.:[ packet storm ]:.
                             
ten years of uncensorable truth
ten years of uncensorable truth

 Section:  .. / UNIX / scan_detect  /

Page 2 of 2
<< 1 2 >> Files 25 - 42 of 42
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: nostrobe.tar.gz
Description:
 nostrobe contains a pair of simple, yet effective port scan detection/reporting programs.
Author:BiffSocko.
File Size:9425
Last Modified:Aug 17 02:06:05 1999
MD5 Checksum:dedcbad92a83cb5599479d2d8d7cf858

 ///  File Name: scanlogd-2.2.tar.gz
Description:
 Scanlogd v2.1 is a TCP port scan detection tool for linux, originally designed to illustrate various attacks an IDS developer has to deal with, for a Phrack Magazine article. It is designed to be safe to use, and will recognize all of the latest nmap scans. HTML man page available here.
Author:Solar Designer
Homepage:http://www.openwall.com
Changes:Support for Libnids 1.14, bug fixes.
File Size:9029
Last Modified:Nov 13 09:05:04 2000
MD5 Checksum:bb4586e116c579dbdd359da9c6560556

 ///  File Name: scanlogd-2.1.tar.gz
Description:
 Scanlogd v2.1 is a TCP port scan detection tool for linux, originally designed to illustrate various attacks an IDS developer has to deal with, for a Phrack Magazine article. It is designed to be totally safe to use, and will recognize all of the latest nmap scans. HTML man page available here.
Author:Solar Designer
Homepage:http://www.openwall.com/scanlogd/
File Size:8789
Last Modified:Apr 25 22:51:47 2000
MD5 Checksum:63ffab643c61f932faabed8c6aa2b68e

 ///  File Name: icmpwatch.zip
Description:
 Unavailable.
File Size:8683
Last Modified:Aug 17 02:06:06 1999
MD5 Checksum:e2def2b2811ca19871a8c283c7b10b36

 ///  File Name: detect-scans-0.70.tar.bz2
Description:
 This logs and notifies you of portscans run against your host. Some kinds of D.o.S attacks might also get logged.
Author:Martin Carlzon.
File Size:8655
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:5c23f25120cc40219e9c637d2c1b8bd1

 ///  File Name: klaxon.tar.gz
Description:
 Here's a modification of rexec that I call klaxon. Instead of actually executing anything, it returns a benign error to the caller, and syslogs the calling host, username, and name of attempted service access. It's also extremely useful for detecting portscanner attacks like those perpetrated by ISS and SATAN. Ident support (RFC931) is currently optional. klaxon is useful in place of any tcp or udp service port where you would not suspect activity. For Solaris2.X machines it will also work on the rpc.rexd port.
File Size:7708
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:cb318c58e2411f887c6e169a60d87dae

 ///  File Name: scandetd.c
Description:
 Scandetd is a port scan detection daemon that waits for incoming tcp connections and tries to recognize port scans. If tripped, scandetd sends email to root[at]127.0.0.1 with the time, attacking host, number of connections made, port of the first and last connections. Easy on system resources; for Linux; initial release. 6k.
Author:Michal Suszycki.
File Size:7342
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:2544ba52168d810e58c9b0b5dded8081

 ///  File Name: tcplogd-0.1.2.tar.gz
Description:
 See description above.
File Size:6655
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:696d26b61c7ef65d41130da7b3f3795c

 ///  File Name: tcplogd-0.1.1.tar.gz
Description:
 See description above.
File Size:6513
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:baf8a0fa54e27de371f53dfec78ee7b2

 ///  File Name: scandetect1.1.pl.txt
Description:
 Latest release of J-Dog's portscan detector, now with the following features: uses nmap, queso, and nmbnamex to resolve remote "attacking/scanning" IP to a hostname, perform a tcp connect() scan on the remote host, grab the NetBIOS name of the scanner, and then use Queso to determine the OS of the remote host.
Author:J-Dog.
File Size:5598
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:5fee9b4630ce5115eee8c0e82f286409

