exploit the possibilities
Showing 101 - 125 of 874 RSS Feed

Files

Sagan Log Monitor 0.2.1
Posted Apr 6, 2012
Authored by Champ Clark III | Site sagan.softwink.com

Sagan is multi-threaded, real-time system- and event-log monitoring software, but with a twist. Sagan uses a "Snort" like rule set for detecting nefarious events happening on your network and/or computer systems. If Sagan detects a "bad thing" happening, it can do a number of things with that information. Sagan can also correlate the events with your Intrusion Detection/Intrusion Prevention (IDS/IPS) system and basically acts like an SIEM (Security Information and Log Management) system.

Changes: Several bug fixes and code clean up.
tags | tool, sniffer
systems | unix
MD5 | 8c6bbc874d1dba024e5d32ac06693a10
Netsniff-NG High Performance Sniffer 0.5.6
Posted Mar 29, 2012
Authored by Netsniff-NG Workgroup | Site netsniff-ng.org

netsniff-ng is is a free, performant Linux network sniffer for packet inspection. The gain of performance is reached by 'zero-copy' mechanisms, so that the kernel does not need to copy packets from kernelspace to userspace. For this purpose netsniff-ng is libpcap independent, but nevertheless supports the pcap file format for capturing, replaying and performing offline-analysis of pcap dumps. netsniff-ng can be used for protocol analysis, reverse engineering and network debugging.

Changes: This is a major release with lots of new features.
tags | tool, kernel, sniffer, protocol
systems | linux, unix
MD5 | 9db3d2027c1f59437890f637178c1a02
Aanval Intrusion Detection Tool 7
Posted Mar 12, 2012
Site aanval.com

Aanval is the industry's most comprehensive snort and syslog intrusion detection, correlation and management console. Aanval is designed specifically to scale from small single sensor installations to global enterprise deployments. Aanval is browser based and designed to work on all current variants of UNIX, Linux and Mac OS X.

Changes: No more Adobe Flash! All HTML & Javascript. Network Situational Awareness, device and network configurations, new snort and syslog importing and processing system, event tagging, new charting and graphing system and much, much more.
tags | tool, sniffer
systems | linux, unix, apple, osx
MD5 | f2c0bf183f5846cb1af421a80904000b
httpry Specialized HTTP Packet Sniffer 0.1.7
Posted Mar 2, 2012
Authored by Dumpster Keeper | Site dumpsterventures.com

httpry is a specialized packet sniffer designed for displaying and logging HTTP traffic. It is not intended to perform analysis itself, but instead to capture, parse, and log the traffic for later analysis. It can be run in real-time displaying the live traffic on the wire, or as a daemon process that logs to an output file. It is written to be as lightweight and flexible as possible, so that it can be easily adaptable to different applications. It does not display the raw HTTP data transferred, but instead focuses on parsing and displaying the request/response line along with associated header fields.

Changes: This release brings substantial improvements to some existing features. First, IPv6 parsing can now follow extension headers that are present in the captured packets. Second, the rate statistics code has been substantially overhauled to handle an arbitrary number of hosts, along with a couple of additional switches for controlling behavior. Additionally, this release fixes compiling on Mac OS X and adds an optional switch to specify the PID filename.
tags | tool, web, sniffer
systems | unix
MD5 | ee7f9b766adbf22facfc2f98a908de67
Viper Network Sniffer Script
Posted Feb 5, 2012
Authored by Bl4ck.Viper

This is a bash script to use in conjunction with Backtrack that simplifies the spawning of various sniffers.

tags | tool, sniffer, bash
MD5 | 4313e26c58755c8944e0086357c8c482
Stev.Org Sniffer
Posted Jan 6, 2012
Authored by James Stevenson | Site stev.org

This sniffer has an ncurses user interface, network statics for many different protocols, a view into active TCP connections, UDP packets, ICMP packets, and more.

tags | tool, udp, sniffer, tcp, protocol
systems | unix
MD5 | e8f4a460d5cce57f5f1e7f042ff7761d
S.S.T Javascript Keylogger
Posted Jan 4, 2012
Authored by Amir Masoud

S.S.T (Save Typed Text) javascript proof of concept keylogging code.

tags | tool, javascript, sniffer, proof of concept
MD5 | 80322d53bae1f81df3bae32d7ddf76cd
Peta Zetas IDS Testing Tool
Posted Jan 3, 2012
Authored by Alberto Ortega

PZIDS (Peta Zetas IDS) is a tool to test if your IDS is detecting threats properly. Written in Python.

tags | tool, sniffer, python
MD5 | b78ed32220ffb538532f721a2be7a485
Snort IDS 2.9.2
Posted Dec 15, 2011
Authored by Martin Roesch | Site snort.org

Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.

Changes: Various new additions and modifications.
tags | tool, overflow, cgi, sniffer, protocol
systems | unix
MD5 | 22fa07ba915535b151329056439ae194
Ettercap Network Sniffer / Interceptor 0.7.4
Posted Dec 6, 2011
Authored by Alberto Ornaghi, Marco Valleri | Site ettercap.sourceforge.net

Ettercap is a network sniffer/interceptor/logger for ethernet LANs. It supports active and passive dissection of many protocols (even ciphered ones, like SSH and HTTPS). Data injection in an established connection and filtering on the fly is also possible, keeping the connection synchronized. Many sniffing modes were implemented to give you a powerful and complete sniffing suite. Plugins are supported. It has the ability to check whether you are in a switched LAN or not, and to use OS fingerprints (active or passive) to let you know the geometry of the LAN.

Changes: Many long standing bugs were fixed: a resource depletion issue, buffer access out-of-bounds issues, DNS dissector not working on 64-bit systems, multiple buffer overflows, multiple memory leaks, multiple files with obsolete code, SEND L3 errors experienced by some users, and a compilation error under Mac OS X Lion. The build system was updated.
tags | tool, web, sniffer, protocol
systems | unix
MD5 | 6846d76af94c0c1c1eb107d1913cc768
Intercepter Sniffer 0.8.4
Posted Oct 2, 2011
Authored by Ares | Site sniff.su

0x4553-Intercepter is a WinPcap-based sniffer that offers various capabilities including sniffing for password hashes related to ICQ/IRC/AIM/FTP/IMAP/POP3/SMTP/LDAP/BNC/SOCKS/HTTP/WWW/NNTP/CVS/TELNET/MRA/DC++/VNC/MYSQL and ORACLE. It also sniffs ICQ/AIM/JABBER/YAHOO/MSN/GADU-GADU/IRC and MRA protocols. It has a built-in arp poisoning module, can change MAC addresses of LAN adapters, and has various other interesting functionality.

Changes: Added SSL Strip.
tags | tool, web, sniffer, imap, protocol
MD5 | 689722d9d85153eebdd73ab250ac292b
Sagan Log Monitor 0.2.0
Posted Aug 23, 2011
Authored by Champ Clark III | Site sagan.softwink.com

Sagan is multi-threaded, real-time system- and event-log monitoring software, but with a twist. Sagan uses a "Snort" like rule set for detecting nefarious events happening on your network and/or computer systems. If Sagan detects a "bad thing" happening, it can do a number of things with that information. Sagan can also correlate the events with your Intrusion Detection/Intrusion Prevention (IDS/IPS) system and basically acts like an SIEM (Security Information and Log Management) system.

Changes: This is primarily a bug fix / stability release. This release addresses many issues.
tags | tool, sniffer
systems | unix
MD5 | 914febb244a6853ddffda2c6a48d05a1
httpry Specialized HTTP Packet Sniffer 0.1.6
Posted Aug 9, 2011
Authored by Dumpster Keeper | Site dumpsterventures.com

httpry is a specialized packet sniffer designed for displaying and logging HTTP traffic. It is not intended to perform analysis itself, but instead to capture, parse, and log the traffic for later analysis. It can be run in real-time displaying the live traffic on the wire, or as a daemon process that logs to an output file. It is written to be as lightweight and flexible as possible, so that it can be easily adaptable to different applications. It does not display the raw HTTP data transferred, but instead focuses on parsing and displaying the request/response line along with associated header fields.

Changes: Several new features have been added with this release. The first is IPv6 support, which has been one of the most requested new features. Second, there is a new HTTP rate statistics mode that shows the requests per second for active hosts. Additionally, a new switch was added to manually disable output buffering as necessary.
tags | tool, web, sniffer
systems | unix
MD5 | ef016e3e0e950993b7c9811b6859ec4d
Pytbull 1.3
Posted May 22, 2011
Authored by Sebastien Damaye | Site pytbull.sourceforge.net

pytbull is an intrusion detection/prevention system (IDS/IPS) testing framework for Snort and Suricata. It can be used to test the detection and blocking capabilities of an IDS/IPS, to compare IDS/IPS, to compare configuration modifications and to check/validate configurations. The framework is shipped with about 300 tests grouped into 8 testing modules.

Changes: Bug fix for an error while using reverse shell. Minor changes.
tags | tool, sniffer
MD5 | 6f57f64498b4fad7a768cd95b604d666
Pytbull 1.0
Posted May 9, 2011
Authored by Sebastien Damaye | Site pytbull.sourceforge.net

pytbull is an intrusion detection/prevention system (IDS/IPS) testing framework for Snort and Suricata. It can be used to test the detection and blocking capabilities of an IDS/IPS, to compare IDS/IPS, to compare configuration modifications and to check/validate configurations. The framework is shipped with about 300 tests grouped into 8 testing modules.

Changes: Support of other IDS/IPS systems. Pattern matching feature added. A new pcapRelay module has been added.
tags | tool, sniffer
MD5 | 1d79dfa36fe559b91b723ea893aa9f7f
Pytbull 0.3
Posted May 1, 2011
Authored by Sebastien Damaye | Site pytbull.sourceforge.net

pytbull is an intrusion detection/prevention system (IDS/IPS) testing framework for Snort and Suricata. It can be used to test the detection and blocking capabilities of an IDS/IPS, to compare IDS/IPS, to compare configuration modifications and to check/validate configurations.The framework is shipped with about 300 tests grouped into 8 testing modules.

tags | tool, sniffer
MD5 | 3ded5c60b3addebbfa758b30fb3f555b
Snortalog Snort Log Summarizer 2.4.3
Posted Mar 30, 2011
Authored by Jeremy Chartier | Site jeremy.chartier.free.fr

Snortalog is a powerful Perl script that summarizes Snort logs, making it easy to view any network attacks detected by Snort. It can generate charts in HTML, PDF, and text output. It works with all versions of Snort, and can analyze logs in three formats: syslog, fast, and full snort alerts. Moreover, it is able to summarize other logs like Fw-1 (NG and 4.1), Netfilter, and IPFilter in a similar way.

Changes: This release brings new features like TippingPoint, Netscreen, and CheckPoint R70 & R71 logs detection. The GUI works with the latest GD libraries to improve Windows compatibility.
tags | tool, perl, sniffer
systems | linux
MD5 | 83b07c1f0ae06f81d04a862704cf83a4
Sagan Rules 03172011-r1
Posted Mar 17, 2011
Authored by Champ Clark III | Site sagan.softwink.com

This is the Sagan ruleset released 03/17/2011 to coincide with the 0.1.8 release.

tags | tool, sniffer
systems | unix
MD5 | 17a04a0079acd8232f6eb3cb83207347
Sagan Log Monitor 0.1.8
Posted Mar 17, 2011
Authored by Champ Clark III | Site sagan.softwink.com

Sagan is multi-threaded, real-time system- and event-log monitoring software, but with a twist. Sagan uses a "Snort" like rule set for detecting nefarious events happening on your network and/or computer systems. If Sagan detects a "bad thing" happening, it can do a number of things with that information. Sagan can also correlate the events with your Intrusion Detection/Intrusion Prevention (IDS/IPS) system and basically acts like an SIEM (Security Information and Log Management) system.

tags | tool, sniffer
systems | unix
MD5 | 913e1f57a90979b09f0a2935f0c76ac5
Aanval Intrusion Detection Tool 6
Posted Dec 9, 2010
Site aanval.com

Aanval is the industry's most comprehensive snort and syslog intrusion detection, correlation and management console. Aanval is designed specifically to scale from small single sensor installations to global enterprise deployments. Aanval is browser based and designed to work on all current variants of UNIX, Linux and Mac OS X.

Changes: New IP GeoLocation integration for plotting source and destination network addresses on Google Maps in real time. All new event correlation engine and interface as well as bug fixes throughout and performance enhancements all around. Additionally, the iPhone and iPad (Aanval iPhone & iPad App) integration has been enhanced as well.
tags | tool, sniffer
systems | linux, unix, apple, osx
MD5 | d5c3bfece59ac43b92203885d4ed50e5
Netsniff-NG High Performance Sniffer 0.5.5.0
Posted Oct 11, 2010
Authored by Netsniff-NG Workgroup | Site netsniff-ng.org

netsniff-ng is is a free, performant Linux network sniffer for packet inspection. The gain of performance is reached by 'zero-copy' mechanisms, so that the kernel does not need to copy packets from kernelspace to userspace. For this purpose netsniff-ng is libpcap independent, but nevertheless supports the pcap file format for capturing, replaying and performing offline-analysis of pcap dumps. netsniff-ng can be used for protocol analysis, reverse engineering and network debugging.

