exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 76 - 100 of 100 RSS Feed

Files

Snort 2.9.7.0-WIN32 DLL Hijacking
Posted Sep 30, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Snort version 2.9.7.0-WIN32 suffers from a dll hijacking vulnerability.

tags | exploit
systems | windows
advisories | CVE-2016-1417
SHA-256 | 99e8267b21959831c715ef5fa474d44025b8ef4dced326af53c493d96ca68d98

Related Files

snort-1.6-beta10.1.tar.gz
Posted Feb 28, 2000
Authored by Martin Roesch | Site clark.net

Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog,a seperate "alert" file, or as WinPopup messages via Samba's smbclient.

Changes: Logging was broken in this mornings snort release, snort-1.6-beta10.
tags | tool, overflow, cgi, sniffer
SHA-256 | 55860ab8906f2d35a4d97a935e5d711818cc80f3002a5347d12c068993f84b7d
snort-1.6-beta10.tar.gz
Posted Feb 28, 2000
Authored by Martin Roesch | Site clark.net

Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog,a seperate "alert" file, or as WinPopup messages via Samba's smbclient.

Changes: Modified minfrag proprocessor to only catch tiny frags, added -C command line switch to print packet payloads as ASCII only, bug/crash fixes.
tags | tool, overflow, cgi, sniffer
SHA-256 | 478753398be1e848bd7acd2ec02611f98748a6933e6f03080ee760b08900ddfe
snort-1.6-beta8.tar.gz
Posted Feb 8, 2000
Authored by Martin Roesch | Site clark.net

Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog, a seperate "alert" file, or as WinPopup messages via Samba's smbclient.

Changes: This is a *BETA* release. Bleeding edge users only! Added many patches, Added IPv6 counter, Added content-list rules, fixes portscan preprocessor, added time based logfile naming, Streamlined the "fast" alert printout function, new quiet mode, many bugfixes.
tags | tool, overflow, cgi, sniffer
SHA-256 | eb3ef74dbb68f330618db7c3b2af27654b28a5914760f07f9c33108db2d881f8
snort-1.5.1.tar.gz
Posted Jan 26, 2000
Authored by Martin Roesch | Site clark.net

Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog, a seperate "alert" file, or as WinPopup messages via Samba's smbclient.

Changes: fixed a problem with pass rules not being applied properly, fixed slackware 4 install problem, fixed banner output for the -V option, Added packet buffer cleanup code to all protocol decoders, and Added a Snort man page.
tags | tool, overflow, cgi, sniffer
SHA-256 | c9aa00003a3c2fe7589af1f23d5322b9668e46a5f9b48f98697f20066d100514
snort-ids.trinoo.txt
Posted Dec 14, 1999
Authored by Stefan Aeschbacher | Site aeschbacher.ch

Rules for the Snort IDS to detect trinoo. This rules work only as long as the ports/passwords/protocol aren't changed.

tags | denial of service, protocol
SHA-256 | 9fcda51f95f3667603e76ac938fe89c545edda9dc68c9f6af095f4f059bf4f97
snort-1.5.tar.gz
Posted Dec 9, 1999
Authored by Martin Roesch | Site clark.net

Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog, a seperate "alert" file, or as WinPopup messages via Samba's smbclient.

Changes: detection and preprocessor plugins (think packet sniffing API), rule file variables and includes, preprocessors, TCP session logging, new detection capabilities (IP options, multiple content strings per rule), new protocol decoders (I4L-ISDN, NULL), new http preprocessor normalizes web traffic, defeating evasive web scanners like whisker.pl, faster and more accurate IP and TCP option decoders, etc.
tags | tool, overflow, cgi, sniffer
SHA-256 | fbcf52430b9b6f565608394593577f039ed3eccb3f8e9782aa78c44553dcefb8
snort-1.3.1.tar.gz
Posted Oct 13, 1999
Authored by Martin Roesch

Version 1.3.1 of Snort, the lightweight network intrusion detection system. Version 1.3.1 fixes an annoying crash bug, plus enhances a number of features of the program. Invalid ICMP types/codes can now be filtered or monitored, the tcpdump file playback facility can use BPF filters, and the packet payload size check keyword now accepts greater than/less than modifiers.

tags | tool, sniffer
SHA-256 | 6a7e0f7ecefe5665e005a26a74d0f35b9b2e824811ed00eef81ffb1e6a9b589b
snort-1.3.tar.gz
Posted Sep 27, 1999

Snort 1.3, the lightweight network intrusion detection system. This version has a number of new features, including four new command line switches, three new rule options, two new rule operators, performance enhancements, and bug fixes. The official Snort homepage is here

tags | tool, sniffer
SHA-256 | 1cbe8322edbc66f8cf71a5cd16a16cc8e46c0a1f5de46f209d4799ffb56baa70
snort-1.0.1-lib
Posted Aug 17, 1999
Authored by Martin Roesch

This snort-lib ruleset for the latest version of snort has over 150 rules.

tags | tool, sniffer
SHA-256 | 839f90c490bfead04e2d4c24d5a88966c6057b602458a746c938b909417d7738
snort-1.0.1.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort 1.0.1 - Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging which can perform content searching/matching and may be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog or a seperate "alert" file.

