Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated frequently to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins.
92e13c0cd01c13af6c6fe0b3089d3b96bfa48a113d785dfbf12c2dc13f29dca3Ldistfp is an identd fingerprinting tool which works well with all Linux and most *BSD hosts that have their auth service running.
a0e02ae45f7bafdea7bf1bf796fdf701738fa98fb3b7144c5532341e9495418bCERT Advisory CA-2000-16 - Internet Explorer can open Microsoft Access database or project files containing malicious code and execute the code without giving a user prior warning. Access files that are referenced by OBJECT tags in HTML documents can allow attackers to execute arbitrary commands using Visual Basic for Applications (VBA) or macros. A remote intruder can send malicious HTML via an email message, newsgroup posting, or downloaded Web page and may be able to execute arbitrary code on a victim machine.
2ac36051a9e4bac06affdc8d3ca68aa41aa7d1985662ba3cee9f9797a1a045b6igmpsyn.c sends type 1 IGMP requests with random source addresses. Appears effective against Win95 / 98.
e586aa75def79fe1a2fe497ed40a6021a61562703e88d08b591f4aa935e9df9dJinro.c will transmit TCP packets which generate replies containing a modem hangup sequence. This is an improved version of the old hangup bug which may circumvent firewalls / init string patch.
a177990f433cf1832b454c2c6fec29700b7b6431125b5bee6189dfb3538da8d8x1.cpp is a utility for extracting lists of hostnames from northernlight search engine. Uses wget - tested on Linux.
050e801933c4356b808efa3fc09830292199ef555a08e5ad9a3052c6a9048fc7spam.pl is a perl script which automates the process of sending complaint letters to spammers ISP's. It strips out the proper address from the spams mail headers, taken via stdin.
a022c06c7ca2333a298d4c79b1d1c60e0f09de2419df0304950c047ad24a393eNoob 3.01 is a trojan which uses an IRC connection to control it, therefore bypassing firewalls. Uses ActiveX. Victim must be running Internet Explorer 4.0 SP1 or 5.0. Archive password is set to p4ssw0rd. Use at your own risk.
36a99e6da5bf774b5854d9bec876f052537362e9377b2c406471972a34d19a87Ipaudit records and displays network activity. It is useful for identifying high bandwith users, intrusive telnet sessions, denial of service attacks, and scans. Ipaudit stores counts of bytes and packets for every combination of host/port pairs and protocol. It also includes scripts which automatically generate webified reports, CGI scripts which organize web presentation, and the utilities "total" and "ipstrings" which can be used to investigate network traffic records from the command line.
fe18df67ab2bb5fa31f18739afbd34589b66b00f5d5c8283ecb1468b15416363Saint Jude LKM is a Linux Kernel Module for 2.2.11 and greater kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occuring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
7a4167f795924aff6fa44181378b1bca05d209648a56ee122e5379cb791f53d9Weekly Newsletter from Help Net Security Issue 25 - 07.08.2000 - Covers weekly roundups of security related events. In this issue: PAM updates, kon2 vulnerability, Cvsweb-1.90 remote vulnerability, Windows 2000 Pipe Impersonation Vulnerability, Cisco Gigabit Advisory, Serv-U 2.5E dos vulnerability, Interview with Lance Brown, Mobile Phone Viruses, Smart Download is Spyware, and more.
e02e697e8d5ad77f842079081f882f6120e6f6b87aa136d717da6774c1a5db2cMicrosoft Security Bulletin (MS00-056) - Microsoft has released a patch for the "Microsoft Office HTML Object Tag" vulnerability in certain Microsoft Office 2000 products. The vulnerability allows a user to construct a HTML file that, when read, would crash a Microsoft Office 2000 application or run arbitrary code. Affected software includes Microsoft Word 2000, Microsoft Excel 2000, and Microsoft PowerPoint 2000. Microsoft FAQ on this issue available here.
39030c4684ecc1e3c972696630c9604a68d7b6ac3ce152dbf6de2893300f1c82CERT Advisory CA-2000-15 - Systems running Netscape Communicator version 4.04 through 4.74 with Java enabled ship with Java classes that allow an unsigned Java applet to access local and remote resources in violation of the security policies for applets.
c0502d385df3d99932fdbd39395f7a2f955cc453b3afcb3aa05087faaa5b0da1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed