Section: .. / UNIX / security /
| /// File Name: |
jail_1.9a.tar.gz |
Description:
|
Jail Chroot Project is an attempt of write a tool that builds a chrooted environment. The main goal of Jail is to be as simple as possible, and highly portable. The most difficult step when building a chrooted environment is to set up the right libraries and files. Here, Jail comes to the rescue with a tool to automatically configures & builds all the required files, directories and libraries.
| | Author: | Juan Casillas | | Homepage: | http://www.jmcresearch.com/projects/jail/ | | Changes: | Various feature enhancements. | | File Size: | 45210 | | Last Modified: | Feb 6 17:04:00 2004 |
| MD5 Checksum: | 06824a1255ce3da1bb86cb806bf15535 |
|
| /// File Name: |
ip-sentinel-0.9.tar.bz2 |
Description:
|
IP Sentinel is a tool that prevents unauthorized usage of IP addresses within an ethernet broadcast domain by answering ARP requests. After receiving faked replies, requesting parties store the MAC in their ARP tables and will send future packets to this invalid MAC, rendering the IP unreachable. Features chroot non-root operation.
| | Author: | Enrico Scholz | | Homepage: | http://www-user.tu-chemnitz.de/~ensc/ip-sentinel | | Changes: | Fixes the handling of MAC-annotated IPs when there exists a more general rule. It provides workarounds for gcc and dietlibc bugs also, and the behavior on duplicate networks with MAC-annotation is now predictable so that e.g. MAC-pools for networks can be configured. | | File Size: | 123603 | | Last Modified: | Dec 16 16:41:12 2003 |
| MD5 Checksum: | 668ea0be6aca5b4eb5232fb2572cdb4b |
|
| /// File Name: |
Impacket-0.9.4.tar.gz |
Description:
|
Impacket is a collection of Python classes for working with network protocols. Impacket is mostly focused on providing low-level programmatic access to the packets, however some protocols (for instance NMB and SMB) are implemented in a higher level as a foundation for other protocols. Packets can be constructed from scratch, as well as parsed from raw data, and the object oriented API makes it simple to work with deep hierarchies of protocols. Impacket is most useful when used together with a packet capture utility or package such as Pcapy, an object oriented Python extension for capturing network packets.
| | Homepage: | http://oss.coresecurity.com/ | | File Size: | 64387 | | Last Modified: | Nov 30 22:12:52 2003 |
| MD5 Checksum: | 83e742d5c664ba91af78617123435dd1 |
|
| /// File Name: |
dnsa-0.4.tar.gz |
Description:
|
DNS Auditor is a tool which checks for DNS security. Looks for DNS cache poisoning (using additional RR), DNS ID Spoofing, and more. More information in a related paper is available here.
| | Author: | Pierre Betouin | | Homepage: | http://www.packetfactory.net/projects/dnsa | | File Size: | 556273 | | Last Modified: | Oct 30 00:25:55 2003 |
| MD5 Checksum: | a4437986512a00b2b48e008f4cff60ce |
|
| /// File Name: |
ncovert-1.1.tgz |
Description:
|
NMRC covert channel using ISN to transmit data from one computer to another.
| | Author: | Simple Nomad | | Homepage: | http://nmrc.org | | File Size: | 7236 | | Last Modified: | Aug 6 11:42:10 2003 |
| MD5 Checksum: | 20f2269b9d920ddfe33c251d2ddde505 |
|
| /// File Name: |
hopfake-1.5.tgz |
Description:
|
Hopfake logs traceroute attempts and can also add some extra fake hops. Works well with TCP/UDP and ICMP-ECHO based traceroutes.
| | Author: | Michele Dallachiesa aka xenion | | Changes: | pca_findalldevs function has been removed. | | File Size: | 8882 | | Last Modified: | Jul 14 20:02:29 2003 |
| MD5 Checksum: | e1f09643c1aaf3ad026514cc3c829421 |
|
| /// File Name: |
cctt-0.1.7.tar.gz |
Description:
|
Cctt, or "Covert Channel Tunneling Tool", is a tool that presents several exploitation techniques allowing the creation of arbitrary data transfer channels in the data streams (TCP, UDP, and HTTP) authorized by a network access control system.
| | Author: | Simon Castro | | Homepage: | http://www.entreelibre.com/cctt/index_en.html | | File Size: | 328863 | | Last Modified: | Jun 14 14:06:56 2003 |
| MD5 Checksum: | e248718690748bf7828de1fcc9b83250 |
|
| /// File Name: |
proxychains-1.8.2.tar.gz |
Description:
|
Proxychains is a command line tool for Linux and Solaris which allows TCP tunneling trough one or multiple (chained) HTTP proxies.
| | Author: | Proxy Labs | | Homepage: | http://www.proxylabs.com/proxychains | | Changes: | Minor bugfixes, improved compilation on FreeBSD, OpenBSD, and Sun Solaris, and addressed some cross platform issues. | | File Size: | 185357 | | Last Modified: | Jun 11 00:05:49 2003 |
| MD5 Checksum: | 276ad24c2680010a96f5e027ea27dcee |
|
| /// File Name: |
flawfinder-1.22.tar.gz |
Description:
|
Flawfinder searches through source code for potential security flaws, listing potential security flaws sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function. Secure Programming HOWTO here. Full changelog available here.
| | Author: | David A. Wheeler | | Homepage: | http://www.dwheeler.com/flawfinder | | Changes: | Output format and packaging. | | File Size: | 95670 | | Last Modified: | Apr 9 23:52:29 2003 |
| MD5 Checksum: | a6746b5e8b443e777ebd223edae33e6d |
|
| /// File Name: |
proxychains-1.8.tar.gz |
Description:
|
Proxychains is a command line tool for Linux and Solaris which allows TCP tunneling trough one or multiple (chained) HTTP proxies.
| | Author: | Net Creature | | Homepage: | http://proxychains.sourceforge.net | | Changes: | Support for SOCKS4 and 5 protocols, more options, a proper installation guide, and more. | | File Size: | 186535 | | Last Modified: | Feb 3 22:10:26 2003 |
| MD5 Checksum: | 07ce3904e8260d78bf7ec4ae53e8ab2f |
|
| /// File Name: |
hopfake13.tgz |
Description:
|
Hopfake logs traceroute attempts and can also add some extra fake hops. Works well with TCP/UDP and ICMP-ECHO based traceroutes.
| | Author: | Michele Dallachiesa aka xenion | | File Size: | 8280 | | Last Modified: | Jan 22 02:53:18 2003 |
| MD5 Checksum: | 4f7502ad4d4c3f02a9f309ce8938449a |
|
| /// File Name: |
oat-source-1.3.0.zip |
Description:
|
OAT v1.3.0 is a set of tools which can be used to audit Oracle databases running on the Microsoft Windows platform. The Tools are Java based and were tested on both Windows and Linux. They should hopefully also run on any other Java platform.
| | Author: | Patrik Karlsson | | Homepage: | http://www.cqure.net/tools08.html | | Changes: | Added support for manually specifying remote os when running (O)racle (S)ystem (E)exec. Bugfixes. | | File Size: | 290909 | | Last Modified: | Jan 5 08:54:29 2003 |
| MD5 Checksum: | 48614184126e5cf6766faa4b17f95377 |
|
| /// File Name: |
paketto-1.10.tar.gz |
Description:
|
Paketto Keiretsu v1.10 implements many of the techniques described in recent TCP/IP Black Ops talks. Scanrand implements extremely fast and efficient port, host, and network trace scanning which uses cryptographic signatures. Minewt implements technique known as MAC Address Translation which allows several backend hosts to share the same IP address. Linkcat (lc) does at Layer 2 (Ethernet) what Netcat does for Layer 4-7(TCP/UDP). Phentropy plots large amounts of arbitrary data onto a three dimensional volumetric matrix allowing you to see the Strange Attractors which can be used to predict future values from an otherwise random system. Paratrace traces the path between a client and a server like traceroute but at Layer 4. It attaches to an existing, firewall-approved TCP flow, analyzing the resultant ICMP Time Exceeded replies. A slashdot thread on these tools is here.
| | Author: | Dan Kaminsky | | Homepage: | http://www.doxpara.com | | Changes: | Now has OpenBSD and Solaris support. A new Distco mode actively discovers the distance to remote hosts by analyzing the TTL in returned TCP RST packets. Libnet was patched to pack its variables. Traceroute hopcount determination was improved. | | File Size: | 900104 | | Last Modified: | Dec 24 11:30:08 2002 |
| MD5 Checksum: | 7fd82af09a6493f24c8681f7bbf03898 |
|
| /// File Name: |
lsrscan-0.5.tar.gz |
Description:
|
Lsrscan scans remote hosts to determine if the will reverse source routed connections, and hence are vulnerable to spoofing attacks.
| | Author: | Todd MacDermid | | Homepage: | http://www.synacklabs.net/projects/lsrscan | | Changes: | Version 0.5 allows scanning of multiple arbitrary CIDR blocks, and allows insertion of intermediate hops to obfuscate the originating scanner. | | File Size: | 60715 | | Last Modified: | Dec 3 00:24:38 2002 |
| MD5 Checksum: | 8169db155a40bc8b70f9a3a4f5a5950f |
|
| /// File Name: |
vncgame.c |
Description:
|
VNC Game implements a man in the middle attack which bypasses VNC's challenge/response authentication which keeps the password from being sniffed. Written for a security audit.
| | Author: | Rafael San Miguel Carrasco | | File Size: | 3877 | | Last Modified: | Dec 2 23:56:47 2002 |
| MD5 Checksum: | e1b221352334c8f46c82b5f9dbd47fcc |
|
| /// File Name: |
paketto-1.0.tar.gz |
Description:
|
Paketto Keiretsu v1.0 implements many of the techniques described in recent TCP/IP Black Ops talks. Scanrand implements extremely fast and efficient port, host, and network trace scanning which uses cryptographic signatures. Minewt implements technique known as MAC Address Translation which allows several backend hosts to share the same IP address. Linkcat (lc) does at Layer 2 (Ethernet) what Netcat does for Layer 4-7(TCP/UDP). Phentropy plots large amounts of arbitrary data onto a three dimensional volumetric matrix allowing you to see the Strange Attractors which can be used to predict future values from an otherwise random system. Paratrace traces the path between a client and a server like traceroute but at Layer 4. It attaches to an existing, firewall-approved TCP flow, analyzing the resultant ICMP Time Exceeded replies. A slashdot thread on these tools is here.
| | Author: | Dan Kaminsky | | Homepage: | http://www.doxpara.com | | File Size: | 1130358 | | Last Modified: | Nov 19 03:50:36 2002 |
| MD5 Checksum: | f974f9f115a422c4ddff73fb1e98269c |
|
| /// File Name: |
ip-sentinel-0.1.tar.bz2 |
Description:
|
IP Sentinel is a tool that prevents unauthorized usage of IP addresses within an ethernet broadcast domain by answering ARP requests. After receiving faked replies, requesting parties store the MAC in their ARP tables and will send future packets to this invalid MAC, rendering the IP unreachable. Features chroot non-root operation.
| | Author: | Enrico Scholz | | Homepage: | http://www-user.tu-chemnitz.de/~ensc/ip-sentinel | | File Size: | 90505 | | Last Modified: | Nov 16 23:30:31 2002 |
| MD5 Checksum: | 152aab997e109c66670c68eea2d93ab7 |
|
| /// File Name: |
flawfinder-1.21.tar.gz |
Description:
|
Flawfinder searches through source code for potential security flaws, listing potential security flaws sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function. Secure Programming HOWTO here. Full changelog available here.
| | Author: | David A. Wheeler | | Homepage: | http://www.dwheeler.com/flawfinder | | Changes: | Improved the default output, added a short tutorial to man page, fixed some bugs. | | File Size: | 95679 | | Last Modified: | Oct 17 02:05:10 2002 |
| MD5 Checksum: | 4f9a408b0c73d911bc4771b3c45ac9da |
|
| /// File Name: |
rats-2.1.tar.gz |
Description:
|
RATS, the Rough Auditing Tool for Security, is a security auditing utility for C, C++, Python, Perl and PHP code. RATS scans source code in order to find potentially dangerous function calls. The output generated by RATS can be used as a good starting point for performing manual security audits. Readme available here.
| | Author: | RATS Team | | Homepage: | http://www.securesoftware.com/rats.php | | Changes: | Bugs fixed. | | File Size: | 326930 | | Last Modified: | Oct 17 01:58:08 2002 |
| MD5 Checksum: | adf31806f1eff0c353abcfd57653ecb3 |
|
| /// File Name: |
arp-sk-0.0.15.tgz |
Description:
|
Arp-sk is an ARP packet generator for Unix designed to illustrate ARP protocol flaws and applications such as ARP cache poisoning and MAC spoofing. It gives complete control of link and network level data. See arp-sk.org for further information.
| | Author: | Frederic Raynal | | Homepage: | http://www.arp-sk.org/ | | Changes: | This new version fixes 2 bugs in address lookup and should work properly under any BSD. | | File Size: | 148454 | | Last Modified: | Oct 16 23:49:18 2002 |
| MD5 Checksum: | fb2694c322efdddfd14307557fe469ec |
|
| /// File Name: |
rats-2.0.tar.gz |
Description:
|
RATS, the Rough Auditing Tool for Security, is a security auditing utility for C, C++, Python, Perl and PHP code. RATS scans source code in order to find potentially dangerous function calls. The output generated by RATS can be used as a good starting point for performing manual security audits.
| | Author: | RATS Team | | Homepage: | http://www.securesw.com/rats/ | | Changes: | RATS version 2.0 has updated databases, better output features, a statistics feature and much more. | | File Size: | 326825 | | Last Modified: | Sep 20 03:20:00 2002 |
| MD5 Checksum: | 7eb9ea4262723b9b588628b497f85ea1 |
|
| /// File Name: |
scponly-3.0.tgz |
Description:
|
scponly is an alternative shell for system administrators who would like to provide access to remote users to both read and write local files without providing any remote execution privileges. Functionally, it is a wrapper around the ssh suite of applications.
| | Author: | Joe | | Homepage: | http://sublimation.org/scponly | | Changes: | Now supports Solaris and gftp. System() has been dropped, and wildcards are expanded with glob() depending on the availability of this function. autoconf has been expanded. | | File Size: | 64924 | | Last Modified: | Sep 10 01:17:30 2002 |
| MD5 Checksum: | 517f6c0cbc8398feb545c48cea6ed29f |
|
| /// File Name: |
arp-sk-0.0.13.tgz |
Description:
|
Arp-sk is an ARP packet generator for Unix designed to illustrate ARP protocol flaws and applications such as ARP cache poisoning and MAC spoofing. It gives complete control of link and network level data. See arp-sk.org for further information.
| | Author: | Frederic Raynal | | Homepage: | http://www.arp-sk.org/ | | Changes: | This new version fixes some bugs and makes arp-sk less CPU consuming. | | File Size: | 146206 | | Last Modified: | Aug 28 00:03:00 2002 |
| MD5 Checksum: | 8f22f24dec8ae2a9347256c10069da1c |
|
| /// File Name: |
lsrtunnel-0.2.tar.gz |
Description:
|
lsrtunnel spoofs connections to a remote host by pretending to be the middle host in a source routed path. The remote host must return source routed connections for this spoofing to work.
| | Author: | Todd MacDermid | | Homepage: | http://www.synacklabs.net/projects/lsrtunnel | | File Size: | 53822 | | Last Modified: | Aug 9 01:37:20 2002 |
| MD5 Checksum: | e268ebc4c8c0c1af8d2cbf9149c40d44 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
