aware [SARA], Weekly updates [SARA], Probing for non-password accounts [SARA], NFS file systems exported to arbitrary hosts, NFS file systems exported to unprivileged programs, NFS file systems exported via the portmapper, NIS password file access from arbitrary hosts, REXD access from arbitrary hosts, X server access control disabled, Arbitrary files accessible via TFTP, Remote shell access from arbitrary hosts, Writable anonymous FTP home directory.

Changes: added ftp bounce test, added mail relay test, improved login.sara, improved timeouts for various tests, improved http.sara tests.
tags | tool, remote, overflow, arbitrary, shell, cgi, scanner, vulnerability
systems | unix
SHA-256 | 99e993bbbdd19e437966ac7e0cfd59cfa981e29ade2aaeb82d04438a83cb61b9
Page 2 of 2
Back12Next

Top Authors In Last 30 Days

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close