Changes: Lots of little bug fixes, plus resolved some issues on big endian hardware, fixed some bugs under Solaris to make the system compile cleanly "out of the box". Also added HP-UX and S/Linux support, new command line switch "-x" to explicitly turn on IPX decoding (such as it is) as a sanity measure for people in mixed protocol environments and added packet summary statistics upon exit.
tags | tool, overflow, cgi, sniffer
SHA-256 | eceabec596f28a8dfaa2f89f3943bf60101d5f831af168c770ceccfc65e77a8c
snort-0.99b1.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort v0.99b1 is a packet logger that reads and parses packets from the link layer through the transport layer, dumping explicit header information along the way. Good logging capabilities, useful for IDS, debugging network code. It now supports rules based logging and tracks conversations better, incorporates content based logging and automatic rules sorting, includes lots of bugfixes, and has improved ICMP filenames.

tags | tool, sniffer
SHA-256 | 73789f2eae29bacb587523975ce3d43b3ad267301d9f133242050434fd7bb0f9
snort-0.99b2.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort v0.99b2 is an extremely versatile packet logger. This version features dramatic speed improvements, a more logically laid out packet header print out, packet statistics, fragment detection, and more complete IP header decoding. One of the few "5 Star, Must Have!" programs around.

tags | tool, sniffer
SHA-256 | e5f828a4600a784b86728773d975f288fea00e49241f3ea7756254f3697e7673
snort-0.99b3.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort is an extremely versatile packet logger. This version features dramatic speed improvements, a more logically laid out packet header print out, packet statistics, fragment detection, and more complete IP header decoding. Improved timestamping (down to the millisecond) implemented. This release has TCP and IP option decoding, and some new rules stuff. You can now specify port ranges (or greater than/less than) and TCP flags in rules. This allows you to do things like this: alert tcp any any -> 192.168.1.0/24 :1024 {SF} 192.168.1.0/24 6000:6010 which will pick out inbound traffic going ports 6000 thru 6010. Also includes bugfixes, cleaned up fragment printout routines, truncated packet fragments get dumped in their own file, rules processor routine recoded and more flexible, much more. Several important bugfixes in this release, plus recoded IP/TCP option decoding, revised packet printout routines, and now logs illegal TCP and IP options as well in an IP_BOGUS log file.

tags | tool, sniffer, tcp
SHA-256 | ea9c6a4c823c7b12b634ad31db3f8e516e3a8bf9b3ac122aa30accfb7d9de40b
snort-0.99rc3.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort v0.99rc3 is an extremely versatile packet logger. This version features dramatic speed improvements, a more logically laid out packet header print out, packet statistics, fragment detection, and more complete IP header decoding. Improved timestamping (down to the millisecond) implemented. This release has TCP and IP option decoding, and some new rules stuff. You can now specify port ranges (or greater than/less than) and TCP flags in rules. This allows you to do things like this: alert tcp any any -> 192.168.1.0/24 :1024 {SF} 192.168.1.0/24 6000:6010 which will pick out inbound traffic going ports 6000 thru 6010. Also includes bugfixes, cleaned up fragment printout routines, truncated packet fragments get dumped in their own file, rules processor routine recoded and more flexible, much more. Several important bugfixes in this release, plus recoded IP/TCP option decoding, revised packet printout routines, and now logs illegal TCP and IP options as well in an IP_BOGUS log file.

tags | tool, sniffer, tcp
SHA-256 | f1196199b049421ebfe6516033732f2954cd459d39b9e069d3ac1e86b994ecbc
snort-0.99rc5-lib
Posted Aug 17, 1999
Authored by Martin Roesch

snort-0.99rc5-lib is a set of example Snort rules. It's a short one, about 43 rules total, but it gives a good overview of the basic rule types and how to use the pattern matcher properly. This version of snort-lib includes a new buffer overflow (named) and some other stuff.

tags | tool, overflow, sniffer
SHA-256 | 547b794a5c635256ff67842936934e3287e9799174e0edaa0d5aa7e11921e4bd
snort-0.99rc5.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort v0.99rc5 is an extremely versatile packet logger. This version features dramatic speed improvements, due to improved Boyer-Moore pattern match routine optimizations, a more logically laid out packet header print out, packet statistics, fragment detection, more complete IP header decoding, a new command line switch ("-e") to display/log the Ethernet header, plus TOS field and IP Fragment ID field display/logging. Improved timestamping (down to the millisecond) implemented. This release also has TCP and IP option decoding, and lots of new rules. You can now specify port ranges (or greater than/less than) and TCP flags in rules. This allows you to do things like this: alert tcp any any -> 192.168.1.0/24 :1024 {SF} 192.168.1.0/24 6000:6010 which will pick out inbound traffic going ports 6000 thru 6010. Also includes bugfixes, cleaned up fragment printout routines, truncated packet fragments get dumped in their own file, rules processor routine recoded and more flexible, much more. Several important bugfixes in this release, plus recoded IP/TCP option decoding, revised packet printout routines, and now logs illegal TCP and IP options as well in an IP_BOGUS log file.