Changes: Documentation updates, various code changes and improvements.
tags | tool, kernel, sniffer, protocol
systems | linux
MD5 | bd303bdeb7244bb1e4e966b94f7671c4
HexInject 1.1
Posted Sep 11, 2010
Authored by crossbower | Site hexinject.sourceforge.net

HexInject is a hexadecimal and raw packet injector and sniffer. It can be easily combined with other tools to provide a powerful command line framework for raw network access. It will automatically set the correct checksum (IP, TCP, UDP, ICMP).

tags | tool, udp, sniffer, tcp
MD5 | 8542411cc5d31101e2a8f56b73dd6fa1
Aanval Intrusion Detection Tool 5.6
Posted Aug 3, 2010
Site aanval.com

Aanval is the industry's most comprehensive snort and syslog intrusion detection, correlation and management console. Aanval is designed specifically to scale from small single sensor installations to global enterprise deployments. Aanval is browser based and designed to work on all current variants of UNIX, Linux and Mac OS X.

Changes: Native iPhone (Aanval iPhone App) access to view live snort and syslog events within Aanval, new signature download and management system, new policy system and dozens of bug fixes.
tags | tool, sniffer
systems | linux, unix, apple, osx
MD5 | a13964acf83b6f72df548b658cbf214c
Aanval Intrusion Detection Tool 5.5
Posted Apr 23, 2010
Site aanval.com

Aanval is the industry's most comprehensive snort and syslog intrusion detection, correlation and management console. Aanval is designed specifically to scale from small single sensor installations to global enterprise deployments. Aanval is browser based and designed to work on all current variants of UNIX, Linux and Mac OS X.

Changes: Dozens of bug fixes, all new look and feel, new collection system, new notes system, new syslog filter system, upgraded compatibility and more.
tags | tool, sniffer
systems | linux, unix, apple, osx
MD5 | b7a8c828978c49505d9f01b210625ab8
Netsniff-NG High Performance Sniffer 0.5.4.1
Posted Feb 6, 2010
Authored by Netsniff-NG Workgroup | Site netsniff-ng.org

netsniff-ng is a high performance linux network sniffer for packet inspection. Basically, it is similar to tcpdump, but it doesn't need syscalls for fetching packets. Instead, it uses an memory mapped area within kernelspace for accessing packets without the need of copying them to userspace ('zero-copy' mechanism). Therefore, netsniff-ng is libpcap independent. netsniff-ng can be used for protocol analysis and reverse engineering, network debugging, measurement of performance throughput or network statistics creation of incoming packets on central network nodes like routers or firewalls.

tags | tool, sniffer, protocol
systems | linux
MD5 | 5b8f6a3266fad685f75ec694365b6af1
Page 5 of 35
Back34567Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Yanluowang Ransomware Tied To Thieflock Threat Actor
Posted Nov 30, 2021

tags | headline, malware, cybercrime, fraud
Google Play Apps Downloaded 300,000 Times Stole Bank Credentials
Posted Nov 30, 2021

tags | headline, malware, bank, phone, cybercrime, fraud, google, password
Chinese Could Hack Data For Future Quantum Decryption, Report Warns
Posted Nov 29, 2021

tags | headline, government, china, cyberwar, cryptography
What The SEC Requires From Businesses After A Data Breach
Posted Nov 29, 2021

tags | headline, hacker, government, privacy, usa, data loss
Panasonic Confirms Data Breach After Hackers Access Internal Network
Posted Nov 29, 2021

tags | headline, hacker, privacy, data loss, japan
1,000 Arrests Made In Online Fraud Crackdown, Says Interpol
Posted Nov 29, 2021

tags | headline, hacker, government, bank, cybercrime, fraud
This Stealthy Malware Hides Behind An Impossible Date
Posted Nov 27, 2021

tags | headline, malware, linux
Mr Goxx, The Cryptocurrency Trading Hamster, Dies
Posted Nov 27, 2021

tags | headline, cryptography
Credentials Exposed For Majority Of US Financial Firms
Posted Nov 27, 2021

tags | headline, bank, cybercrime, data loss, fraud, password
Google Warns Crypto Miners Are Hacking Cloud Accounts
Posted Nov 27, 2021

tags | headline, hacker, fraud, google, cryptography
View More News →
packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close