Twenty Year Anniversary
Showing 1 - 25 of 37 RSS Feed

Files Date: 2002-06-03

Posted Jun 3, 2002
Authored by Victor Pereira

Logclean.c is a tool to clean entries in utmp/wtmp which uses Operational System functions getutent(3), pututline(3), making it faster.

tags | tool, rootkit
systems | unix
MD5 | 6f02b768ea6be67d824fc852010f7301
Posted Jun 3, 2002
Authored by Phrail | Site

Orgasm v1.0 is a distributed reflection denial of service attack. More information available here.

tags | denial of service
MD5 | 1c5a3f2ae8e4f73560831bd942abe4f0
Posted Jun 3, 2002
Authored by Pluf | Site

PluSHS allows a user to resolve the names of a single IP address or entire network of addresses to maintain a "map" of the names that comprise a certain network.

tags | tool, scanner
systems | unix
MD5 | 064be0c57d85be24c358fa9ca0abac81
Posted Jun 3, 2002

The following FreeBSD ports prior to the listed version have security vulnerabilities: amanda-, fetchmail-5.9.11, gaim-0.58, gnokii-0.4.0.p20, horde-1.2.8, imap-uw (not fixed), imp-2.2.8, linux-netscape 6.2.3, mnogosearch-3.1.19_2, mpg321-0.2.9, ssh2 password auth issue, tinyproxy-1.5.0, and webmin-0.970.

tags | vulnerability, imap
systems | linux, freebsd
MD5 | 977f1a291e94483e10d6ea3c8f67ae6b
Posted Jun 3, 2002
Authored by Smurfy

IBM x86 Informix SE-7.25 sqlexec local root exploit. Overflows the INFORMIXDIR environment variable passed to the sqlexec binary. Offsets for Redhat 7.0 and Mandrake 8.2 included.

tags | exploit, overflow, x86, local, root
systems | linux, redhat, mandrake
MD5 | da2d8d7252cd7f717094f2dbefcf00a7
Posted Jun 3, 2002
Authored by sk | Site

Yahoo! Messenger v5,0,0,1061 buffer overflow exploit for Windows XP Pro. Shellcode spawns cmd.exe. Fix available here.

tags | exploit, overflow, shellcode
systems | windows, xp
MD5 | 6b034bb903cb803663c8e22ba5942b5b
Posted Jun 3, 2002
Authored by Itadem

Itadem Trojan v1.1 is a small trojan controlled by a web browser. Archive password is set to p4ssw0rd. Use at your own risk.

Changes: Now supports renaming of server, added some other functions & fixed some bugs.
tags | web, trojan
MD5 | 87410c71e57373f16ce6067dcc3cab8a
Posted Jun 3, 2002
Authored by The OpenSSL Team | Site

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Minor bug fixes.
tags | encryption, protocol
MD5 | 6cba586958f6e35f28dde70bd9e5d10a
Posted Jun 3, 2002

Darkstat is an ntop-workalike network statistics gatherer. Built to be faster and smaller than ntop, it uses libpcap to capture network traffic and serves up Web page reports of statistics such as data transferred by host, port, and protocol. It also has a neat bandwidth usage graph.

Changes: The Web interface can now be bound to any local IP address, using a command-line parameter. A rare segfault in host report sorting has been fixed. Internationalization support has been added.
tags | tool, web, sniffer, protocol
MD5 | fb0652bd0a386e7d639d75ff3a9d9c89
Posted Jun 3, 2002

Firestorm is an extremely high performance network intrusion detection system (NIDS). Right now it is just a sensor but there are plans are to include real support for analysis, reporting, remote console, and on-the-fly sensor configuration. It is fully pluggable and hence extremely flexible.

Changes: Lots of bugs have been fixed. An 802.1q (VLAN) decode plugin has been added.
tags | tool, remote, intrusion detection
systems | unix
MD5 | 47b4ad43b07f648553dc77cadf44b1a7
Openwall Linux Kernel Patch
Posted Jun 3, 2002
Authored by Solar Designer | Site

The Openwall Linux kernel patch is a collection of security "hardening" features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.

Changes: Updated for Linux 2.2.21. Permissions on /proc entries have been changed to be consistent with Linux 2.4.18-ow0, and the getcwd(2) instance of the d_path() truncation problem and the fsuid/fsgid handling inconsistency have been fixed.
tags | overflow, kernel
systems | linux
MD5 | 0b846c829eae6276c57357fe72c3d180
Samhain File Integrity Checker
Posted Jun 3, 2002
Authored by Rainer Wichmann | Site

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, tamper-resistant log file, and syslog) are available. Tested on Linux, AIX 4.1, HP-UX 10.20, Unixware 7.1.0, and Solaris 2.6.

Changes: Fixes some bugs introduced with new features in version 1.5.0.
tags | tool, tcp, intrusion detection
systems | linux, unix, solaris, aix, hpux, unixware
MD5 | bf6d05dd90a641d2bc5e4a222f2ce365
Posted Jun 3, 2002
Authored by Hank Leininger | Site

HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.

Changes: This release has been synchronized with kernel 2.2.21 and Openwall 2.2.21-1.
tags | root, patch
systems | linux, unix
MD5 | 67511c74366e9200d7065dcbdafb779d
Posted Jun 3, 2002
Authored by Jeroen Vreeken | Site

Motion uses a video4linux device for detecting movement. It makes snapshots of the movement which later will be converted to MPEG movies, making it useful as an observation or security system. It can send out email and SMS messages when detecting motion.

Changes: This release is fully threaded, enabling capture of multiple inputs from the same video device and capturing from multiple devices (plus various combinations). Added PostgreSQL support. Now capable of using ffmpeg to make real-time MPEG movies. There is a new time lapse option and various other enhancements.
systems | linux
MD5 | 10494e49883e30099fe2dbb9709cc0ef
Posted Jun 3, 2002

SmtpRC is a fully configurable, multithreaded open mail relay scanner which supports scanning of IP blocks and can print the results to a Web page. It is intended for Systems Administrators to check IP blocks under their control.

Changes: Added a new feature to display scan results in machine readable format. Changed all HTML output to XHTML, and fixed several bugs that were causing problems with the HTML output formatting.
tags | web
systems | unix
MD5 | 11f562ee1b6de51494749ba0e70729c6
Posted Jun 3, 2002
Authored by s0ftpj, vecna | Site

Umpf is a system for managing encrypted files without using encrypted filesystems such as cfs/tcfs loop-aes/kerneli. Does not require root to run, is lightweight, and transparent.

tags | root
MD5 | 13c17a159341c5fc25c40199d9d78af5
Posted Jun 3, 2002

Linux Security Auditing Tool (LSAT) is a post install security auditing tool. It is modular in design, so new features can be added quickly. It checks inetd entries and looks for unneeded RPM packages. It is being expanded to work with Linux distributions other than Red Hat, and checks for kernel versions.

Changes: Fixed checkinetd (even under Red Hat 7.3), checkftpusers, and a symlink attack in checkfiles.
tags | kernel
systems | linux, redhat
MD5 | 1cf21e26b25db0a2353bf63a7f886b54
Posted Jun 3, 2002

IP Sorcery is a TCPIP packet generator which allows you to send TCP, UDP, and ICMP packets with a GTK+ interface.

Changes: OSPF format packet support has been added. RIP has been added to the HOWTO. Bugs were fixed.
tags | udp, tcp
systems | unix
MD5 | 7d7c4ffe56e122313c2676b8aa8d0751
Posted Jun 3, 2002
Authored by Dianne Skoll | Site

MIME Defanger is a flexible MIME e-mail scanner designed to protect Windows clients from viruses and other harmful executables. It works with Sendmail 8.11 / 8.12's "milter" API and will alter or delete various parts of a MIME message according to a flexible configuration file.

Changes: Default filter has improved filename matching which should yield fewer false alarms. Support was added for the F-Risk F-Prot virus scanner. The -U option drops privileges sooner - you may have to change your Sendmail configuration file.
systems | windows, unix
MD5 | ee9f7a89068d6c8d6395cad6156917a0
Posted Jun 3, 2002
Authored by Michal Zalewski | Site

Fenris is a multipurpose tracer, stateful analyzer and partial decompiler intended to simplify bug tracking, security audits, code, algorithm, protocol analysis and computer forensics by providing a structural program trace, general information about internal constructions, execution path, memory operations, I/O, conditional expression info, and much more. A small demonstration how this tool works can be found here.

Changes: GUI is now stable. There are several bugfixes, efficiency improvements, anti-debugging trap detection, better blocking syscall handling, and many more features.
tags | protocol
MD5 | ab497d7ebddf114494111e46554adb7c
Posted Jun 3, 2002
Authored by Jamie Zawinski | Site

XScreenSaver is a modular screen saver and locker for the X Window System. It is highly customizable and allows the use of any program that can draw on the root window as a display mode. It is also more stable than xlock and has more than 150 modes.

Changes: Added support for GTK/GNOME 2.x, the new hacks lavalite, queens, and anemone. Image loading no longer relies on external programs (xloadimage, etc). Webcollage no longer generates a lot of 404s and can now be used in conjunction with Driftnet to display images snooped from your local ethernet.
tags | root
systems | unix
MD5 | 79f99780be37eec5d7ffb8671afe7406
Posted Jun 3, 2002

Cheops-ng is a graphical network management tool for mapping and monitoring your network. It has host/network discovery functionality, OS detection, and it also does a port scan of each computer to tell what services are running, so you can use or administer them.

tags | tool, scanner
systems | unix
MD5 | 0e5abe29fd9fa1928eec50954145028e
Posted Jun 3, 2002
Site is a small script which, when given syslogs generated by snort or other tools, can generate an incident report for events that appear to be attempted security attacks, gather information on the remote host, and report the attack to the appropriate administrators.

Changes: is now queried for contacts. An option to not ignore 'Received:' lines in the input has been added.
tags | tool, remote, sniffer
MD5 | 867a342d88043e99772f83e07e968309
Posted Jun 3, 2002
Authored by Andrea Barisani

The Firewall Tester consists of two perl scripts, the client part (ftest) and the listening sniffer (ftestd). The client injects custom marked packets, while the sniffer listens for them. The comparison of the script's log files permit the detection of filtered packets and consequently filtering rules if the two scripts are ran on different sides of a firewall. An IDS (Intrusion Detection System) testing feature is also available and snort rule definition file can parsed instead of the standard configuration syntax, ftest can also use common IDS evasion techniques. Stateful inspection firewall and IDS can be handled by the 'connection spoofing' option. CHANGES: Added fragmentation option, added option for specifying IP fragments and TCP segments numbers and size, added fragmentation related evasion techniques, extended syntax now works also for connection spoofing modes, various bugfixes, see Changelog for details. Requires: Net::RawIP, Net::PcapUtils, NetPacket.

tags | tool, perl, spoof, tcp, firewall
systems | unix
MD5 | 6eb35a8340580ff4bf783e482b2cb5e8
Posted Jun 3, 2002
Authored by Frederic Raynal | Site

Libfmtb v0.3 is a library with lots of functions for easily exploiting local and remote format string vulnerabilities.

tags | remote, local, vulnerability, library
MD5 | f4e79b706fa8a2b23518f6ed52c9357f
Page 1 of 2

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2018 Packet Storm. All rights reserved.

Security Services
Hosting By