
    [Archives]            [Services]           [Contact Us]             [Search]


  See our backend page for how you can include this list, sidebars etc. on
                                 your site!

                                                     Thu Sep 23
        vetescan09-22-1999.tar.gz                      12:57:47
                                                           1999

        UNIX/Win remote vulnerability exploit scanner with
        Fixes for Vulnerabilities. based on ben-z
        fts-rvscan scanner. Includes: WINSCAN (scans
        win/nt systems for latest trojans/remote
        exploits), VETE (single vuln/host scanner) VETES
        (single vuln/host w/o host checking), VETEMASS
        (mass vuln/host scanner), CMSD mass/get (a b c
        scanner and getter), AMD/get (mass a b c scanner
        and getter), MOUNTD/get ( mass a b c
        scanners/getter), many exploits, Fixes, and utils
        included. Courtesy of VetesGirl.

                                                     Thu Sep 23
        tfn.tgz                                        12:47:52
                                                           1999

        Flood network client/server that can be installed
        on a large number of hosts and used to hit a
        target with high bandwidth simultaneously.
        communicates over icmp and supports udp, syn,
        icmp/8, smurf flood and more. Courtesy of Mixter.

                                                     Thu Sep 23
        gateway.tgz                                    12:47:52
                                                           1999

        Password protected remote shell daemon that
        integrates a syn flooder, bouncer/gateway, port
        scanner, and remote root exploits. Courtesy of
        Mixter.

                                                     Thu Sep 23
        obsidian.tgz                                   12:47:52
                                                           1999

        A unix virus (ELF infector). Courtesy of Mixter.

                                                     Thu Sep 23
        crack.txt                                      12:47:52
                                                           1999

        FAQ and Guide to Cracking.

                                                     Thu Sep 23
        phantom.tgz                                    12:47:52
                                                           1999

        Linux promiscous ethernet sniffer that sends
        sniffer traffic to a remote logging daemon. this
        sniffer comes with optional strong (96byte 3way)
        encryption. Courtesy of Mixter.

                                                     Thu Sep 23
        irixlp.c                                       12:47:52
                                                           1999

        Scans for the default logins on IRIX boxes.
        Courtesy of Mixter.

                                                     Thu Sep 23
        mw06.tgz                                       12:47:52
                                                           1999

        Unix internet worm; for a description see
        www.whitehats.com. the latest version with slight
        performance/functionality upgrades. Courtesy of
        Mixter.

                                                     Thu Sep 23
        webscan.c                                      12:47:52
                                                           1999

        Multithreaded high speed scanner that records the
        versions of web servers and scans for 65 different
        insecure CGIs Courtesy of Mixter.

                                                     Thu Sep 23
        targa2.c                                       12:47:52
                                                           1999

        Remote DoS against 11 different IP stack holes on
        various OS's, supports attacking a c-class ip
        range. Courtesy of Mixter.

                                                     Thu Sep 23
        pot.tgz                                        12:47:52
                                                           1999

        Ping observation tool is a highspeed tool to sweep
        for smurf broadcast amplifiers, it compiles a
        broadcast amplifier list of the complete IPv4
        address range in about 5 days (with enough
        bandwidth). Courtesy of Mixter.

                                                     Thu Sep 23
        nscan.c                                        12:47:52
                                                           1999

        Performance/speed optimized bind scanner that
        finds dns servers vulnerable to the iquery exploit
        scanning from a list of IPS. Courtesy of Mixter.

                                                     Thu Sep 23
        lscan2.c                                       12:47:52
                                                           1999

        Multithreaded high speed scanner that scans for 6
        different daemons, and records the version of
        every daemon for analysis. Courtesy of Mixter.

                                                     Thu Sep 23
        tclbot.tar                                     12:47:52
                                                           1999

        no description

                                                     Thu Sep 23
        pipefakeps.c                                   12:07:50
                                                           1999

        Modified version of Todd Vierling's datapipe,
        where you can specify a name that will be
        displayed instead of the process' name. Linux - c
        source. Courtesy of soft project digital security
        for y2k.

                                                     Thu Sep 23
        cgiscan.c                                      12:07:31
                                                           1999

        Phf - test-cgi - htmlscript - view-source - wrap -
        campas - pfdisplay - webdist - aglimpse - php -
        nph-test-cgi scanner. Linux - c source. Courtesy
        of soft project digital security for y2k.

                                                     Thu Sep 23
        pippa_v1.txt                                   12:07:02
                                                           1999

        Network datapipe. Linux - perl source. Courtesy of
        soft project digital security for y2k.

                                                     Thu Sep 23
        crypt7.zip                                     12:06:41
                                                           1999

        Cryptographic utility using private key (4096
        bytes), random salting. DOS - binary. Courtesy of
        soft project digital security for y2k.

                                                     Thu Sep 23
        tcpshell.c                                     12:06:16
                                                           1999

        Simple socket shell. Linux - c source. Courtesy of
        soft project digital security for y2k.

                                                     Thu Sep 23
        hideme.c                                       12:05:57
                                                           1999

        Log editor that cleans Utmp, Wtmp, LastLog,
        Messages, XferLog, Secure and MailLog. Linux - c
        source Courtesy of soft project digital security
        for y2k.

                                                     Thu Sep 23
        shapechange.c                                  12:05:20
                                                           1999

        Utmp editor that permits to change id, tty and
        host of a user logged in the system. BFi3 8).
        Linux - c source. Courtesy of soft project digital
        security for y2k.

                                                     Thu Sep 23
        pippa_v2.txt                                   12:04:43
                                                           1999

        Network datapipe with interactive mode, support
        for proxy server socks (v4 or v5), logging
        facility and option to concatenate more pipes.
        Documentation: 'PiPPA v2', BFi4 (December 98).
        Linux/WinNT - perl source. Courtesy of soft
        project digital security for y2k.

                                                     Thu Sep 23
        carogna.c                                      12:04:06
                                                           1999

        Loadable Kernel Module to hide in a system. It
        substitutes in 4kbytes a full rootkit. Only for
        2.0.x kernels. Documentation: 'PR0GETT0 CAR0NTE -
        PARTE I' , BFi3 (Luglio 98); 'PR0GETT0 CAR0NTE -
        PARTE II' , BFi4 (December 98). Linux - LKM c
        source. Courtesy of soft project digital security
        for y2k.

                                                     Thu Sep 23
        shareall.zip                                   12:03:44
                                                           1999

        Trojan that enables file and printer sharing, and
        then enables sharing on all drives with full
        access. Documentation: 'WiND0WS E PASSW0RD' , BFi4
        (December 98). Win9x - binary. Courtesy of soft
        project digital security for y2k.

                                                     Thu Sep 23
        007shell.tgz                                   11:26:43
                                                           1999

        Shell hidden into ICMP tunneling that uses 0x00
        ECHO REPLY messages to carry data. Includes:
        007Shell, ICMP Tunneling Library v1. Courtesy of
        soft project digital security for y2k.

                                                     Thu Sep 23
        imap4.tgz                                      11:23:58
                                                           1999

        Kit including two tools that scan for exploitable
        versions of IMAP4; the scan can be accomplished by
        specifying a single host or using a file
        containing all the ip's. Includes: Imap4 scanner,
        Imap4 checker. Linux - c source. Courtesy of soft
        project digital security for y2k.

                                                     Thu Sep 23
        ttdbsscan.c                                    11:23:41
                                                           1999

        rpc.ttdbserver scanner (adapted from statd scanner
        by BiT), it uses a file containing the list of
        ip's to scan. BFiSN98 (December 98). Linux - c
        source. Courtesy of soft project digital security
        for y2k.

                                                     Thu Sep 23
        valvnet20b2.zip                                11:23:35
                                                           1999

        ValV-N.e.T. v2.0b2: (Not Earthy Trojan) Remake of
        NETbus 1.7, with some more options, and a
        polymorphic engine to make the patch invisible to
        any antivirus. Courtesy of soft project digital
        security for y2k.

                                                     Thu Sep 23
        vlv_patch20b2.zip                              11:21:17
                                                           1999

        Highly customizable patcher. Courtesy of soft
        project digital security for y2k.

                                                     Thu Sep 23
        aces-2_8.tgz                                   11:21:00
                                                           1999

        Aces High v2.8:
        TCP/UDP/RPC/finger/NFS/samba/web/phone scanner
        with string comparing option. Courtesy of soft
        project digital security for y2k.

                                                     Thu Sep 23
        rst.c                                          11:20:53
                                                           1999

        RST: RST Storm: destroys TCP links. For linux.
        Courtesy of soft project digital security for y2k.

                                                     Thu Sep 23
        orodruin.c                                     11:20:47
                                                           1999

        Orodruin: TCP forger. Courtesy of soft project
        digital security for y2k.

                                                     Thu Sep 23
        proscan.c                                      11:20:44
                                                           1999

        ProScan: Tool to scan a LAN in order to find
        interfaces in PROMISC mode. It's accomplished by
        using non-standard queries. For linux. Courtesy of
        soft project digital security for y2k.

                                                     Thu Sep 23
        syslogdk-0_1.tgz                               11:20:41
                                                           1999

        Syslogd kit v0.1: Kit including various tools for
        generating fake logs and read/redirect logs
        generated by SYSKLOGD. Includes: Shub-Niggurath,
        vru vru vruk, WALLA WALLA v0.1, WALLA WALLA v0.2.
        For linux. Courtesy of soft project digital
        security for y2k.