tags | tool, sniffer, tcp
SHA-256 | 5e32bc94ee9ca76429b2b21ca76005988ceeaf2147f04db882e170cc77749733
snort-1.0.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort is a libpcap-based packet sniffer/logger. It reads and decodes packets from the link layer through the application layer, dumping the decoded packet data. It can log these packets in their decoded form to directories which are generated based upon the IP address of the remote computer. This allows it to be used as a sort of "poor man's intrusion detection system" if you specify what traffic you want to record and what to let pass.

Changes: Added RAW/PPP and SLIP decoding, new command line option to change the order in which the rules are applied for the rules based logging subsystem and there is also a new option to send the alert messages to syslog.
tags | tool, remote, sniffer
SHA-256 | 28e69100ce5be350735a96efddaf403d7336f6d818674ecba066395a66a8b906
snort-0.97.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort v0.97 - packet logger - This program reads and parses packets from the link layer through the transport layer, dumping explicit header information along the way. Good logging capabilities, useful for IDS, debugging network code.

tags | tool, sniffer
SHA-256 | 440a34d0fbc4bfb33c2d4412a68d64cb52aba590f5dc5234e413a599f645b948
snort-0.98.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort v0.98 - packet logger - This program reads and parses packets from the link layer through the transport layer, dumping explicit header information along the way. Good logging capabilities, useful for IDS, debugging network code. It now supports rules based logging and tracks conversations better.

tags | tool, sniffer
SHA-256 | 5228f94a5ef536af4ea0a9e36861809e5505309f54b211718e10dbcd961a365e
snort-0.99.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort v0.99 - packet logger - This program reads and parses packets from the link layer through the transport layer, dumping explicit header information along the way. Good logging capabilities, useful for IDS, debugging network code. It now supports rules based logging and tracks conversations better, incorporates content based logging and automatic rules sorting. 66k.

tags | tool, sniffer
SHA-256 | fc7b18bec80f5e8e025f428f36f77d07af3143b149f739a2b92164437320ad10
snort-0.99rc6.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort v0.99rc6 is an extremely versatile packet logger. This version of Snort has a new rules set implementation. The new set is more flexible and easier to add new user requested rule types to from a programmatic standpoint. It also includes new rule types to be able to detect TTL values and ICMP type/codes. Rc6 also has a completely rewritten, unified reporting system, so the output is consistent across all output file types (logs/alerts/fragments/etc).

tags | tool, sniffer
SHA-256 | 81e749bc45a4a0e502e2e8bdc2970c5e59b1b129341dfb01924544fcdf878e0d
snort-1.0-lib
Posted Aug 17, 1999
Authored by Martin Roesch

snort-1.0-lib is a set of example Snort rules. It's short, but gives a good overview of the basic rule types and how to use the pattern matcher properly. This version of snort-lib includes alot of new stuff.

tags | tool, sniffer
SHA-256 | d2a73cd5b6c76f16f4ead40cb0eb1d77071693461cc924cd7f57a3b3acb38082
snort-lib
Posted Aug 17, 1999
Authored by Martin Roesch

snort-lib is a set of example Snort rules. It's a short one, about 43 rules total, but it gives a good overview of the basic rule types and how to use the pattern matcher properly.

tags | tool, sniffer
SHA-256 | f477f9a7c0cb5a2946c5cb42f3147c4a560236eb5040540c1be234903e0662ee
snort-0.96.tar.gz
Posted Aug 17, 1999
Authored by Martin Roesch

Snort is a libpcap-based sniffer/packet logger. It's fairly portable and tested on Solaris 2.5.1 (Sparc), Solaris 2.6 (x86), Linux, and FreeBSD.

tags | tool, x86, sniffer
systems | linux, solaris, freebsd
SHA-256 | 4ba15ac407501a03b310f4d20be0ae7b2ed2dde4f109fa6e341510d53827eed7
snort-0.99rc6-lib
Posted Aug 17, 1999
Authored by Martin Roesch

snort-0.99rc6-lib is a set of example Snort rules. It's short, but gives a good overview of the basic rule types and how to use the pattern matcher properly. This version of snort-lib includes alot of new stuff.

tags | tool, sniffer
SHA-256 | 7b56cf68f1fea1611461c196d1176e1d8b7b87d575b4aefaed93177beed52e08
Page 4 of 4
Back1234Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    21 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close