what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 26 - 50 of 52

Files from Michael Rash

Fwknop Port Knocking Utility

Posted Aug 26, 2008

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Mirek Trmac from Red Hat contributed several patches so that fwknop can be bundled within the Fedora Linux distribution. Updated fwknop, fwknopd, and knoptm to import perl modules out of the /usr/lib/fwknop/ directory if it exists. Added module version output for each non-core perl module used by fwknop and fwknopd in --debug mode. Various other additions and fixes.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | c2835d4522a45737392c181df6459fb3db2755b779a246601d66359fd8e12d20

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Jul 24, 2008

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added the ability to explicitly run major classes of tests 46 with two new command line arguments to the fwknop_test.pl script. Updated the fwknop client to randomize the UDP source port for default SPA packet generation. Various other updates and additions.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 1e6c3e28b8679bb9a5c15fa9668268056d2e47050ed2da83b24ea5d18ccfae08

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Jun 13, 2008

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Various updates and additions. Removed legacy knopmd.conf file since knopmd uses the fwknop.conf file instead.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | dcb1e7c56142881d9ede36c33467ced19afcf30898134c38a0ad4b49b7a7dc3c

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Jun 2, 2008

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added two new port randomization options. Various module additions and bug fixes.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 38f028cd62f36b27e390174472bbd35cf86b5d227e6acfb91353c80aef0b6ca0

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Apr 8, 2008

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added MASQUERADE and SNAT support. Added hex_dump() feature. Some minor bug fixes.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 9fea0328c9bc110b187da529ec186ac3bb3ba08ef95dde78f1b50625942b5a35

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Mar 17, 2008

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added more granular source IP and allowed IP tests so that access to particular internal IP addresses can be excluded in --Forward-access. Added BLACKLIST functionality to allow source IP addresses to easily be excluded from the authentication process. Various other bug fixes and additions.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 918dfe42d7a552e44b74c2bf3ba49f7a160d0c31f093cfbdc4efdf4bd73fc1f8

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Jan 28, 2008

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added ENABLE_OUTPUT_ACCESS keyword to access.conf file parsing. Added command line argument display to fwknop client --verbose mode. Various other extensive updates and additions.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 9c097761644f7cbf79a72b6aadd95384ab2965187bb8d9f8346c7de9905db08d

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Dec 18, 2007

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Extensive additions and updates.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | a5049331fd404514f4b723536db88d3b79b8b21537ecdf2d617a888b84101b37

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Nov 26, 2007

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Multiple additions, some updates, and a bug fix.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 366dbb0c9ae38973cee960408eb1a76ed6ff544f15855affaed93331face9491

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Sep 19, 2007

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added fwknopd server support for Mac OS X. Various other bug fixes and improvements.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | ac87bac78e9396f01d93b9abe1dab1d480a5be4898c824ca464ce1c82fca89a7

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Jun 6, 2007

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added support for ipfw firewalls. Added init script for FreeBSD systems. Various other additions and updates.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 3d63f585dc5fcdbe56fc900d442168c00d79d149b4596cd0f514d17c8a2f28c3

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Jan 13, 2007

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Various updates and bug fixes.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 7730b4cbc522502f2d12a5b895c6618321b649f03a6a1b3ab8ccc5ec191fc8c6

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Nov 7, 2006

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Various bug fixes and some enhanced validation.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | ff771ee9498fde005fdae01e8fe2f1a0ea0658aed9248a72ad4d0ad91be23dc0

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Oct 19, 2006

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Various enhancements and improvements. Some bug fixes.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 620ca600520996f14cf2f951f7927caa188d6310b909213bec9af13c97c15758

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Oct 5, 2006

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Various enhancements and improvements.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 8cb35d6f95e9757abe80d2a141a661e06aa63c8b219f0c70cbe8ab5799d90762

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Aug 17, 2006

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added fwknop_serv to function as a minimal TCP server. Updated to CRYPT:CBC 2.18. Various other bug fixes and enhancements.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | a0c9f9c04bd5b01067c0f59a31293b75bf385afe331f33448a84bc0178cfd22a

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Jan 15, 2006

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added GPG based authentication capability for SPA packets. Added patch against OpenSSH-4.2p1 to integrate SPA mode. Various other additions, enhancements, and bug fixes.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 61d9bcf837b6f1d1377469a0a3e005aadb67c39ef8476883d92e35767c09da02

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Oct 6, 2005

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Various additions and bug fixes.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 07289220d1f6fa9897099dfaab158ed855928fe5e76bc56335f332f9b174d48d

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Sep 22, 2005

Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Various additions and bug fixes.

tags | tool, scanner, vulnerability

systems | unix

SHA-256 | 1a3db5f2e2e6ce86ed40c3650a3ac8263074d2683f7116fb900836068593d41c

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Aug 31, 2005

Authored by Michael Rash | Site cipherdyne.org

fwknop is a flexible port knocking implementation that is based around iptables. Both shared knock sequences and encrypted knock sequences are supported. In addition, fwknop makes use of passive OS fingerprinting signatures derived from p0f to ensure the OS that initiates a knock sequence conforms to a specific type. This makes it possible to allow, say, only Linux systems to connect to your SSH daemon. Both the knock sequences and OS fingerprinting are completely implemented around iptables log messages, and so a separate packet capture library is not required.

Changes: Various additions and bug fixes.

tags | tool, scanner

systems | linux, unix

SHA-256 | f02236fc30cbe288fd42dbfa3aaf09934b181da64e3cb5b345617760a0ca29a1

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Aug 10, 2005

Authored by Michael Rash | Site cipherdyne.org

fwknop is a flexible port knocking implementation that is based around iptables. Both shared knock sequences and encrypted knock sequences are supported. In addition, fwknop makes use of passive OS fingerprinting signatures derived from p0f to ensure the OS that initiates a knock sequence conforms to a specific type. This makes it possible to allow, say, only Linux systems to connect to your SSH daemon. Both the knock sequences and OS fingerprinting are completely implemented around iptables log messages, and so a separate packet capture library is not required.

Changes: Various additions and bug fixes.

tags | tool, scanner

systems | linux, unix

SHA-256 | 0a520e3c38a739137e87994d28fde5a66577e3724f3f49d5b1a0a5e7d0c1d509

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Aug 5, 2005

Authored by Michael Rash | Site cipherdyne.org

fwknop is a flexible port knocking implementation that is based around iptables. Both shared knock sequences and encrypted knock sequences are supported. In addition, fwknop makes use of passive OS fingerprinting signatures derived from p0f to ensure the OS that initiates a knock sequence conforms to a specific type. This makes it possible to allow, say, only Linux systems to connect to your SSH daemon. Both the knock sequences and OS fingerprinting are completely implemented around iptables log messages, and so a separate packet capture library is not required.

Changes: Various additions and bug fixes.

tags | tool, scanner

systems | linux, unix

SHA-256 | 4558b54d776b68b063d77a3447077ba60dce5615f78eb6d628c1ce184319f24e

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Jun 1, 2005

Authored by Michael Rash | Site cipherdyne.org

fwknop is a flexible port knocking implementation that is based around iptables. Both shared knock sequences and encrypted knock sequences are supported. In addition, fwknop makes use of passive OS fingerprinting signatures derived from p0f to ensure the OS that initiates a knock sequence conforms to a specific type. This makes it possible to allow, say, only Linux systems to connect to your SSH daemon. Both the knock sequences and OS fingerprinting are completely implemented around iptables log messages, and so a separate packet capture library is not required.

Changes: Added new authorization mode. Updated man page and there are a few other additions to the functionality.

tags | tool, scanner

systems | linux, unix

SHA-256 | 0e104718c305f413ce87cd7d283f8614932827f22ae91bff47223ca54cb47f56

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Mar 22, 2005

Authored by Michael Rash | Site cipherdyne.org

fwknop is a flexible port knocking implementation that is based around iptables. Both shared knock sequences and encrypted knock sequences are supported. In addition, fwknop makes use of passive OS fingerprinting signatures derived from p0f to ensure the OS that initiates a knock sequence conforms to a specific type. This makes it possible to allow, say, only Linux systems to connect to your SSH daemon. Both the knock sequences and OS fingerprinting are completely implemented around iptables log messages, and so a separate packet capture library is not required.

Changes: Various additions and reworks.

tags | tool, scanner

systems | linux, unix

SHA-256 | cc78b9428e15e70890d6f053d4858871508416a5f26d141773d0f19d695197be

Download | Favorite | View

Fwknop Port Knocking Utility

Posted Oct 1, 2004

Authored by Michael Rash | Site cipherdyne.org

fwknop is a flexible port knocking implementation that is based around iptables. Both shared knock sequences and encrypted knock sequences are supported. In addition, fwknop makes use of passive OS fingerprinting signatures derived from p0f to ensure the OS that initiates a knock sequence conforms to a specific type. This makes it possible to allow, say, only Linux systems to connect to your SSH daemon. Both the knock sequences and OS fingerprinting are completely implemented around iptables log messages, and so a separate packet capture library is not required.

Changes: Added init script for Fedora systems. Added --Kill, --Restart, and --Status modes.

tags | tool, scanner

systems | linux, unix

SHA-256 | c681d25dce87be973e406ee80cb7b3097d0c2e03aca5aad2cb09d4cee152e17e

Download | Favorite | View