The PHP firewall generator is a simple PHP script that generates a firewall script for ipchains-based firewalls.
cbb7f73e65fb673766302f2722cefdb7c67b61d1de69bb20f3b4d5e91d1b8797
UCD-snmp v4.2.1 and below remote root exploit which is independent of snmpwalk. Includes instructions on getting it working against any linux system by finding the return address with gdb. Originally by Jove.
71d2aae96d921716b391fd095a13ad6b823570eca8c2e8aca4dd041f6de7e910
NetBIOS Enumeration Utility v2.0 is a utility for Windows which can be used to enumerate NetBios information from one single host or an entire class C subnet. The information that is enumerated includes the account lockout threshold, local groups and users, global groups and users, and shares. This utility can also check for blank passwords and for passwords that are the same as the username in lowercase letters. Runs on Windows NT 4.0/2000/XP.
abda5b3744e8363f1bc6df99696533e45539041e8f60f31474a58cc52b0367c5
A format string vulnerability has been found in the Unread v3.1.1 IRC server. Fix available here.
bed21eac274bf0fa1b5f19e58353c703fb22d0623a1825013bd41eb684778f76
Netscript is a portable and lightweight tcp socket scripting tool. It is intended to allow anyone to script situations based on a word-to-word ruleset response system. Includes wildcard support, character replacement, random replacement, argument inclusion, server timeout, initial send, display altering, multiple character dump formats, telnet protocol support, logging, program to socket dumping, executable ruleset support and reverse binding among other things.
b5aacf67e2cc669521c50f42bfbef95f6b53a01cb43f9821666edea091b088aa
fwanalog is a shell script that parses and summarizes firewall logfiles. It currently (version 0.4.1) understands logs from ipf (tested with OpenBSD 2.8's and 2.9's ipf, also FreeBSD and NetBSD), Linux 2.2 ipchains and Linux 2.4 iptables. It has been tested on Debian GNU/Linux "sid" with bash and OpenBSD 2.8 and 2.9 with ksh as /bin/sh. It can be easily extended for other logfile formats, all it takes is editing two regular expressions. Sample report available here.
c1e4eccf4ec3e70680c875caeb309d8153d1e0aa203fe0838f355d1a93884aea
mod_ssl provides provides strong cryptography for the Apache 1.3 webserver via the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1). It is based on the SSL/TLS toolkit OpenSSL and supports all SSL/TLS related functionality, including RSA and DSA/DH cipher support, X.509 CRL checking, etc. Additionally it provides special Apache related facilities like DBM and shared memory based inter-process SSL session caching. per-URL SSL session renegotiations, DSO support, etc.
3ca3d0604802bf6c11c521087c7ade417afd826cc5181d788add943eae5e5a67
Perl SNMP scanner - This small collection of scripts can be used to scan an arbitrary set of networks, presumably networks which you administer, and identify any nodes which are running an snmp service on a specified udp port (default 161) with a specified community string (default public). The results of the scan can be saved in a text file and/or in a formatted html report.
375c8fa7d64676b69c9f0ea7ffb14853be185a7a86c4e5d7179e9cbbe716ce6f
SnortConf is a tool that provides a fairly intuitive menu-based text interface for setting up the GPL IDS tool Snort. It also provides error and sanity checking on user input, and an online help facility.
57332b70a4f6572828c412ee0be68a2b4b60779721748edd10a6e2c6b4176f71
XScreenSaver is a modular screen saver and locker for the X Window System. It is highly customizable and allows the use of any program that can draw on the root window as a display mode. It is also more stable than xlock.
49fb242bc3f3d08d8e4521054bacc85fc0733d1612e886babfdefa51196a94ec
Fwlogwatch analyzes the ipchains, netfilter, iptables packet filter, and Cisco logfiles and generates text and HTML summaries. Features realtime anomaly alerting capability, an interactive report generator, and the ability to cut off attacks by adding firewall rules.
68209ad1c30a88e43b411a53ee657b075e709d2115aeb9d5e5a559f5f1c92e07
dnstrace determines where a given DNS server gets its information from, and follows the chain of DNS servers back to the servers which know the data.
7120535e5e37be74fbd86a7df2ad7e46dec32ed19abc0a552f90ba51611cfe3a
Syscall Tracker is a very powerful tool for Linux 2.2 and 2.4 which allows you to write rules to track system calls. It includes a kernel module plus a userspace applications. Currently only logging the invocation is supported, but in the future, you will be able to fail the system call (i.e. force it to return some error code), or suspend the process executing it. Allows you find out info that is hard to find, for instance to determine which process touched a certain file.
6b61f46abcf4b13779a9021bed8f1d3b71d5f0bd777084d2110781c08f674ba0
SendIP is a commandline tool to send arbitrary IP packets. It has a large number of command line options to specify the content of every header of a TCP, UDP, ICMP, RIP or raw IPv4/IPv6 packet. It also allows any data to be added to the packet. Checksums can be calculated automatically, but if you wish to send out wrong checksums, that is supported too.
7bcc20fa0f965dec2e23bcc6760f5e6e685ccd036c97d957472aaf78f1d18c4e
ya-wipe is a tool that effectively degausses the surface of a hard disk, making it virtually impossible to retrieve the data that was stored on it. This tool is designed to make sure that sensitive data is completely erased from magnetic media.
ac29b4a8b1166db50efde6a801e0dfb8395cb3d0a487d6d8216fc2b09dbff29b
MIME Defanger is a flexible MIME e-mail scanner designed to protect Windows clients from viruses and other harmful executables. It works with Sendmail 8.11 / 8.12's "milter" API and will alter or delete various parts of a MIME message according to a flexible configuration file.
33453a6aa5efc440c89150823b0d3253efa214933fcb5229ee9d3c7bf264b656
BVI v1.1.1 is an editor for binary files using common vi - commands and additional commands for binary search and substitution.
c94dbfa293cbc61b8571d025e90fd1f06a34f8d4e5b11a59856bfc1f13014de3
Sortelnetd is a working telnetd 0.17 exploit (even remote if you are careful enough). alignment is critical. Includes a demo of how to find offsets and use against localhost.
6e643b30e9635a5e3b22d1113b59356de6894ddf8033ed508db6d01f8a7808f3
Mieliekoek.pl is a SQL insertion crawler which tests all forms on a web site for possible SQL insertion problems. This script takes the output of a web mirroring tools as input, inspecting every file and determine if there is a form in the file.
fe1bfe7f6e6e16ac4c2fcbed336c09b562bbbe5cb6b8556bfdf043b0c7344cff
CERT Advisory CA-2002-04 - Microsoft Internet Explorer contains a buffer overflow vulnerability in its handling of embedded objects in HTML documents. This vulnerability allows attackers to execute arbitrary code on the victim's system when the victim visits a web page or views an HTML email message. This bug was discussed in MS02-005.
9a86954b827531979248410932ae6b826879622ef9498d4d64c93d6d37982945
A paper in mIRC security.
90a2207d0d828df429e655944406fbc25002e8d8c14bbe55d716c17f03e9ade0
Weaknesses in the CHAP protocol as used within PPP and PPTP. Allows authentication in PPTP networks without knowing valid login/password combinations. This authentication scheme is widely used at universities (WLAN networks). A link to a special pppd which is able to authenticate without valid /etc/ppp/chap-secrets is included.
a57abb2faae0727b81e1510955840c818aed9a508d24a18b84c7c47e18cd0da4
NetStumbler is a Windows utility for 802.11b based wireless network auditing.
c27225ba4264acde0d6ea5ab87765dc3481c0a71598cd2219ffa5d54825d6786
ApSniff is a wireless (802.11) access point sniffer for Windows 2000. It enables you to list all access points broadcasting beacon signals at your location. Useful for helping you set new access points making sure you do not have interfering APs, and helping you set-up wireless clients by providing you with the client configuration information. Requires WLAN cards of Prism 2 chipset. It works with a DLINK DWL-650 and linksys WPC11.
a21ff12cd0f685ecb6beedee3258a44546d209435187179a19c1cace86d71521
Kismet is an 802.11b wireless network sniffer. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible "interesting" (cryptographically weak) logging, and Secure SUID behavior.
650217f643c0fcd7692ecb59ff0d20b1c0ba84ae2af7abb9eac15f01dd14ed1b