Exploit the possiblities
Showing 1 - 25 of 25 RSS Feed

Files

pam_shield Null Routing PAM Module 0.9.5
Posted Jan 13, 2011
Site heiho.net

pam_shield is a PAM module that uses null-routing or iptables to lock out script kiddies that probe your computer for open logins or easy guessable passwords. pam_shield is meant as an aid to protect public computers on the Internet.

Changes: shield_purge would delete entries that were still active, causing the delete-rule trigger to never be executed in some cases. This bug has been fixed.
systems | linux, unix
MD5 | cbfcd96fad38943ed78fd4d37307aba2
pam_shield Null Routing PAM Module 0.9.4
Posted Sep 6, 2010
Site heiho.net

pam_shield is a PAM module that uses null-routing or iptables to lock out script kiddies that probe your computer for open logins or easy guessable passwords. pam_shield is meant as an aid to protect public computers on the Internet.

Changes: A number of bugs were fixed. The configuration parameters for allowing missing DNS entries and reverse DNS entries are now handled properly. When the trigger command fires, a check is now made whether the trigger executed successfully. Syslogging is now done with the AUTHPRIV facility. A possible pointer reference bug was fixed. The trigger command now uses IP blackholing. A lot of explanatory text about configuring the PAM stack was added to the INSTALL file.
systems | linux
MD5 | 383b0a10e41b68961c006191839ab92c
sptrace LKM ptrace Control
Posted Mar 19, 2009
Authored by Krzysztof Burghardt | Site underground.org.pl

sptrace is a secure ptrace() module for Linux. It limits users' access to the ptrace() call. It can disable ptrace altogether, or if you add a ptrace group to your system, only users in that group will be able to use ptrace().

Changes: This version was adjusted to reflect changes in Linux, and was tested with kernel 2.6.23. Support for the 2.4 line is still there, but it is no longer tested.
systems | linux
MD5 | 9a23198cbdcd256b11e2b0dc2c03b331
useless-vmsplice.tar.gz
Posted Feb 13, 2008
Authored by toorandom

This is a kernel module for Linux 2.6 to replace vmsplice() function with another that does nothing. The purpose of the module is to evade the attacks to the system call logging to kernel messages the usage attempts of vmsplice() with the arguments.

tags | kernel
systems | linux
MD5 | 8b52e9351c6750b2477b8a046d192bad
sptrace-1.4.1.tar.gz
Posted Dec 29, 2007
Authored by Krzysztof Burghardt | Site underground.org.pl

sptrace is a secure ptrace() module for Linux. It limits users' access to the ptrace() call. It can disable ptrace altogether, or if you add a ptrace group to your system, only users in that group will be able to use ptrace().

systems | linux
MD5 | d0b58eced8f60e696c39dfaf4b306771
uidbind-lsm-0.4.tar.gz
Posted Jun 11, 2007
Authored by Roberto De Ioris

UidBind is a simple LSM module that restricts calls to the bind() function to the UID/GID defined in a configfs tree.

systems | linux
MD5 | 3ae33ce83ffb6cef9cc02a5a37521013
digsig-1.3.2.tar.gz
Posted Nov 20, 2005
Site sourceforge.net

DigSig kernel load module checks the signature of a binary before running it. It inserts digital signatures inside the ELF binary and verifies this signature before loading the binary. It is based on the Linux Security Module hooks (standard in main stream Linux kernel 2.5.66 and higher). Therefore, it improves the security of the system by avoiding a wide range of malicious binaries like viruses, worms, Trojan programs, and backdoors from running on the system.

tags | worm, kernel, trojan
systems | linux
MD5 | 7636bc6cfe7bf8593a2323034d55f38a
portknock-sshd_lkm.c
Posted Sep 13, 2004
Authored by Bugghy | Site vaida.bogdan.googlepages.com

Kernel module using portknocking to get sshd spawned after challenging a list of specified daemons. Designed for 2.4 kernels.

tags | kernel
systems | linux
MD5 | e8452737adc66598a3449b1ce136b2a5
sptrace-1.4.0.tar.gz
Posted Aug 13, 2004
Authored by Krzysztof Burghardt | Site underground.org.pl

sptrace is a secure ptrace() module for Linux. It limits users' access to the ptrace() call. It can disable ptrace altogether, or if you add a ptrace group to your system, only users in that group will be able to use ptrace().

systems | linux
MD5 | ebeee9d53439749608b6a4c975f441cd
write-filter_lkm.c
Posted Jul 26, 2004
Authored by Bugghy | Site vaida.bogdan.googlepages.com

Linux kernel module that will filter writes for the 2.4 kernel series.

tags | kernel
systems | linux
MD5 | 01d43a8e9e10c34d11937410babbd99e
uname_lkm.c
Posted Jul 26, 2004
Authored by Bugghy | Site vaida.bogdan.googlepages.com

Linux kernel module that will fake uname output for the 2.4 kernel series.

tags | kernel
systems | linux
MD5 | 34d42e3dbbc7c7204ebb1aab736eafaf
yinyang-1.0.zip
Posted Jan 6, 2004
Authored by Primac | Site yinyang.sourceforge.net

yinyang is a kernel module used to detect a file opening and passes that information to a daemon for action such as logging file transactions, anti-virus checking, and other file activities. Ideal for real-time on-access file scanning.

tags | kernel, virus
systems | linux
MD5 | 7a9c3a73819455d9f88a758d2f056231
mod_icmp.c
Posted Nov 21, 2003
Authored by fryxar | Site geocities.com

This linux kernel module acts like an icmp proxy for echo/echo-reply packets at kernel level, preventing icmp tunnels through firewalls or directly to the server it is installed on.

