what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News Services About Contact Add New

Showing 1 - 25 of 117

Files from van Hauser

Hydra Network Logon Cracker 9.3

Posted Feb 3, 2022

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Added support for Xcode compilation and new module cobaltstrike. Fixed ssh to support -M or ip/rangeix, rdp to detect empty passwords, http-form to no send empty headers, http on non-default ports when using with a proxy for vnc/cisco/, support IPv6 addresses in -M, and more.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | 3977221a7eb176cd100298c6d47939999a920a628868ae1aceed408a21e04013

Download | Favorite | View

American Fuzzy Lop plus plus 4.00c

Posted Jan 27, 2022

Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site github.com

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: Dozens of changesincluding a complete documentation restructuring, changes to unicorn_mode, afl-fuzz, and more.

tags | tool, fuzzer

systems | unix

SHA-256 | f427294ed674e37d34a1b756a2190de17937e046ef21abb3ae37bba018a760f1

Download | Favorite | View

American Fuzzy Lop plus plus 3.14c

Posted Jul 19, 2021

Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site thc.org

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: Dozens of changes applied across afl-fuzz, frida_mode, afl-cc, and other functionality.

tags | tool, fuzzer

systems | unix

SHA-256 | 36552e3aac5c390dfec4f75d0dd60dc802c3e97b8baf042aa1edb6529dba0766

Download | Favorite | View

American Fuzzy Lop plus plus 3.13c

Posted Jun 1, 2021

Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site thc.org

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: frida_mode added. Created a fuzzing dictionary. Updated the grammar custom mutator to the newest version. Dozens of changes applied across afl-fuzz and afl-cc.

tags | tool, fuzzer

systems | unix

SHA-256 | 7b0d5b17acb38c19878865b91a26ec718fa0ef53363473240c7cfbdbed356f7f

Download | Favorite | View

American Fuzzy Lop plus plus 3.12c

Posted Mar 24, 2021

Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site thc.org

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: Improvements to afl-fuzz, afl-cc, qemu_mode, and unicorn_mode. Added DEFAULT_PERMISSION to config.h for all files created with 0600 setting.

tags | tool, fuzzer

systems | unix

SHA-256 | 0240d34a2f99d157063e31d0c2d2801a68bc015e09187d9cc197637ec8fda635

Download | Favorite | View

American Fuzzy Lop plus plus 3.11c

Posted Mar 16, 2021

Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site thc.org

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: Improvements to afl-fuzz, afl-cc, qemu_mode, and afl-cmin.

tags | tool, fuzzer

systems | unix

SHA-256 | dafe8bf08096a9dd5c5307cc38439fa9ac3b5ead595b261dd9e01ddefd2fed0a

Download | Favorite | View

Hydra Network Logon Cracker 9.2

Posted Mar 15, 2021

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Fix for http-post-form optional parameters. Enabled gcc 10 support for xhydra. IPv6 support for Host: header for http based modules. Various other updates.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | 1a28f064763f9144f8ec574416a56ef51c0ab1ae2276e35a89ceed4f594ec5d2

Download | Favorite | View

jpeg-xl 0.3.1 Memory Corruption

Posted Mar 3, 2021

Authored by van Hauser

jpeg-xl versions 0.3.1 and below were found to be susceptible to multiple memory corruption vulnerabilities.

tags | advisory, vulnerability

advisories | CVE-2021-27804

SHA-256 | 88a2e8c35473583ff227ac25aed5b91871c704470af0151b0497a97f74173d3b

Download | Favorite | View

American Fuzzy Lop plus plus 3.10c

Posted Mar 1, 2021

Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site thc.org

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: Mac OS ARM64 support. Android support fixed and updated. Over a dozen other updates and improvements.

tags | tool, fuzzer

systems | unix

SHA-256 | 162148cb689565aa3facf63edacf85555fe2403151a0c65479ee9303639bb7f8

Download | Favorite | View

American Fuzzy Lop plus plus 3.0c

Posted Dec 15, 2020

Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site thc.org

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: Dozens of updates and improvements.

tags | tool, fuzzer

systems | unix

SHA-256 | 75a2cd6c9e14d4160defcf4899c6d654eba9ae1aad2b2c850bb165c84ee763bb

Download | Favorite | View

THC-IPv6 Attack Tool 3.8

Posted Dec 1, 2020

Authored by van Hauser, thc | Site thc.org

THC-IPV6 is a toolkit that attacks the inherent protocol weaknesses of IPv6 and ICMP6 and it includes an easy to use packet factory library.

Changes: This release fixes several bugs.

tags | tool, protocol

systems | unix

SHA-256 | b60be61a8b0a944a66e3b719704b4c03c1bc2c22f32d5d21e99e434c82a9d769

Download | Favorite | View

American Fuzzy Lop plus plus 2.68c

Posted Nov 19, 2020

Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site thc.org

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: Added the GSoC excellent afl++ grammar mutator by Shengtuo. A few QOL changes for Apple and its outdated gmake. Various other updates and improvements.

tags | tool, fuzzer

systems | unix

SHA-256 | 862e155c97737770baa26ffedf324a7fa255b757c85b0c9a6f312264f2ca29c5

Download | Favorite | View

Hydra Network Logon Cracker 9.1

Posted Jul 29, 2020

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Enabled gcc 10 support for xhydra. Fixed crash in MD5 auth for rtsp. New module for smb2 which also supports smb3. Various other updates.

tags | tool, web, cracker, imap

systems | cisco, unix

SHA-256 | ce08a5148c0ae5ff4b0a4af2f7f15c5946bc939a57eae1bbb6dda19f34410273

Download | Favorite | View

Hydra Network Logon Cracker 9.0

Posted May 17, 2019

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Revamped rdp module to use FreeRDP library. Added memcached module. Added mongodb module. Various other updates.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | 56672e253c128abaa6fb19e77f6f59ba6a93762a9ba435505a009ef6d58e8d0e

Download | Favorite | View

Hydra Network Logon Cracker 8.9.1

Posted Feb 27, 2019

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Clarification for rdp error message. CIDR notation (hydra -l test -p test 192.168.0.0/24 ftp) was not detected, fixed.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | 7c615622d9d22a65b007e545f2d85da06c422a042f720bd6c5578a1844dec40e

Download | Favorite | View

THC-IPv6 Attack Tool 3.6

Posted Jan 9, 2019

Authored by van Hauser, thc | Site thc.org

THC-IPV6 is a toolkit that attacks the inherent protocol weaknesses of IPv6 and ICMP6 and it includes an easy to use packet factory library.

Changes: Added error check for openssl BN_ functions (thanks to lc3412). Added support for global destinations for dump_dhcp6. Added new connect6 tool. Various updates and bug fixes.

tags | tool, protocol

systems | unix

SHA-256 | ac3570564999e55c8e8d7aea8b67c398a3b7059f6d03235ab851af9497c38e68

Download | Favorite | View

THC-IPv6 Attack Tool 3.4

Posted Jan 9, 2018

Authored by van Hauser, thc | Site thc.org

THC-IPV6 is a toolkit that attacks the inherent protocol weaknesses of IPv6 and ICMP6 and it includes an easy to use packet factory library.

Changes: Added new function to thc-ipv6-lib. Added RA guard bypass attack. Various updates and bug fixes.

tags | tool, protocol

systems | unix

SHA-256 | ca43866f0090ffc6f4fe3af166ed1eb705e8a4f418b8644a4e288a486971d90c

Download | Favorite | View

Hydra Network Logon Cracker 8.6

Posted Jul 22, 2017

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Added radmin2 module by catatonic prime. SMB module now checks if SMBv1 is supported by the server and if signing is required. http-form module now supports URLs up to 6000 bytes. Various other updates.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | bba5cc534430055871650418688d8bd274553666faeff961389712559b5bfd4e

Download | Favorite | View

Hydra Network Logon Cracker 8.5

Posted May 4, 2017

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: New command line option. Changed the format of the restore file to detect cross platform copies. Various bug fixes.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | 557ab284f877aa6c8a26f7491c0373a84836593e5e0ca141b327035e7937dd6d

Download | Favorite | View

Hydra Network Logon Cracker 8.4

Posted Jan 31, 2017

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Multiple new protocols implemented. Various bug fixes and proxy support was re-implemented.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | 482846580888f54e000bb125e263a65c32fa28ba86c9d4012371cf55c3bdc140

Download | Favorite | View

THC-IPv6 Attack Tool 3.2

Posted Jan 19, 2017

Authored by van Hauser, thc | Site thc.org

THC-IPV6 is a toolkit that attacks the inherent protocol weaknesses of IPv6 and ICMP6 and it includes an easy to use packet factory library.

Changes: Added toobigsniff6. Added alive2map.sh script. Various updates and bug fixes.

tags | tool, protocol

systems | unix

SHA-256 | 08ce685a17e5b2808b5af54a47e8da6e4b3466161afc7a30885753b5a7d3ddb2

Download | Favorite | View

Hydra Network Logon Cracker 8.3

Posted Aug 12, 2016

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Support for upcoming OpenSSL 1.1 added. Fixed hydra redo bug. Updated xhydra for new hydra features and options. Some more command line error checking added. Ensured unneeded sockets are closed.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | b94ee47254e01a8c18be38eae8b953bfe4f734db60cafd1054b3316419b1687d

Download | Favorite | View

Hydra Network Logon Cracker 8.2

Posted Jun 16, 2016

Authored by van Hauser, thc | Site thc.org

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.

Changes: Added RTSP module. Added patch for ssh. Added SSL SNI support. Various other updates.

tags | tool, web, imap

systems | cisco, unix

SHA-256 | 9e88496aca1d7ee94410cf3e3d87bc8cbaa91e37fd5ef700cab2f55ce92b4ac4

Download | Favorite | View

THC-IPv6 Attack Tool 3.0

Posted Oct 17, 2015

Authored by van Hauser, thc | Site thc.org

THC-IPV6 is a toolkit that attacks the inherent protocol weaknesses of IPv6 and ICMP6 and it includes an easy to use packet factory library.

Changes: New tools fragrouter6 and connsplit6 have been added. Various updates and bug fixes.

tags | tool, protocol

systems | unix

SHA-256 | cec2db604e3fe59f26ddc42632d858f53660ef5d6e25d6a7e90ed927f6826102

Download | Favorite | View

THC-IPv6 Attack Tool 2.7

Posted Dec 29, 2014

Authored by van Hauser, thc | Site thc.org

THC-IPV6 is a toolkit that attacks the inherent protocol weaknesses of IPv6 and ICMP6 and it includes an easy to use packet factory library.

Changes: This is the 31C3 release. New tool fuzz_dhcpc6 has been added. Various new scripts, options, and test cases added.

tags | tool, protocol

systems | unix

SHA-256 | 440a3ae98b57100c397ec4f8634468dbbb0c3b48788c6b74af2a597a90544a96

Download | Favorite | View