exploit the possibilities
Showing 1 - 25 of 111 RSS Feed

Files Date: 2002-02-01 to 2002-02-28

Posted Feb 27, 2002
Authored by Devilnet

The PHP firewall generator is a simple PHP script that generates a firewall script for ipchains-based firewalls.

tags | denial of service, php
MD5 | be41c3adf6a97e03535a3346252d8ed9
Posted Feb 27, 2002

UCD-snmp v4.2.1 and below remote root exploit which is independent of snmpwalk. Includes instructions on getting it working against any linux system by finding the return address with gdb. Originally by Jove.

tags | exploit, remote, root
systems | linux
MD5 | a3fed6d41ec48b76705e11b5b779c33f
Posted Feb 27, 2002
Authored by NTSleuth | Site ntsleuth.0catch.com

NetBIOS Enumeration Utility v2.0 is a utility for Windows which can be used to enumerate NetBios information from one single host or an entire class C subnet. The information that is enumerated includes the account lockout threshold, local groups and users, global groups and users, and shares. This utility can also check for blank passwords and for passwords that are the same as the username in lowercase letters. Runs on Windows NT 4.0/2000/XP.

Changes: Enumerates more things. Bugs were fixed. Features were added.
tags | local
systems | windows, nt
MD5 | 2f0427a1f49400313b8c785fc6588afd
Posted Feb 27, 2002
Authored by Gabriel Maggiotti | Site qb0x.net

A format string vulnerability has been found in the Unread v3.1.1 IRC server. Fix available here.

MD5 | 66e9ac34330c991fe839cdabfd1c2513
Posted Feb 27, 2002
Authored by vade79, realhalo | Site realhalo.org

Netscript is a portable and lightweight tcp socket scripting tool. It is intended to allow anyone to script situations based on a word-to-word ruleset response system. Includes wildcard support, character replacement, random replacement, argument inclusion, server timeout, initial send, display altering, multiple character dump formats, telnet protocol support, logging, program to socket dumping, executable ruleset support and reverse binding among other things.

Changes: A (modified) cygwin/windows binary based on the netscript.c source was added. The syslog priority level was changed to better suit some situations and local display of error/statistical messages was changed to use less space. A bug with the -M option (that forced the -R option) and misplacing of a #ifdef were fixed.
tags | tcp, protocol
systems | unix
MD5 | 55026e6fa66f467d9c4870918c31aa8a
Posted Feb 27, 2002
Site tud.at

fwanalog is a shell script that parses and summarizes firewall logfiles. It currently (version 0.4.1) understands logs from ipf (tested with OpenBSD 2.8's and 2.9's ipf, also FreeBSD and NetBSD), Linux 2.2 ipchains and Linux 2.4 iptables. It has been tested on Debian GNU/Linux "sid" with bash and OpenBSD 2.8 and 2.9 with ksh as /bin/sh. It can be easily extended for other logfile formats, all it takes is editing two regular expressions. Sample report available here.

Changes: Workaround was made for a problem with RedHat 7.1's buggy zegrep.
tags | tool, shell, firewall, bash
systems | linux, netbsd, unix, freebsd, openbsd, debian
MD5 | 5d7284aa34f0dbe2a2c75f42a4cb2f1d
Posted Feb 27, 2002
Site modssl.org

mod_ssl provides provides strong cryptography for the Apache 1.3 webserver via the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1). It is based on the SSL/TLS toolkit OpenSSL and supports all SSL/TLS related functionality, including RSA and DSA/DH cipher support, X.509 CRL checking, etc. Additionally it provides special Apache related facilities like DBM and shared memory based inter-process SSL session caching. per-URL SSL session renegotiations, DSO support, etc.

Changes: A fix for a potential buffer overflow in DBM and SHMHT session cache if very large certificate chains are used, Support for the latest OpenSSL 0.9.7 snapshots, and bugs fixed.
tags | encryption
MD5 | 3e3a6a630cf56daa44f33d6da8bc5e65
Posted Feb 27, 2002
Site musc.edu

Perl SNMP scanner - This small collection of scripts can be used to scan an arbitrary set of networks, presumably networks which you administer, and identify any nodes which are running an snmp service on a specified udp port (default 161) with a specified community string (default public). The results of the scan can be saved in a text file and/or in a formatted html report.

tags | tool, arbitrary, udp, scanner, perl
systems | unix
MD5 | 88400d3493c7f4e710db454e7cede941
Posted Feb 27, 2002
Site xjack.org

SnortConf is a tool that provides a fairly intuitive menu-based text interface for setting up the GPL IDS tool Snort. It also provides error and sanity checking on user input, and an online help facility.

tags | tool, sniffer
MD5 | 6583b3f44fd6dda4fd0558798df4d6a1
Posted Feb 27, 2002
Authored by Jamie Zawinski | Site jwz.org

XScreenSaver is a modular screen saver and locker for the X Window System. It is highly customizable and allows the use of any program that can draw on the root window as a display mode. It is also more stable than xlock.