 ///  File Name: ktcpd-strobemasker-1.4.gz
Description:
 ktcpd-strobemasker v1.4 - linux TCP/IP patch: ktcpd-strobemasker - Features: detects all forms of strobes (including stealth strobes AND UDP strobes) using a heuristic based on the rate of refused connections/bad packets coming in, logs all strobe attempts, when a TCP or UDP strobe is detected, start refusing all connections from this IP until attempts have stopped for a specifed amount of time, log all TCP connection accepts in a form containing ip, port, uid of accepting process and accepting process name and pid, log unexpected packets with their syn, fin, ack, and rst flags, log rejected UDP packets, log common ICMP packets. Designed for 2.0.x kernels.
Author:Jesse Off.
File Size:3961
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:7c328e4cd942e40046e3160a36512d0e

 ///  File Name: scanlogd-v1.3.c.gz
Description:
 Linux scanlogd v1.3 is a port scan detector daemon for Linux that is designed to recognize all of the latest nmap scans.
Author:Solar Designer.
File Size:3876
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:8f11895bb7b2c9f0e107a39363f22013

 ///  File Name: scanlogd-v1.2.c.gz
Description:
 Linux scanlogd v1.2 - Linux scanlogd port scan detector. Use to detect many of the latest nmap scans.
Author:Solar Designer.
File Size:3861
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:8ee915390d9d79e04002389634d3dc24

 ///  File Name: scanlogd.c.gz
Description:
 scanlogd v1.1 - Linux scanlogd port scan detector.
Author:Solar Designer.
File Size:3754
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:af22383446f9f40cc6d2957a4014899d

 ///  File Name: scandetect.pl.txt
Description:
 Basic, but effective perl-based portscan detector.
Author:J-Dog.
File Size:3450
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:363cef4ee97ec41ad8cac88f27843f7f

 ///  File Name: rwxbo.c
Description:
 RWX Back Orifice Sweep Scanner - RWXBO is a simple program that will log attempts to scan your ip range, and logs some commands that the attacker might type.
Author:KByte, of RwX Net Security.
File Size:2635
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:88d5fe7bb1063a45a2ca784185d39328

 ///  File Name: tcplogd-patch-0.1.4a
Description:
 Patch for tcplogd-0.1.4a.tar.gz
File Size:435
Last Modified:Aug 17 02:06:07 1999
MD5 Checksum:4ec703ec2f7c94782071040ccea9b171
 

 ///  Last 10 Files
  1. :· dsa-1674-1.txt
  2. :· dsa-1673-1.txt
  3. :· activebids-sql.txt
  4. :· activetest21-sql.txt
  5. :· activewebmail4-sql.txt
  6. :· activevotes22-sql.txt
  7. :· oramon-disclose.txt
  8. :· aspthai-disclose.txt
  9. :· openforum-password.txt
  10. :· litolite-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1674-1.txt
  2. :· dsa-1673-1.txt
  3. :· dsa-1672-1.txt
  4. :· USN-679-1.txt
  5. :· USN-680-1.txt
  6. :· impresscms-fixation.txt
  7. :· USN-678-1.txt
  8. :· USN-668-1.txt
  9. :· rsaenvision-disclose.txt
  10. :· SSRT080132.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· activebids-sql.txt
  2. :· activetest21-sql.txt
  3. :· activewebmail4-sql.txt
  4. :· activevotes22-sql.txt
  5. :· oramon-disclose.txt
  6. :· aspthai-disclose.txt
  7. :· openforum-password.txt
  8. :· litolite-sql.txt
  9. :· quicktree-disclose.txt
  10. :· cmsmadesimple-lfi.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· Exomind-v0.2.tar.gz
  2. :· clamav-0.94.2.tar.gz
  3. :· cadfile.zip
  4. :· anehta-v0.6.0fixed2.zip
  5. :· tagfuzz.txt
  6. :· BrowserRider.20081124.tar.bz2
  7. :· mp3nema-v0_2.tar.gz
  8. :· squid-nufw-helper-1.1.3.tar.gz
  9. :· xplico-0.1_deft4.tgz
  10. :· ksplice-0.9.4-src.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· format-string-linux.txt
  2. :· frame-pointer-overwrite-linux.txt
  3. :· iptablesf.txt
  4. :· nufw-2.2.19.tar.gz
  5. :· frhack2009-cfp.txt
  6. :· oracle-forensics-scns.pdf
  7. :· cansecwest-2009.txt
  8. :· A5.1.zip
  9. :· a51-php.txt
  10. :· tcpip_lib51.zip
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice