pptp-bruter is a brute force program that works against pptp vpn endpoints (tcp port 1723). It is fully standalone and supports the latest MSChapV2 authentication. It exploits a weakness in Microsoft's anti-brute force implementation which makes it possible to try 300 passwords the second. Tested against Microsoft Windows and Cisco gateways.
df789676b97406214d3f18c744dabd3769182428365ecdcc8a0a6ddcde3b6f2d
THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
913be04024b19d6c629e70b277350275d61d85481ff36af6ec37cf13454a998b
vlogger is a new release from THC that logs keystrokes on a Linux box. It logs all console, serial, and remote sessions, and does not use syscall modification. It allows for both local and remote logging methods.
48c0deb9db950f6cc98d94e0a4ff079bfb6a7b92fa46a5145513b1c13eb2a414
THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
47d15c2b336a796a3d5af5bbe31e65b6f185711aefe832cbdf160912af59d05e
THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
11d4e84acd9ba0ff47bcce3af0d8ab452e0703a39f1785ddb9b55525f5549b95
THC-Secure Deletion v3.1 for UNIX is the latest release of van Hauser's suite of secure deletion and overwriting utilities. Included are 'srm' - secure deletion of files
84723b3bc93dbba5d4c86c232ca6c84566ef1cbf281823588a7b902a539b70ac
CUPASS uses techniques to guess the password of ANY user on a WindowsNT/W2K server or domain. CUPASS uses a flaw in the implementation of Microsofts NetUserChangePassword API to guess/change the users password. This release is the proof of concept code for the THC paper "CUPASS and the NetUserChangePassword Problem"
32d02d7418f4b853a4a32ea1b03f44daf08ae3e5dd3ef0452f45e0e5bcaa4f17
THC-Secure Deletion v3.0 for UNIX is the latest release of van Hauser's suite of secure deletion and overwriting utilities. Included are 'srm' - secure deletion of files
b218d13f203672b1361f8387242d89fdf58135875e60dd7def28e581a5ac1d23
THC-RUT (aRe yoU There) is a local network discovery tool developed to brute force its way into wvlan access points. It offers arp-request on ip-ranges and identifies the vendor of the NIC, spoofed DHCP, BOOTP and RARP requests, icmp-address mask request and router discovery techniques. This tool should be 'your first knife' on a foreign network.
b32f3d71ac540248b7643baa39d8ecfb75af493228caaeb64608e49f2f092473
THC-Hydra is a high quality parallized login hacker for Samba, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support and is part of Nessus.
693645829a78ed3b1dcdc74f3741819dbe8eaf67b14b72b0ec6a4223ceeaa0b1
THC-FuzzyFingerprint is a tool that generates fuzzy fingerprints as described in the corresponding paper, available here.. It generates very similar-looking fingerprints, an ideal extension to man-in-the-middle attacks against the SSH service. The current version supports RSA and DSA key generation and MD5 and SHA1 fingerprints. Due to the fact that fuzzy fingerprinting doesn't try to collide the fingerprints, good results can be achieved in reasonable time.
007e83348f95c354a45ebeda85f22b266151643fc53f80ccaa3bc7585009ce4a
THC-Shagg is an application to bruteforce check digit algorithms. It analyzes a given list of serial numbers and tries to find a matching algorithm and its setup. If such a setup is found, THC-Shagg is able to generate (extrapolate) new serial numbers, e.g. VISA and MasterCard credit card numbers, EAN numbers, IMEI, UPC or even EFT routing numbers.
beaebc61b99d81db0fc58c65787d826e2032df6e00662b4ca2b8413ed3611e9d
THC Modem Login Hacker - A tool that will attempt to break into modem dialups using scripts written for minicom. Extremely configurable and a must have for any penetration test.
828570b792839f01260c13d3a4c84290f8ec66299dfceef31ab46fc2941ec452
THCsql exploits the vulnerability in MSSQL OpenDataSource function found by David Litchfield in June of 2002. Tested on Windows 2000 Server SP2 with SQLservers SP0 and SP2.
8ec23baef348542a74bd1eb310301df8044857c91c1e8d7544218a18b67a034a
THC-RUT (aRe yoU There) is a local network discovery tool developed to brute force its way into wvlan access points. It offers arp-request on ip-ranges and identifies the vendor of the NIC, spoofed DHCP, BOOTP and RARP requests, icmp-address mask request and router discovery techniques. This tool should be 'your first knife' on a foreign network.
f41eda1909b90b1e54ab9977d800ab9eacb0016df82f2180d5a8da02b160d2b1
FreeBSD Security Advisory FreeBSD-SA-02:44 - FreeBSD 4.3 and later is vulnerable to a local denial service attack due to a bug in the fpathconf system call which crashes the system by repeatedly calling fpathconf on a file descriptor until the reference count wraps to a negative value, then closing the file descriptor. See Pine-cert-20030101.txt for more information.
aacf0c83903b87562681466b20bcaa250cf0fb40cfd75e49cd68e3de7dbd5952
THC-Hydra is a parallel login hacker. With this tool you are able to attack several services at once (Samba, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, VNC, ICQ, Socks5, PCNFS, Cisco and more). Includes SSL support and can be used with Nessus. Bugfix release.
b67fed5cd977e8ba18900852cae0931684c3d2fdabbd6cb40da704c831693658
Defcon 10 Presentation: MeasuringDelay,Jitter,andPacketLosswithCiscoIOSSAA in PDF format
cdf2d4b1765bef26098b13df28fe6fe1f88f1d587aa054daff27ab845500094f
This is a simple Script written to predial found connects scanned with Toneloc or THC-Scan in intention to find PPP-Dialups or to get the Hex-Values of the PPPD of the remote system. This tool generates output of chat and pppd in the logs directory.
e5937235250ee5d2d86f4a0dbfef61acc9cf89a618dd733d5aa813cbe8a53d83
THC Presents:GENERAL DIALER v1.00
7d1e84b2df929f46eaa48b260380b8643367e833b37cc8f14dbef4e1f012d87d
THC Presents : PRINT-DATES v1.2
9e01c2e15e56903bd76df5a83d9328ddfce011ffb0e1f13b6b4ad9473de6af3f
THC Presents : PBXHACK v1.1 *FINAL* + Hack up to 10 PBXs at once + random to 6, sequ. to 9 CodeLength ! *** BUG FIX VERSION *** The *best* PBX Hacker out there
86f7c2cf3eec352d8a03d86eec3ca9ec29e8faa7664674c392423b6b9b90dd9b
THC Presents : GET-VIP v1.5 Enh.V. Unix Passwd Analyzer for Experts + Many new functions now! + Optimized and more Speed !
2bc58ada211a026a40ab7c9bdf72235b479d2a48e60b05668b66f05efa6ef3d1
THC Presents : DIC-GEN v1.0
01e398734ea7099d6ed5f752508db1c0910775ed8e662f46d928666584a7e866
THC Flood Connect is a connection flooding tool which supports SSL, sending + dumping data, closing or keeping sessions etc. Just a small release.
26c6c3b52ddb9dd1279693d998faae8c9e6d4d005e4e421a1e423898ee4a5eb7
THC-Parasite v1.2 allows you to sniff on switched networks by using either ARP Spoofing or MAC Flooding. THC-Parasite is intelligent and its algorithms are designed to bypass the basic switch security. Works on Linux, OpenBSD, and Solaris.
88ed01c5809275069ed28ab27da53c28745abe567a2e31a9d02b41c7f4067e83