                                                     Thu Sep 23
        acctk-0_2.tgz                                  11:20:38
                                                           1999

        Kit including various tools to hide from logs
        generated by ACCT. Includes: ACCT Knocker, hydra
        v0.1, Leipzig v0.1, LocalFuck v0.1, Obscura Mens
        v0.1, Xytaxehedron v0.1, Xytaxehedron v0.1i (Marzo
        99). Linux/*BSD - c sources. Courtesy of soft
        project digital security for y2k.

                                                     Thu Sep 23
        wu-tang.c                                      11:20:33
                                                           1999

        Vulnerable Wu-FTPD versions scanner (adapted from
        statd scanner by BiT). Linux - c source. Courtesy
        of soft project digital security for y2k.

                                                     Thu Sep 23
        dead-1_0.tgz                                   11:20:30
                                                           1999

        Simple war dialer. Documentation: 'WAR DIALER X
        LINUX'. Linux - c source. Courtesy of soft project
        digital security for y2k.

                                                     Thu Sep 23
        nbtscan-1_0e.zip                               11:20:17
                                                           1999

        Shared resource scanner. Win9x - c source.
        Courtesy of soft project digital security for y2k.

                                                     Thu Sep 23
        rpcprogs.c                                     11:20:15
                                                           1999

        Finds an rpc program by its number scanning a
        range of ip's. Linux - c source. Courtesy of soft
        project digital security for y2k.

                                                     Thu Sep 23
        xaces.tgz                                      11:20:08
                                                           1999

        xACES: TCP/UDP/RPC/finger/NFS/samba/web/phone
        scanner with string comparing option. XWindows
        version. Courtesy of soft project digital security
        for y2k.

                                                     Thu Sep 23
        rpc-date.tgz                                   11:20:08
                                                           1999

        A Backdoor that uses an rpc program to introduce
        in the host a remote access facility. Courtesy of
        soft project digital security for y2k.

                                                     Thu Sep 23
        onosendai02.tar.gz                             11:20:05
                                                           1999

        0N0S3NDAi: (blind ip spoofing) Support tools for
        0N0S3NDAi project. Includes: SEQprobe (displays
        remote host's ISN generation), SMail v2 (the
        DEFINITIVE fake mail). Courtesy of soft project
        digital security for y2k.

                                                     Thu Sep 23
        xthot.tgz                                      11:20:02
                                                           1999

        xTHOT v1.0: Tcp/ip Hacking Ominous Tool. Courtesy
        of soft project digital security for y2k.

                                                     Thu Sep 23
        syslogd-trojan.tgz                             11:19:43
                                                           1999

        syslogd trojan: These patches applied to syslogd
        1.3-31 sources add a new priority, and using it
        it's possible to execute locally new commands
        without be logged. For linux. Courtesy of soft
        project digital security for y2k.

                                                     Thu Sep 23
        tcpdump2ascii.tar.gz                           11:15:33
                                                           1999

        This is a small perl program which converts
        tcpdump hex values (using tcpdump -x option) to
        readable ascii characters (31> char <123).

                                                     Wed Sep 22
        tcpreplay-1.0.1.tar.gz                         22:36:39
                                                           1999

        Tcprelay v1.0.1 - Tcpreplay is aimed at testing
        the performance of a NIDS by replaying real
        background network traffic in which to hide
        attacks. Tcpreplay allows you to control the speed
        at which the traffic is replayed, and can replay
        arbitrary tcpdump traces. Unlike
        programmatically-generated artificial traffic
        which doesn't exercise the application/protocol
        inspection that a NIDS performs, and doesn't
        reproduce the real-world anomalies that appear on
        production networks (asymmetric routes, traffic
        bursts/lulls, fragmentation, retransmissions,
        etc.), tcpreplay allows for exact replication of
        real traffic seen on real networks.

                                                     Wed Sep 22
        fragrouter-1.6.tar.gz                          22:36:37
                                                           1999

        Fragrouter v1.6 - Fragrouter is aimed at testing
        the correctness of a NIDS, according to the
        specific TCP/IP attacks listed in the Secure
        Networks NIDS evasion paper. Other NIDS evasion
        toolkits which implement these attacks are in
        circulation among hackers or publically available,
        and it is assumed that they are currently being
        used to bypass NIDSs.

                                                     Wed Sep 22
        asb99-09.exec_via_ms_access                    21:21:48
                                                           1999

        no description

                                                     Wed Sep 22
        asb99-10.cfml_coldfusion                       21:21:48
                                                           1999

        no description

                                                     Wed Sep 22
        asb99-01.expression_evaluator                  21:21:48
                                                           1999

        no description

    Copyright  1999 Kroll-O'Gara Information Security Group, All Rights
                           Reserved. Legal Notice
