Packet Storm Security
Connection from dialup528.mpsnet.com.mx [200.38.32.210], utilizing Mozilla/4.06 [en] (WinNT; I),
on Sunday, 30-Aug-1998 14:14:50 PDT (Apache/1.3b6 server local time) has been logged.

New Files & Info
for Sunday, 30-Aug-1998 21:14:50 GMT

  • Larva v0.0 - Larva is a GUI interface for automating shell/IP combo commands. Basically, a command-line configurable (feed in any shell command that can be used in conjuction with an IP) scanner. 1.49MB. Larva v0.0 Source Code. 14k. By Rhino9.

  • wwwhack v5.7 - Latest release of program that "automagically" cracks/hacks passwords at sites with http password access. 166k. For more info, check out wwwhack home page.

  • keylog v2.5 - MS-DOS keystroke logger. 57k.

  • noboot.zip - Prevent users from rebooting machines with Ctrl-Alt-Del. 4k.

  • pgp4pine v0.95 - C program that makes using PGP with Pine mail client a breeze. 14k. By Chris Wiegand.

  • Whack Job v1.1 - A trojan front-end application for NetBus v1.60. 309k. By Ecoli.

  • NOCOL/SNIPS v4.2.1 - NOCOL(Network Operation Center On-Line)/SNIPS is a system and network monitoring software that runs on Unix systems and can poll network and system devices. It is capable of monitoring nameservers, web ports, host performance, syslogs, radius servers, BGP peers, etc. New monitors can be added easily (via a C or Perl API). 558k. By Netplex Technologies

  • StackGuard Compiler - StackGuard is a compiler approach for defending programs and systems against "stack smashing" attacks. Protection requires no source code changes. When a vulnerability is exploited, StackGuard detects the attack in progress, raises an intrusion alert, and halts the victim program.

  • pgp4pine v0.94 - Latest release of pgp4pine. 12k. By Chris Wiegand.

  • IPC$Crack - Simple perl script that will automate logon attempts using a dictionary attack. It will connect to the IPC$ share on a remote machine using the net use \\IP-address\ipc$ passwd /user:ac-name command. 104k. By Mnemonix.

  • UltraScan12.zip - UltraScan v1.2 - Fast as hell class C TCP port scanner. 1.19MB.

  • scanport.pl - Scanport uses the ftp bounce principle to perform scans. Perl scanner that can be used with unpatched anon FTPs for stealth scans. 1.5k. By Mnemonix.

  • sechole2.zip - Sechole.exe exploits a hole that grants a non-admin user debug-level access on a system service - from here local Admin rights are gained. This is purported to work on NT 3.51, NT 4.0 and the beta release of NT 5.0. 36k.

  • NTFSDOS - Get access to NTFS partitions from OSs that use FAT. Format a floppy disk with the /s option (copy system files), copy ntfsdos.exe (and the helpf file ntfshlp.vxd if you want) then boot the NT box with it. Gain full read access to everything on NTFS partitions. Go for the SAM in the winnt\system32\config directory. 32k.

  • Nbtname.zip - Nbtname.exe and Rnbtname.exe. 17k. By Mnemonix.

  • Nbtname.exe - Nbtname.exe is a simple utility that takes a NetBIOS name and puts it through the mangle process to prepare the name for NetBIOS session setups. 13k. By Mnemonix.

  • Rnbtname.exe - Rnbtname.exe does the reverse - it takes the mangle and converts it back into a NetBIOS name - perfect for sniffers. 14k. By Mnemonix.

  • SnmpSniff v0.9b - Promiscuous SNMP PDU sniffer. 37k.

  • L5 v1.1 - Tripwire-like script that traverses UNIX or DOS file systems and checks for file integrity. NOT a Tripwire substitute, but a very quick, dirty and useful auditing/security utility. 26k.

  • tosping v0.1 - Client/server app that detects if a router on an end-to-end path is modifying IP header TOS bytes. 35k. By Mike Borella.

