Le Guardian is a new Windows trojan written in VB6 with many remote control functions. Uses TCP port 1001 for communication. Archive password is set to p4ssw0rd. Use at your own risk.
7b3b42d44844ad10e85b0fc98f837f1fc7438eada56121cb920211452e7ea0e3Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog,a seperate "alert" file, or as WinPopup messages via Samba's smbclient.
55860ab8906f2d35a4d97a935e5d711818cc80f3002a5347d12c068993f84b7dSnort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog,a seperate "alert" file, or as WinPopup messages via Samba's smbclient.
478753398be1e848bd7acd2ec02611f98748a6933e6f03080ee760b08900ddfeSUID Advisory #10 - EZ Shopper 3.0 remote exploit. Anyone can execute any command on the remote system with the priveleges of the web server, and read any file on the remote system.
34f25822d0c29daeab945d4bb6017e10d3264a9d52550b4c41969e9cf382fd0dFaith Issue 12 - PSTS information gathering, TACS - Customer Line Testing on Digital Exchanges, Meridian PBX remote administration, Cellular phone tracking, and Overview of digital CCITT system 5.
bd12e1ae9ef765a93161b7696f9db64a3a24e0b7367089a6695362588bb8c688Technical info on TACS and how it can be used to monitor telephone calls.
0e4701bc00451352a39e9f10346b7b34aae18e0341e0e36bfc358e18f1dd5b4fDebian Security Advuisory - Remote exploit in nmh. The version of nmh that was distributed in Debian GNU/Linux 2.1 (aka slink) did not check incoming mail messages properly. This could be exploited by using carefully designed MIME headers to trick mhshow into executing arbitrary shell code. Debian security homepage here.
bb24e9bd73fb27baef2bc834b365ef2605c7da4108d8330bdcfdfe2b205d8e36PIKT is a multi-functional tool for monitoring systems, reporting and fixing problems, and managing system configurations. PIKT is quickly gathering potential as a serious security management system. PIKT comprises an embedded scripting language with unique, labor-saving features.
ebc30db435190688d79cf0f5e8076344943e31ba948072412ba14e8b07829091Apache is the most popular webserver on the internet.
8f575d8279fe91bcc6c54dded903530d243f67a15c0e1656522b98512a506985Sten Kalenda wrote this handy script for laptop users that change their IP address frequently. This automates the process of updating your Snort rules file.
702661d6499fd7cf603d04b2005b122d7d3a5c4e67622071dd585c09cc754539Microsoft Media Server 4.1 - Denial of Service exploit. This code will crash the Microsoft Media Unicast Server for Windows NT. We have tested this against machines running SP4 and SP6. Exploits the bug in ms00-013
cf6c20c1bd7246463c77ae25834294b7ce3a4cd2ae2fbfb9bfe122b462e14495If X11forwarding is turned on, and remote xauth is patched, sshing into a compromised server can allow programs to be run on under your ssh client. This is turned on by default in ssh1, ssh2, and openssh.
083e386a21e2ee341ea8c6922e55896cde8a2b905b0e442bf586d17e95bf58d8SUID Advisory #8 - Corel Linux 1.0 dosemu distribution configuration. Local users can take advantage of a packaging and configuration error (which has been known and documented for a long time) to execute arbitrary commands as root. Exploit description included.
96c2147114c2083d447c403b05ebe76f0fce1a1dd0a956feda12721668e91518SUID Advisory #7 - Corel xconf utils local root (among others) vulnerability - Local users can take advantage of lack of input validation and the lack of privilege dropping to gain root access, read any file, or perform a denial of service attack on Corel Linux systems.
e0779a0f39462f1e76553c9a16bd665c4bd32dbc04921ce7b2363ed40212fb1bBasic CallerID Logger is a perl script which provides CID logging to a database. It was written to use mysql but as long as you can generate the table for your own database, it should work fine. It puts the data into the table without any format changes; the idea is that an auxiliary program can make the format changes when it displays the data.
37deaffb089381912d8e5ae0edfe1798a039efd263edc68e910c5ac2e6a2b50flkpatch is a Linux kernel patcher. It connects to the fastest mirror, checks for new versions of the Linux kernel, downloads them, and patches your kernel source. It determines the fastest mirror by keeping track of previous download times.
1a234e67a804aa5c05f9783e13ec5602498c8bb1b534244cafd3b180f1e343d3Medusa DS9 is used to increase Linux's security. It consists of two major parts, Linux kernel changes and the user-space daemon. Kernel changes do the monitoring of syscalls, filesystem actions, and processes, and they implement the communication protocol. The security daemon communicates with the kernel using the character device to send and receive packets.
e30cd855861c797c09409abd181162212fe0cd69a038f27e2efee82072f17677NetBus 1.6 (Patch 4) - Patched to avoid detection by Spider, Drweb, Avp, and Norton Antivirus. Archive password is set to p4ssw0rd. Use at your own risk.
038a91f8d27ee8603040e79ae6d00da67c535f7f1da6333069b65cc5271f73ddBack Oriface 1.20 (Patch 8) - Patched to avoid detection by Drweb, Avp, and Norton Antivirus. Archive password is set to p4ssw0rd. Use at your own risk.
df6dd89973ea80854ecdeb64af2c2a3c9d1a481a1303416ef991cce0ac773244ICQ trojan - Patched to avoid detection by Drweb, Avp, and Norton Antivirus. Archive password is set to p4ssw0rd. Use at your own risk.
91109dd3636156804ff080e5ef796d4179d09b7f040f436e6083308b9ad02764Girlfriend remote control trojan - Patched to avoid detection by Drweb, Avp, and Norton Antivirus. Archive password is set to p4ssw0rd. Use at your own risk.
f0b8301a62219a211d29fb07000acd20f74bc7ce39ff340138b356c7381c941dNarrow Security Scanner 2000 searches for 341 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE.
1865f7490af47de613f86e7a76f25b4390edffeca15d793cdb6566e8202dc5e6The one and only way to bypass the Power On BIOS password of a Toshiba Notebook. This method works on all models.
e8d2a181c14abba4811368c718535b1ecf1f7973b516f96befe422e3ef52cc4cAicmpsend is a perl script for sending custom ICMP packets.
9aedb80c57bf46b31ee5ea9f89cdc5ab838aba4916f18735d83d07848c8192faCGI vulnerability scanner version 2.00. Checks for 173 CGI vulnerabilities. Tested on linux, freebsd, and irix.
0431b7efce10152b2d33936031b456224a8417c3e9dd186c96dad485ee727526
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed