Call for papers for the IT Underground 2006 conference to be held February 23 - 24, 2006.
1cd8eba24c0aa9b81f9ec07b3756967f56953e292b60d8fee3511b4d13e1cede
Herodot is a tool that parses the timeline of filesystem activity created by mactime and adds human readable descriptions to it. It also understands that later changes of some mac tags hide earlier changes.
e855f365e9aae9d99d0e69d5a3b263fa17380a16ce8c0182a68fdd6d4a323a9b
look_for_hidden_files is a script which uses debugfs to read the contents of the filesystem without using the kernel's filesystem support and then compares the resulting list with the analogous output from ls. If there is a discrepancy, it indicates some sort of trouble, most likely invasion of the system by a malicious intruder.
50f3d1a95d7e9a46cd6bb0a9d23a73156c732008394c738db3b8e0202c854e93
disftpsc is a tool that makes use of FTP bounce and each port of the target machine is scanned using another FTP proxy.
bb497166b1d46ccb39f2fb2f0c332e465b827c6788e7d329cf482a7aa388dfc9