  • Ncurses Hexedit v0.8.5 - Hexedit Version 0.8.5 is a full screen text mode Hex editor using the curses library. 170k. UNIX.

  • PDcurses Hexedit v0.8.5 - Hexedit Version 0.8.5 is a full screen text mode Hex editor using the curses library. 106k. Windows95/98/NT.

  • ipgrab v0.5.2 - Packet reader and parser similar to tcpdump, but dumps every relevant header field possible. 95k.

  • Fcrypt Password Cracker - Another password cracker similar to Crack, but faster. 23k.

  • DNi v0.1 - DNi: IP Filtering Firewall script for dial-up users. 3k. By Rostislav V. Belotserkovski.

  • IP Zoner v2.2 - Mass resolver/IP scanner; can be used to diag multiple IP blocks.

  • Netcat - Netcat for UNIX and NT. Example front-end scripts and text files too. This is not "NEWS!", but netcat now has it's own directory and files have been added to it.

  • Trinux Mirror - We now have a full mirror of all Trinux files. Trinux is a Linux distribution that boots from two floppies (right now) and runs solely from two ramdisks. Trinux is THE Linux distro for the security-conscious. The author is MD Franz.

  • Deception ToolKit - Use deception to counter attacks. DTK is fully programmable and configurable. 256k. By Fred Cohen & Associates.

  • Hexedit v0.9.5 - Latest version of Hexedit for Linux. Excellent program. 24k. By Pascal Rigaux.

  • Ethereal v0.3.11 - Bugfix release of Ethereal network traffic analyzer. 104k. By Gerald Combs.

  • SSH2 - SSH2, the latest version of Secure Shell, has been released by Helsinki University of Technology. SSH protocol utilization is personally recommended for ALL remote system accesses.

  • hotmail-attack-082698.txt - Yet another Hotmail attack.

  • Ethereal v0.3.9 - Ethereal is a utility that lets you capture and analyze network traffic. 103k. By Gerald Combs.

  • Drawbridge v3.0b2 - Excellent firewall package with high-speed packet filtering and powerful filter language. 277k. Requires FreeBSD. By TAMU.

  • Ethereal v0.3.8 - Latest version of Ethereal network traffic analyzer, with expanded PostScript(R), OSPF, and DNS code. 99k. By Gerald Combs.

  • SilkRope v1.1 - Updated version of SilkRope Back Orifice Plugin; now with NT detection and simple encryption.

  • New BitchX Clients - Check the BitchX directory for the latest BitchX clients for Windows95/98/NT and OS/2, plus the latest version of EPIC.

  • New BitchX Scripts! - Check the BitchX script archives for carpel.bx.gz, dukejunkie.bx.gz, lamer.bx.gz, pxr2.tgz, pw.bx.gz, vertigo.bx.gz.

  • bnc2.4.4 - Latest release of IRC bounce program. Allows you to connect to IRC remotely through another machine.

  • K-Arp-Ski v0.99 - Latest release of K-Arp-Ski network mapper, misuse detector, and sniffer. Includes threaded DNS queries, bugfixes. Gtk interface. 143k. By Brian Costello.

  • Qps v1.4.4 - Qps - Visual Process Manager. X11 version of "top" or "ps" that displays processes in a window and lets you sort and manipulate them. 131k. By Mattias Engdegård.

  • get-qb-pw.c - Code to decrypt passwords stored in QuickBooks Pro 5.0.

  • linuxconf.txt - Linuxconf as shipped with RedHat 5.1 contains a /tmp bug.

  • solarisab2.txt - Solaris answerbook web server contains a bunch of security holes.

  • hotmail-javascript-hack - Yet another serious exploit involving Hotmail passwords. Full description and exploit code included.

  • Xlogmaster v1.4.3 - Xlogmaster allows comfortable and fast control of all important system logfiles and devices that are readable via cat. Gtk interface, full runtime config. 327k. By Georg C. F. Greve.