Changes: Twang, glsnake, boxed, sballs, glforestfire, apollonian, euler2d, juggle, polyominoes and thornbird were added. ant, braid, demon, discrete, drift, fadeplot, forest, grav, hopalong, ifs, laser, lightning, lisa, lissie, loop, mountain, penrose, rotor, sierpinski, slip, sphere, spiral, strange, vines, xspirograph, gltext and webcollage were updated. A rare bug wherein the desktop-grabbing hacks could sometimes leave the screen wedged has been fixed.
tags | root
systems | unix
MD5 | 8d7c8b9620dfaccfb876380995af259b
Posted Feb 27, 2002
Authored by Boris Wesslowski | Site kyb.uni-stuttgart.de

Fwlogwatch analyzes the ipchains, netfilter, iptables packet filter, and Cisco logfiles and generates text and HTML summaries. Features realtime anomaly alerting capability, an interactive report generator, and the ability to cut off attacks by adding firewall rules.

Changes: This version features chain and branch selection and exclusion options, support for Windows XP firewall logs, an option to drop privileges when running as a daemon, and various small fixes.
tags | tool, firewall
systems | cisco, unix
MD5 | cdc5ba4d72c2a528503e2682fb24f493
Posted Feb 27, 2002
Site mavetju.org

dnstrace determines where a given DNS server gets its information from, and follows the chain of DNS servers back to the servers which know the data.

Changes: This release adds more info about current queries regarding zones, and more info about returned answers.
systems | unix
MD5 | f6aa8408cb054450926fb4fece270b65
Posted Feb 27, 2002
Site syscalltrack.sourceforge.net

Syscall Tracker is a very powerful tool for Linux 2.2 and 2.4 which allows you to write rules to track system calls. It includes a kernel module plus a userspace applications. Currently only logging the invocation is supported, but in the future, you will be able to fail the system call (i.e. force it to return some error code), or suspend the process executing it. Allows you find out info that is hard to find, for instance to determine which process touched a certain file.

Changes: Supports a type-cast for 'struct' syscall parameters (useful for socket calls), 'fail syscall' actions, convenience-macros in rule config files, experimental device-driver control support, 'log_format' definition per rule, and some new syscalls (waitpid, close, creat). Major bugfixes include fixes for white-space parsing, a small memory leak when deserializing 'log' actions, and a bug in the kernel module that could leave dangling function pointers.
tags | kernel
systems | linux
MD5 | c1af0ff5ce13f54b26696efca2642ecb
Posted Feb 27, 2002
Authored by Mike Ricketts | Site earth.li

SendIP is a commandline tool to send arbitrary IP packets. It has a large number of command line options to specify the content of every header of a TCP, UDP, ICMP, RIP or raw IPv4/IPv6 packet. It also allows any data to be added to the packet. Checksums can be calculated automatically, but if you wish to send out wrong checksums, that is supported too.

Changes: Compiles on more platforms, including m68k, SPARC64, hppa. Bugs were fixed.
tags | tool, arbitrary, udp, tcp
systems | unix
MD5 | 76b36e63f1b1139e86c7092ed7c010cc
Posted Feb 27, 2002
Site wipe.sourceforge.net

ya-wipe is a tool that effectively degausses the surface of a hard disk, making it virtually impossible to retrieve the data that was stored on it. This tool is designed to make sure that sensitive data is completely erased from magnetic media.

Changes: ya-wipe now doesn't rename over an existing file, and the Debian changelog was fixed.
systems | unix
MD5 | c96ddba5ffe748566cae09cd2e6f7319
Posted Feb 27, 2002
Authored by Dianne Skoll | Site roaringpenguin.com

MIME Defanger is a flexible MIME e-mail scanner designed to protect Windows clients from viruses and other harmful executables. It works with Sendmail 8.11 / 8.12's "milter" API and will alter or delete various parts of a MIME message according to a flexible configuration file.

Changes: Better integration with SpamAssassin 2.x, correct handling of suspicious characters in e-mail, and many other minor cleanups. A filter_relay function for rejecting connections early on in the SMTP dialog was also added.
systems | windows, unix
MD5 | 82c993e0292a147f11fffd96b4200498
Posted Feb 26, 2002
Authored by Gerhard Buergmann

BVI v1.1.1 is an editor for binary files using common vi - commands and additional commands for binary search and substitution.

Changes: Bug fixes and updates.
MD5 | b9d77c57bda2e019207a1874d9bb4dea
Posted Feb 26, 2002
Authored by Sorbo

Sortelnetd is a working telnetd 0.17 exploit (even remote if you are careful enough). alignment is critical. Includes a demo of how to find offsets and use against localhost.

tags | exploit, remote
MD5 | bc3466b78d7278734d0f28b61029bd10
Posted Feb 26, 2002
Authored by Roelof Temmingh | Site sensepost.com

Mieliekoek.pl is a SQL insertion crawler which tests all forms on a web site for possible SQL insertion problems. This script takes the output of a web mirroring tools as input, inspecting every file and determine if there is a form in the file.

tags | web
systems | unix
MD5 | 69a47601ba11f3408544b2e8d0eeb20f
Posted Feb 26, 2002
Site cert.org

CERT Advisory CA-2002-04 - Microsoft Internet Explorer contains a buffer overflow vulnerability in its handling of embedded objects in HTML documents. This vulnerability allows attackers to execute arbitrary code on the victim's system when the victim visits a web page or views an HTML email message. This bug was discussed in MS02-005.

tags | web, overflow, arbitrary
advisories | CVE-2002-0022
MD5 | 86fd6e68bbf8b3c6283cb00313852ed7
Posted Feb 26, 2002
Authored by Joe S

A paper in mIRC security.

MD5 | ae7f71be7e1758b13745cd9b8a41b30b
Posted Feb 26, 2002
Authored by teso, Sebastian Krahmer | Site team-teso.net

Weaknesses in the CHAP protocol as used within PPP and PPTP. Allows authentication in PPTP networks without knowing valid login/password combinations. This authentication scheme is widely used at universities (WLAN networks). A link to a special pppd which is able to authenticate without valid /etc/ppp/chap-secrets is included.

tags | protocol
MD5 | 6b4b918f410d855855fdaab340232b39
Posted Feb 26, 2002
Site netstumbler.com

NetStumbler is a Windows utility for 802.11b based wireless network auditing.

tags | tool, wireless
systems | windows
MD5 | d29a76ba61f5885d3125765f89806222
Posted Feb 26, 2002
Site bretmounet.com

ApSniff is a wireless (802.11) access point sniffer for Windows 2000. It enables you to list all access points broadcasting beacon signals at your location. Useful for helping you set new access points making sure you do not have interfering APs, and helping you set-up wireless clients by providing you with the client configuration information. Requires WLAN cards of Prism 2 chipset. It works with a DLINK DWL-650 and linksys WPC11.

tags | tool, wireless
systems | windows, 2k
MD5 | d51a9b969e8700e9035418fce98837d4
Posted Feb 26, 2002
Authored by Mike Kershaw | Site nerv-un.net

Kismet is an 802.11b wireless network sniffer. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible "interesting" (cryptographically weak) logging, and Secure SUID behavior.

tags | tool, wireless
systems | cisco, linux
MD5 | 59e97f8708cc71921d663fc923e8d463
Page 1 of 5

File Archive:

September 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    14 Files
  • 2
    Sep 2nd
    19 Files
  • 3
    Sep 3rd
    9 Files
  • 4
    Sep 4th
    1 Files
  • 5
    Sep 5th
    2 Files
  • 6
    Sep 6th
    3 Files
  • 7
    Sep 7th
    12 Files
  • 8
    Sep 8th
    22 Files
  • 9
    Sep 9th
    17 Files
  • 10
    Sep 10th
    19 Files
  • 11
    Sep 11th
    3 Files
  • 12
    Sep 12th
    2 Files
  • 13
    Sep 13th
    15 Files
  • 14
    Sep 14th
    16 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    7 Files
  • 17
    Sep 17th
    0 Files
  • 18
    Sep 18th
    0 Files
  • 19
    Sep 19th
    0 Files
  • 20
    Sep 20th
    0 Files
  • 21
    Sep 21st
    0 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2020 Packet Storm. All rights reserved.

Security Services
Hosting By