what you don't know can hurt you
Showing 1 - 25 of 28 RSS Feed

Files Date: 2001-04-07

Linux 2.2.19 Stealth Patch
Posted Apr 7, 2001
Authored by Sean Trifero | Site innu.org

The Stealth Kernel Patch for Linux v2.2.19 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.

Changes: Now works with kernel v2.2.19.
tags | kernel, tcp
systems | linux
MD5 | 29d386c15f8bd808ae57e44d43a61afc
Posted Apr 7, 2001
Authored by vade79, realhalo | Site realhalo.org

Orignick.c is an irc bot which tries to obtain any of a list of nicknames. Supports general irc functions, backgrounding, (encrypted) passwd auth, channel invite/rejoin support, random nicknames, quit priority, debug, server delay timing and other misc. functions. Tested on Linux and BSD.

systems | linux, bsd
MD5 | 5e8abd6f376adb5e29e1542f97af1031
Posted Apr 7, 2001
Authored by Max, r00tabega | Site SecurityApex.com

RetaRDS.pl checks for IIS web servers which are vulnerable to the RDS bug. Includes host list scanning and IDS evasion.

tags | web
MD5 | 403685e902185c6430f4d3e3c3796c88
Posted Apr 7, 2001
Authored by S | Site low-level.net

Randsrc is a source address randomizer - Useful to test IDS or to make multiple connections to hosts which limit the number of connections from a single IP.

systems | unix
MD5 | 422f3ab1c933c9bc422e0c64a7d4d26a
Posted Apr 7, 2001
Authored by Nemes||y

Windows SSHD remote denial of service exploit - Written in perl, affects SSH Communications Security SSH 2.4 for Microsoft Windows 95,98,NT4,2000.

tags | exploit, remote, denial of service, perl
systems | windows, 9x
MD5 | 1ec017d8169dcc2a2e97182f0e3dbf6f
Posted Apr 7, 2001
Authored by Echo8

Shareplex v2.x (Quest Software's product for Oracle database replication) contains a local security hole which allows users to read any file on the system. Vulnerable platforms include Solaris 2.6, HP/UX 10.20 & 11.00, AIX 3 and OSF/1 4.0. Patched in v2.1.3.21.

tags | exploit, local
systems | solaris, aix, hpux
MD5 | 8e91e1e4fdf37b1ed496cc2ff653f4c4
Posted Apr 7, 2001

Microsoft Security Advisory MS01-020 - A flaw in IE in handling unusual MIME types allows remote code execution via HTML email messages or when a user views a web page. Microsoft FAQ on this issue available here.

tags | remote, web, code execution
MD5 | 3894c272ce673576ae1c17a993cad89b
Posted Apr 7, 2001
Authored by teso, Skyper | Site team-teso.net

Arpmim v0.2 implements an ARP man in the middle attack. Includes single or multiple host support, asymmetric MiM, arpop_request, and macoff.

MD5 | 09271a5d4aa3e7652dd10d2a16b6a511
Posted Apr 7, 2001
Authored by vade79, realhalo | Site realhalo.org

Bfdgrep.c looks through binaries for filenames which exist on the local system.

tags | local
systems | unix
MD5 | 837ca8543e5bd646622c4a44b550ca78
Posted Apr 7, 2001
Authored by Richard Scott

CCC Harvest v5.0, a tool to audit and maintain access control to source code, uses an encryption method which is susceptible to a chosen plaintext attack, allowing users to capture and decrypt the application admin password.

tags | exploit
MD5 | 7ea8c1da59f6808cfa1abe83419c11ac
Posted Apr 7, 2001
Authored by Marukka Der Inhaber | Site msec.net

Malevolence is a exploit that allows users to view a unshadowed version of the /etc/password file on a Mac OS X computer. Malevolence is very easy to use, in either Terminal.app or though a telnet session just run Malevolence and it will create a file called "index.html" in the same directory as Malevolence. Then just open up the web browser of your choosing and view the index.html file that Malevolence created.

tags | exploit, web
systems | apple, osx
MD5 | a9c4effc9ef6f59db26882c6026999ce
Posted Apr 7, 2001
Site ideahamster.org

Open-Source Security Testing Methodology Manual - This is a document of Internet security testing methodology, a set of rules and guidelines for solid penetration testing, ethical hacking, and information security analysis including the use of open source testing tools for the standardization of security testing and the improvement of automated vulnerability testing tools.

tags | paper
systems | unix
MD5 | 039e3cb8c5d94cdfe5ee1b5f56784f88
Posted Apr 7, 2001
Site redhat.com

Red Hat Security Advisory RHSA-2001:025-14 - Updated Kerberos 5 packages are now available for Red Hat Linux 6 and 7. These packages fix a vulnerability in the handling of Kerberos IV ticket files. Updated pam_krb5 packages are now available for Red Hat Linux 7.

systems | linux, redhat
MD5 | e4bac7c257c73f61b25be4abee2385e9
Posted Apr 7, 2001
Authored by Jamie Zawinski | Site jwz.org

XScreenSaver is a modular screen saver and locker for the X Window System. It is highly customizable and allows the use of any program that can draw on the root window as a display mode. It is also more stable than xlock.

Changes: This release adds new versions of "rotzoomer" and "nerverot", includes more sensible defaults for DPMS, updates the documentation to reflect the fact that all your DPMS settings are now belong to xscreensaver, fixes the "xscreensaver.spec" file so that "--force" is no longer needed when installing the RPM, and fixes an OSF/1 compilation problem in "molecule".
tags | root
systems | unix
MD5 | 9544811d573bd5952264f7b73734a084
Posted Apr 7, 2001
Site virtua-web.co.uk

Vorpal Mail is an easily configurable but flexible replacement for sendmail, supporting advanced features such as virus scanning, virtual domains, etc.

Changes: This version fixes a nasty bug in queue loading/processing that was corrupting destination list. An INCLUDE "filename" directive was added to the configuration files.
tags | virus
systems | unix
MD5 | dafaa47e53e77e1083b6bd7082ebb856
Posted Apr 7, 2001
Site modssl.org

mod_ssl provides provides strong cryptography for the Apache 1.3 webserver via the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1). It is based on the SSL/TLS toolkit OpenSSL and supports all SSL/TLS related functionality, including RSA and DSA/DH cipher support, X.509 CRL checking, etc. Additionally it provides special Apache related facilities like DBM and shared memory based inter-process SSL session caching. per-URL SSL session renegotiations, DSO support, etc.

Changes: This release includes the move of the Shared Memory Cyclic Buffer session cache variant from 'experimental' to 'production', modifications to Win32's specific SSL_recvwithtime() function to use the same retry logic as SSL_writewithtimeout(), more robust mutex handling by retrying the semaphore-based operations in interrupt situations, logging of OpenSSL error messages if the RSA temporary key(s) cannot be generated, and fixes to return DECLINED instead of OK in the mod_ssl Auth handler.
tags | encryption
MD5 | 407f8440d5dbfd99f1254b463507ea2a
Posted Apr 7, 2001
Authored by Mark Sutton | Site freevsd.org

FreeVSD facilitates true Linux Virtual Servers within a 'chroot' environment, allowing Web servers and other applications to be deployed and administered discretely, without compromise to security. Each Virtual Server has its own IP address(es), Apache webserver, and view of the process table. FreeVSD expands the Linux system by creating a pseudo-'super user' (admin) for each Virtual Server. The admin user has the ability to create extra POP3/FTP and Telnet users and also administrate vital services such as the webserver.

Changes: A new module for VSD (mod_bind), with extensions to allow the remote configuration of BIND-8 nameservers. With mod_bind individual virtual server owners can securely and reliably manage their own name server entries. The module has been designed to interface with existing BIND-8 nameservers with an absolute minimum of additional configuration required.
tags | web
systems | linux, unix
MD5 | 9d3007a83e4cc88a0ed41b4237a3b0ac
Posted Apr 7, 2001
Authored by Aaron D. Marasco | Site aaron.marasco.com

Fireparse is a perl script that is executed daily that e-mails a report of all packets that have been logged by the v2.2.x kernel's ipchains packet filtering subsystem. The report includes source and destination ports, direction, packet count, ipchains rule, and fully resolved host name. The e-mail report can be formatted plain text or a colorized HTML table.

tags | tool, kernel, perl, firewall
systems | linux
MD5 | 0ad965be905c378fbbefdd1d2ea3ef8b
Posted Apr 7, 2001
Site download.sourceforge.net

EmailScan checks incoming multipart e-mails for bad file types, filenames, trojans, and viruses using procmail, calling Norton AntiVirus for scanning.

Changes: Execution is now from the delivery agent, not the MTA. Some annoying bugs have been fixed.
tags | trojan
systems | unix
MD5 | 05300965b00237a1b585b721467445ba
Posted Apr 7, 2001
Authored by Juan Toledo | Site etherape.sourceforge.net

Etherape is an etherman clone which displays network activity graphically. Active hosts are shown as circles of varying size, and traffic among them is shown as lines of varying width. It is GNOME and pcap based. Screenshot here.

Changes: Enhancements, and as usual, some bug fixes.
tags | tool, sniffer
MD5 | 92c2d9eca7c59a55ef1e7c0eeedb4605
RNmap 0.5.2 Beta
Posted Apr 7, 2001
Authored by Tuomo Makinen | Site sourceforge.net

Remote Nmap is a python client/server package which allows many authorized clients to connect to a centralized nmap server to do their port scanning. This could be useful for security companies who want to have all their scans come from a dedicated machine.

Changes: Various bugfixes and more error checking code.
tags | tool, remote, nmap, python
systems | unix
MD5 | 9a58f172787605af826f032d3af911f0
Posted Apr 7, 2001
Site gsyc.inf.uc3m.es

Jail is a chrooted environment using bash. its main use is to put it as shell for any user you want to be chrooted. Their primary goals is to be simple, clean, and highly portable.

Changes: Cosmetic cleanup of the Makefile script, now you can install & build it from a single command (as root)! Added some useful comments into the code. IRIX 6.5 bug in execve() confirmed and isolated.
tags | shell, bash
systems | unix
MD5 | 5bbca1579aa21c625b5c3b5a32e12675
Posted Apr 7, 2001
Site pgp.com

LOMAC is a security enhancement for Linux that uses Low Water-Mark Mandatory Access Control to protect the integrity of processes and data from viruses, Trojan horses, malicious remote users, and compromised root daemons. LOMAC is implemented as a loadable kernel module - no kernel recompilations or changes to existing applications are required. Although not all the planned features are currently implemented, it presently provides sufficient protection to thwart script-kiddies, and is stable enough for everyday use. Whitepaper available here.

Changes: Revised Default Policy to allow remote level-2 root logins via ssh and improved logging.
tags | remote, kernel, root, trojan
systems | linux
MD5 | 9f8d44b9e0af30b477eb3de9ef507084
Posted Apr 7, 2001
Authored by Paul Starzetz

Maxty is a small kernel-space tty sniffer. It is a LKM which will attach to read/write syscalls and save incoming/outgoing requests to opened tty devices into separate log files. It provides a way keeping a track what is happening on virtual consoles similar to a keystroke recorder.

tags | kernel
systems | linux
MD5 | 8ed7a10a7153e74d0f1495d65783dc4d
Posted Apr 7, 2001
Authored by Provos | Site monkey.org

scanssh scans a list of addresses and networks for running SSH servers and their version numbers. scanssh supports random selection of IP addresses from large network ranges and is useful for gathering statistics on the deployment of SSH servers in a company or the Internet as whole.

Changes: A fix for address generation problems for networks with more than 64,000 addresses, and a new option that causes a different log message on the scanned machines.
tags | tool, scanner
systems | unix
MD5 | fff7dff75e5b7b8223350da78b42dac8
Page 1 of 2

File Archive:

July 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    15 Files
  • 2
    Jul 2nd
    19 Files
  • 3
    Jul 3rd
    11 Files
  • 4
    Jul 4th
    0 Files
  • 5
    Jul 5th
    0 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    0 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2020 Packet Storm. All rights reserved.

Security Services
Hosting By