  • FAIM v0.03p7 - Fucking AOL Instant Messenger v0.03p7 - open source client for America Online's Instant Messenger. 39k. By PyxisSystems Technologies.

  • LAIM - LAIM is an ncurses based AOL Instant Messenger(tm) client/clone written in C++. 25k. By Jae Jang.

  • NetBus v.1.60 - THE remote administration/hacking tool for Windows95/98/NT. Watch out cDc! 526k. By Carl-Fredrik Neikter.

  • radiusd-1.6.pl - perlradius is currently basically a drop-in replacement for the livingston radiusd plus a few bits. 22k. By Michael O'Reilly.

  • Angel v0.7 - Angel is a simple yet useful tool to monitor the services on your network. Perl. 184k. By Marco Paganini.

  • XTcpdump v1.0.2 - Xwindows front end to tcpdump. Requires Tcl/Tk. 97k. By Sveinar Rasmussen.

  • SnmpMonitorEx v1.0.1 - Safely monitor SNMP variables on the net. If there are changes, you can get a message on your cellular, by mail or on screen. Requires Scotty and Tcl/Tk. 43k. By Sveinar Rasmussen.

  • Snmpd v1.0.1 - SNMP based network management program to alleviate certain problems of heterogeneous systems. Requires Scotty and Tcl/Tk. 151k. By Sveinar Rasmussen.

  • sockets-de-troie.zip - Trojan that accesses a specific port on an exploited system. Also contains a domain scanner, finger, icmper, icq stuff, ip converter, mail bomber, port bomber, port scanner, a search registry net, and telnet.

  • Legion v2.1 - Latest version of the Legion File Share scanner by Rhino9. Many improvements.

  • Rader v1.0 - Visual password shortner. A program to guess someone's password by imitating keystrokes. Rader works by parsing a wordlist based on probable keystrokes, exact keystrokes and word length.

  • licq-0.40.tar.gz - Latest release! Licq is an ICQ clone written fully in c++ using the Qt widget set. Improved GUI, many bug fixes and improvements. LICQ Homepage.

  • ios7decrypt.pl - Cisco IOS password decrypter. The inherent weakness of the Cisco IOS password is exposed again.

  • webtrends-passwd-grab.c - WebTrends Log Analyzer remote passwd grabbing script.

  • XICQv10.zip - All common ICQ exploits incorporated into one program. By X-Force.

  • Viper Password Retriever - A password cracker for the standard unix password list. Very easy to use, and very fast. Coded in Perl. By Pavel Aubuchon-Mendoza.

  • Trinux-HD - Now you can boot Trinux from an msdos/fat16 partition. Simply uncompress trinux.zip and copy any Trinux modules (.tgz) in the trinux folder, enter the DOS mode, cd trinux, and type trinux. You'll have to hit a return when the ramdisk loads and enter the device where the trinux folder is located. The Perfect version of this Linux distro for the Linux install-impaired and security-paranoid. By Matthew Franz.

  • Master's Paradise 98 Beta 9.7 - Trojan that accesses a specific port on an exploited system. Also contains a game file which you can send to your victim to get their port open.

  • ethereal-0.3.7.tar.gz - Improved OSPF support for this latest release of the Ethereal Network Traffic Analyzer for UNIX.

  • Trinux-081698.tar.gz - The latest release of the TRINUX Linux distro with a serious security twist. Trinux is a Linux distribution that boots from two floppies. Trinux v.03 (this version) incorporates netbase, netmon, netmap, msban, sniffit, tcpdump, ipgrab, nmap, strobe, tcp_scan, readsmb, tcpshow, dhcp, snmpget, snmpset, snmpwalk, drpscan, nfs_check, nat, trafshow, statnet, iptraf, netcat, spak, and much, much more. This latest release, in tarballed format, includes all disk images. If you would rather download the images individually, go here. By Matthew Franz.