tags | kernel
systems | linux
MD5 | e1737913c946cc6774e1c435dd5715ff
sexy-socket.c
Posted Oct 30, 2003
Authored by DownBload | Site ii-labs.org

Sexy-SOCKET v0.1 is a Linux LKM which restricts creation of AF_INET sockets to the root account only. Works on kernels v2.2.x and 2.4.x.

tags | kernel, root
systems | linux
MD5 | 2b734c7c8f206fa99ac2281d200c7877
frontkey.tgz
Posted Aug 26, 2003
Authored by ins1der

Remote administration kernel module designed for the 2.4 series. It replaces system calls by inserting a push ret at the beginning of system_call, making the program jump to specified code. It provides a remote terminal backdoor through SYS_read hooking which means you can enter the box through any open tcp port. The connection is XOR encrypted and the module hides ports and pids. It also hides itself from vmalloc structure scanning and lsmod. Tested on Redhat 7.2 and 8.0. Currently lacks SMP support and is not considered stable so please exercise caution when utilizing this.

tags | remote, kernel, tcp
systems | linux, redhat
MD5 | 3f5cdb6e7dba958b3e9f438acf055153
lkminject.sh
Posted Apr 3, 2003
Authored by truff

lkminject is a script that builds a binary which will allow you to inject a module inside of a kernel module.

tags | kernel
systems | linux
MD5 | 8fce26fe6241564166adb32b791c9b9a
fuckptrace.c
Posted Apr 2, 2003
Authored by truff | Site projet7.org

fuckptrace is a Linux kernel module used for bypassing anti-ptrace protection used against the reverse engineering process.

tags | kernel
systems | linux
MD5 | 4b70735c212f379e57d284e2d6879972
nfbypass.c
Posted Apr 2, 2003
Authored by truff | Site projet7.org

nfbypass is a Linux kernel module for the 2.4.x series which, when inserted, will bypass netfilter rules.

tags | kernel
systems | linux
MD5 | 76fd7452b1e192965030bbe740138dee
hmod-0.2.tar.gz
Posted Dec 3, 2002
Authored by Amlet0 | Site hackblaze.org

Hmod v0.2 is a linux module which hides and shows other modules.

systems | linux
MD5 | 0eb12a0ca5a3471f7df5fe99c09e9848
stealth.c
Posted Aug 27, 2002
Authored by Sean Trifero | Site innu.org

Stealth.c is a Linux 2.2.x kernel module which discards packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags.

tags | kernel, tcp
systems | linux
MD5 | 319dbc150eb9c78008bb754a8de815e0
khideee.c
Posted Jul 31, 2002
Authored by Michele Dallachiesa aka xenion | Site acidlife.com

This Linux LKM allows you to hide tasks to KSTAT, a tool used to find attackers in your system by a direct analysis of the kernel through /dev/kmem. StMichael_LKM 0.10 (default installation) will not detect this. Tested on Linux 2.4.x kernels.

tags | kernel
systems | linux
MD5 | 3319e2c1f084a77464c76acd3c6d14c1
krnsniff.c
Posted Dec 7, 1999
Authored by Kossak | Site rnl.ist.utl.pt

krnsniff.c v0.1a - A kernel based sniffer module tested on linux-2.2.5 kernel. Nearly undetectable if a module hider is loaded.

tags | kernel
systems | linux
MD5 | b5b18fe31c1acf25a9d3912e60ac1d73
cocain.c
Posted Oct 7, 1999
Authored by Pmsac

Module to hide processes and files.

systems | linux
MD5 | 398bfa197363d818b656958448d70ee0
krnhide.c
Posted Oct 7, 1999
Authored by Kossak | Site rnl.ist.utl.pt

Generic module hidder, for linux 2.2.x kernels. Hides the last module installed.

tags | kernel
systems | linux
MD5 | 2c1c4c37a74d4b5976a8b3f5b991837a
megas.c
Posted Oct 7, 1999
Authored by Pmsac

Module to retrieve privilege to processes.

systems | linux
MD5 | 4c6de5c0514d6b0271b211e98f536506
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

Top Authors In Last 30 Days

Recent News

News RSS Feed
German Hacker Offers Rare Look Inside Secretive World Of Julian Assange, WikiLeaks
Posted Jan 18, 2018

tags | headline, hacker, government, britain, data loss, germany
Google Intros Security Center Tool For G Suite
Posted Jan 18, 2018

tags | headline, google
Ex-Santander Bank Manager Pleads Guilty To Computer Misuse Crimes
Posted Jan 18, 2018

tags | headline, privacy, bank, data loss, fraud
BIND Comes Apart Thanks To Ancient Denial Of Service Vuln
Posted Jan 17, 2018

tags | headline, dns, denial of service, flaw
Another Round Of Click-Fraud Extensions Pulled From Chrome Store
Posted Jan 17, 2018

tags | headline, malware, phone, google
Satori Botnet Successor Targets Ethereum Mining Rigs
Posted Jan 17, 2018

tags | headline, malware, bank, botnet, fraud
Flaw In VR Porn App Leaves 20,000 Names Exposed
Posted Jan 17, 2018

tags | headline, privacy, flaw
After False Hawaii Missile Notice, FCC Launches Investigation
Posted Jan 15, 2018

tags | headline, government, usa, cyberwar
MaMi Malware Targets Mac OS X DNS Settings
Posted Jan 15, 2018

tags | headline, malware, dns, fraud, apple
Meltdown-Spectre Patches Causing Issues With Industrial Companies
Posted Jan 15, 2018

tags | headline, flaw, patch, scada, intel
View More News →
packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close