  • c2txt2c.tar.gz - C to English and English to C translator v0.1. Tarball includes translator source code, input (blowfish.c), and output (english text). Demonstration that C source is speech as a rebuttal to US government's opinion that software is not protected by the First Amendment because it is a "functional device". Read more and here too.

  • bo120.zip - BO v1.2.0 - Latest version of Back Orifice for Windows95/98.

  • Speakeasy v0.1beta - Speakeasy is a Back Orifice ButtPlug that attempts to log into a predetermined IRC server on channel #BO_OWNED with a random username. It then proceeds to announce its IP address and a custom message every few minutes.

  • Big Brother v1.08 - Latest release of the Big Brother System and Network Monitor.

  • nessus-980801.tgz - Latest release of the Nessus security scanner/auditing tool for *nix. See below for NT version.

  • NessusJ-JFC-980705.zip - NESSUSJ is a nessusd Java client fully compatible with Nessus and NTP 1.0. Requires swing.zip.

  • isinglass-1.12.tar.gz - IsinGlass is a firewall setup script designed to protect dial-up users. It protects your system against security holes in programs the user may not even know they're running. It will automatically detect network interfaces and IP addresses.

  • SAINT v1.2.10 - Latest version of the Security Administrator's Integrated Network Tool. SAINT Web Site

  • icqpw-bypass.txt - ICQ password authentication is virtually non-existent. Login as ANYONE you want.

  • opera.txt - URL exploit to crash Opera Browser. Remote DoS attack.

  • tdetect v2.0 - tdetect is a daemon that detects all traceroute attempts to/from your network (both from Unix and Windows machines) and logs it using syslog().

  • ZipCracker 0.0.4 for *nix - ZipCracker cracks password protected zip archives with brute force(TM). It can be compiled with PVM support, which makes it able to take advantage of the computing power of a Beowulf Cluster. This version uses zlib instead of the unzip executable and comes with a performance increase of about 10 times compared to the previous version. The ZipCracker's Homepage

  • ZipCracker 0.0.4 for Win32 - See above for description. This is the Win95/98/NT binary.

  • httpd-afpp - Anti-Filtering-Proxy Proxy 1.17. httpd-afpp is a server perl script designed to defeat the site-blocking fuctionality of censorware and filtering-proxies. For working example, go here.

  • SilkRope v1.0 - BUTTplug plugin for Back Orifice. Silk Rope 1.0 is an evolution of the SaranWrap concept. An .exe wrapper to facilitate remote installation of BO server and execution of specified application(s).

  • SaranWrap v1.1 - BUTTplug plugin for Back Orifice. Saran Wrap 1.1 is an .exe wrapper that will install BO, and then run a specified application.

  • ButtTrumpet v1.1 - BUTTplug plugin for Back Orifice. Butt Trumpet 1.1 will attempt to e-mail the IP of the BO Server machine to a user specified e-mail address.

  • ttysnoop-0.12c.tar.gz - The package allows you to snoop on login tty's through another tty-device or pseudo-tty. The snoop-tty becomes a 'clone' of the original tty, redirecting both input and output from/to it.

  • control-trojan.zip - Yet another trojan to play with. Password: 666 C/S JCzic...

  • mastpara-trojan.zip - Another trojan to play with.

  • satan-1.1.1.linux.fixed2.tgz - SATAN optimized for Linux.

  • filefind.zip - Command line file finding utility for DOS/Windows. By Epicurus.

  • NetBIOS Security Kit v1.0 - NetBIOS Security Kit v1.0. Unix source code.

  • rotorouter.tar.gz - A program for logging and faking the standard unix udp-based traceroute.

  • more-sioux.c - Web Server DoS attack for IIS3.X, IIS4.X, Apache, Website Pro, and possibly others.

  • fakeroute.c - A program for faking the standard unix udp-based traceroute.

  • flowpoint2000.txt - DoS in Flowpoint 2000 DSL routers.

  • asp-server-var.passwds.txt - Obtain domain users passwords via asp server variable.

  • anger.tar.gz - PPTP Challenge/Response Sniffer & Active Attack Addon for L0phtCrack. By Aleph One. Basically, it actively attacks PPTP logon via the MS-CHAP password change protocol version 1 to obtain the LANMAN and NT password hashes. Note that once you get the password hashes, you dont even need to crack the passwords to logon onto an SMB server or PPTP server. There is currently no patch from Microsoft to protect against this.

  • bo121unix.tar.gz - UNIX version of cDc's Back Orifice, WITH source code. The controversial Windows Remote Administration/Hacking Tool/Trojan has been ported and the source code released.

  • antigen10.zip - AntiGen 1.0 - Detects, cleans, and destroys the Back Orifice trojan, automatically; checks the severity of the BOserve infection and cleans each of them - automatically, in a wizard interface. By Fresh Software.

  • hexedit-0.9.4.src.tgz - Latest release of hexeditor for Linux/UNIX. Many new features. Check the home page for details.

  • vintra.txt - The Vinatra Systems mail server has a DoS in the EXPN command.

  • eudoraurl.txt - Eudora Pro 4.0 and 4.01 can be forced to run hostile Javascript and applets.

  • Nuke Nabber v2.9 - Up to 50 ports can be assigned to listen for TCP and UDP based attacks as well as listening for ICMP dest_unreach based attacks.

  • Toilet Paper v1.0 - Toilet Paper is a program that searches for and removes the Back Orifice backdoor trojan. It scans your machine every time you boot, insuring that the trojan, when installed, does as little damage as possible, by The Messiah of sinnerz.com.

  • sendmail-8.9.1.txt - mail.local introduces new class of bugs and security holes. Compromises all versions of sendmail. Local exploit.

  • sioux.c - Apache webserver DoS attack.

  • ICKill Trojan Analysis - Excellent analysis of the ICQ trojans, by The Messiah of sinnerz.com.

  • sysmon.pl - This script, run on a regular (daily) basis, keeps tabs on root accounts and set[ug]id root files.

  • nthandleex.zip - Find out what files, registry keys and other objects processes have open, or which DLLs they have loaded. A flexible GUI will even show you who owns each process. For NT.

  • tcpview.zip - See all open TCP and UDP endpoints. Full source to the command-line version of this tool, netstatp, is included. For NT.

  • sidsrc.zip - Learn about the computer SID problem everybody has been talking about and get a free computer SID changer, NewSID, complete with full source code. For NT.

  • newsid.zip - Same as above, but without source.

  • netstatp.zip - Netstatp with source code. Comes with tcpview (above). For NT.

  • diskmon.zip - This is a Gui/device driver program that watches all hard disk activity. For NT.

  • AOL Instant Messenger password decoder - AOL Instant Messenger password decoder written in Visual Basic. (Includes source code).

  • smbls98.tgz - A program similar to WinHack Gold for Linux that looks for open file shares. A CGI interface is included.

  • ms2-proxyserver.txt - Understanding Microsoft Proxy Server 2.0, By NeonSurge of Rhino9.

  • boinfo.txt - Information about the cDc BackOrifice including how to detect if it is installed, how to remove it, and how to break the weak encryption that it uses. From ISS X-Force.

  • Millenium Hacking (Hacking 2000) - CyberTech Security (UHF); 1998. A general HOWTO for hacking with a goal of showing what hacking was like at the end of the millenium.

  • iptraf-1.2.0.tar.gz - IPTraf is an ncurses-based IP LAN monitor that generates various network statistics including TCP info, UDP counts, ICMP and OSPF information, Ethernet load info, node stats, IP checksum errors, and others.

  • jail-1.5.tar.gz - jail(Just Another ICMP Logger) is a small program which runs in the background, logging the reception of ICMP packets to the system log. This is a useful monitoring tool and can help detect attempted denials of service.

  • mon-0.37l.tar.gz - mon is an extensible service monitoring daemon which can be used to monitor network or non-network resources. Service monitors that come with the distribution can test for ping, telnet, ftp, smtp, http, nntp, pop3, imap, disk space, and SNMP queries.

  • Monitor-1.0.0.tar.gz - The Monitor is a small file monitoring program. Can handle an unlimited number of files, and can be configured to timestamp each line displayed. It also supports basic parsing of syslogs (compressing the output).

  • scotty-2.1.9.tar.gz - Powerful network editor/monitor that can understand SNMP, ICMP, DNS, HTTP, SUN RPC, NTP and UDP protocols. Tcl/Tk.

  • neped.c - neped scans your subnet and detects promiscuous linux boxes that might be running sniffers or similar applications.

  • netwatch0.7e.src.tar.gz - monitor an ETHERNET and examine activity on the network.

  • snmpsniff-0.8b.tar.gz - SNMP promiscuous packet sniffer/decoder.

  • snplog-0.1.tar.gz - snplog-1.0 (Simple Network Protocol logger) consists of three daemon programs icmplogd, udplogd and tcplogd.

  • domino-notes.txt - L0pht Advisory: Lotus Note Vulnerability in which users can overwrite/create system files.

  • WebSideSpoof.sh - Rack up all the free "hits" you can handle for your site and jump to the top of Web Side Story Top 1000/10000 lists. Yeah, it's lame, I already know that, but so is Web Side Story.

  • faxsurvey.txt - Remote exploit for the faxsurvey CGI that comes with Hylafax.

  • Back Orifice - Back Orifice - Windows Remote Administration Tool, by the cDc. Read the details.

  • yp.c - Yahoo Pager Client Emulator allowing you to bump people off, hijack conversations, impersonate people, etc.

  • pptp-sniff.tar.gz - PPTP Sniffer for L0phtCrack. This will sniff PPTP authentication and output the challenge and password hashes just like our readsmb sniffer that comes with the l0phtcrack distribution. This only works with Solaris right now. Read Cryptanalysis of Microsoft's Point-to-Point Tunneling Protocol (PPTP) for further info.

  • nt-sechole2.zip - Exploit code to get local admin access on ALL version of NT, including 5.0 Beta X. The zip file includes sechole.exe and admindll.dll. Make sure to read get-local-admin.txt. Fix information is included.

  • zen25-hole.txt - Security hole in zen 2.5 client for NT 4.0. Bypass client security and access resources without usercode or password.

  • Back Orifice (BO) - The CULT OF THE DEAD COW (cDc) SECURITY ALERT. cDc will release Back Orifice, a remote MS Windows Administration tool, on 8/1/98. There goes what was left of Windows security...

  • msie4-object.txt - DoS attack buffer overflow involving MSIE OBJECT tag. Yet another way to experience the thrills of the Blue Screen of Death.

  • who.txt - 'who' program on some systems is in a privileged group allowed to read utmp. Can be used to gain privleged group access and/or to cause kernel panic.

  • openbsdreadv.txt - Local Dos attack. OpenBSD 2.3's readv() allows a normal user to cause a kernel panic.

  • netscapemail.txt - Netscape 4.05 mail reader contains a buffer overflow when dealing with attachments.

  • mutt.txt - Mutt 0.93 mail client contains a buffer overflow in the Content-type field. Allows remote users to execute arbitrary code on user accounts.

  • papasmurf-linux.c - papasmurf.c ported to Linux.

  • papasmurf.c - (papa)smurf.c v5.0 - New hybrid DoS attack based on smurf and fraggle.

  • annex-DoS.txt - Descriptions of DoS attacks against Annex web servers.

  • https_proxy.tar.gz - Description of Netscape https security weakness, and shell script to use with netcat to test your browser for the security vulnerability.

  • Big Brother v1.07b - Big Brother, the proactive network monitoring tool for the UNIX sysadmin. Need a version for your NT workstation? Big Brother v1.03 for NT.

  • SHADOW.tar.gz - The new release of the excellent, complete traffic analysis and Intrusion Detection System developed by The SANS Institute, The Naval Surface Warfare Center, the Lawrence Berkeley Research Center, and the US Dept of Energy. This package includes tcpdump, tcpslice, libpcap, and the SHADOW code. Check out the Instruction file before you download it. Requires SSH and Apache web server.

  • nessusnt-980706-src.zip - Windows NT/95 Network Security Auditing Tool. If you would rather get the binary than the source code, then download it here.

  • shadow-980724.tar.gz - A new version of the Shadow Password Utilities.

  • spong.tar.gz - System monitoring package coded in perl. Monitors clinets, networks, host groups, and displays info via web interface.

  • cfingerd.txt - cfingerd 1.3.2 contains a security hole that could lead to a root compromise. (Included in Debain GNU/Linux).

  • snmpsniff-0.6b.tar.gz - SNMP Sniffer - promiscualy listen on your network segment (or LAN), decode and print all the information that goes inside any SNMPv1 and SNMPv2 (Community Based) PDU. By Nuno Leitão.

  • nfr-1.6.2-src.tar.Z - Latest version of the Network Flight Recorder (NFR) Intrusion Detection System, from NFR. Make sure to get the ID example package and read Getting NFR Working.

  • Tripwire v1.30-1 - Latest release of the popular Intrusion Detection Security Tool for UNIX platforms.

  • ircn.txt - IRC client IRCN allows remote users to execute arbitrary commands.

  • imap4r1-linux.sh - Imap remote exploit for x86Linux, affecting IMAP4rev1v10.203. Shell script for use with netcat.

  • domscan.pl - Perl domain scanner. Any platform. Coded by Pavel Aubuchon-Mendoza, of deviance.org.

  • aimprotocol.txt - Details about AOL Instant Messager's security weaknesses, and several methods used to crack user passwords.

  • icqspoof.pl - icqspoof ported to perl. Spoof your UIN to send anonymous ICQ messages.

  • nbase.txt - N-Base switches contain several security holes including backdoor passwords.

  • wwwhack.zip - wwwhack - Purportedly automates the process of trying to crack logins/passwds for www sites that use basic HTTP authentication. Get the update.exe file to renew after 30 days and read the documentation/instructions.

  • new-hotmail-hack.html - Yet another new way to "hack" hotmail accounts?

  • readsmb.c - An implementation of the SMB sniffer that comes with l0phtcrack for UNIX.

  • trinux-0.2.1.tar.gz - Trinux is a small Linux distribution that runs off a Ramdisk. It is useful for network monitoring and troubleshooting. Includes tcpdump, tcp_scan, sniffit, ipgrab, tcpshow, nmap, strobe, nat, spak, netcat, iptraf, netwatch, trafshow, snmp, dhcp, and much more. If you prefer, download the two separate images instead of the tarball: boot.gz and data.gz. You'll also need netmon.tgz. This latest version includes latest sniffit and nmap, plus tcpshow, dhcp, snmpget, snmpset, snmpwalk, drpcscan. Experimental Firewall Module with SOCKS5 and ipfwadm also available. By Matthew Franz.

  • asmcodes.txt - Assembly drop in replacements for your favorite exploits. (x86 only).

  • xwatch-0.1.0.tar.gz - Xwatch is a tool to monitor one or several files (especially syslogs), optionally parsing the output, and displaying it in an X window. Requires GTK+.

  • eggdrop137.txt - Eggdrop the popular IRC bot contains many buffer overflows.

  • csmproxy.txt - CSM Proxy 4.1 contains a buffer overflow in its FTP service.

  • slackdb.txt - Buffer overflow. The Berkley DB in some slackware distributions defines snprintf to normal sprintf.

  • imapd4.txt - New remote root exploit in University of Washington imapd 4. (that came with Pine 4.0)

  • lpd-mail.c - Exploits lpd by specifying alternate sendmail alias file to use.

  • wide-dhcp.txt - /tmp bug in the OpenBSD port of wide-dhcp.

  • Sam Spade v1.07b - Latest release of The ULTIMATE Swiss Army Knife. Ping, nslookup, whois, IP block whois, dig, traceroute, finger, SMTP VRFY, web browser, keep-alive, DNS zone transfer, SMTP relay check, USENET cancel check, website download, website search, email header analysis. For Windows 95/98/NT. Freeware from Blighty Designs. For Win95/NT4.

  • Sniffit v. 0.3.7.beta - Latest version of Sniffit, THE Packet Sniffer. New Beta release, 07-15-98. For Linux, SunOS, Solaris, IRIX, and FreeBSD.

  • scopop-root.c - SCO POP remote root exploit.

  • Mrip250.zip - Multi Ripper v2.5. Multi-purpose File Ripper, rips over 100 file formats, 20 libraries. Win16/Win32 Resource Decompiler.

  • HIEW v5.84 - HIEW v5.84 hex editor/disassembler/decompiler.

  • syslog-poison.c - Modded syslog_deluxe.c to allow sending of spoofed syslog messages from either stdin or the command line.

  • fwbackdoor.txt - A paper on placing backdoors on machines behind firewalls, by van Hauser / THC. Includes rwwwshell.pl (Reverse-WWW-Tunnel-Backdoor v1.5) exploit code.

  • perliis.txt - Describes a vulnerability with Microsoft IIS 1/2/3/4 and Perl.

  • smurflog-1.1.tar.gz - Smurf Logger 1.1, new release with bugfixes. Logs smurf attacks and the broadcast address being used.

  • lpd-rm.c - Remove a file by exploiting Linux lpd command.

  • changemac.c - Change the MAC address of your ethernet card to trick smart / switching hubs.

  • deceit.c - Use PPTP protocol to steal user passwd hashes by masquerading as MS-CHAP passwd change prompt.

  • drpcscan.tgz - Scans ranges of IPs for known RPC services.

  • icqfile.cpp - ICQ Version 98a beta DLL v1.07 File Transfer Spoofer.

  • scanlogd.c - Example port scan detection tool. Pseudo code.

  • smrex.c - Buffer Overflow for Sunos 4.1 sendmail - execs /usr/etc/rpc.rexd.

  • watcher.c - Network monitoring tool - detect rogue incoming packets indicative of potential attacks.

  • dosnuke.zip - Calvin's Labs NetAttack. Can kill Windows on a port that you select if the target is unpatched. Can also select how many times to attack along with the size of the attack.

  • dosnukesrc.zip - Calvin's Labs NetAttack. Source code for above. Borland C++ 5.0.

  • dripper.zip - Dialup account ripper.

  • slmail-smash.txt - SLMail 3.0.2421 buffer overflow.

  • Vai-te já ICMP ToolKit v2.01 - ICMP Bomber, Nuker, Nuke Detector, and an OOB Attacker.

  • wanirc.zip - Sets up a server so that friends can use your IP to connect to IRC.

  • zfn.zip - zFn enables you to load up to 10 wingate clones on IRC and then flood people/channels with them.

  • kline2.zip - Sets up a server so that friends can use your IP to connect to IRC.

  • anti_sentry.c - DoS attack against servers running abacus sentry. Makes the abacus sentry program running on 'target' drop route/ipfwadm deny (to) the source address.

  • tft.c - "TCP Flag Test" -- 'excersizes' a machines TCP/IP stack by passing it all combinations of 64 TCP flags and seeing which flags are usable to determine which ports on the machine are open or not.

  • putsyslog.txt - Users can write messages to syslog and thus hide files in there and bypass quotas.

  • linuxfs.txt - Any amount of data, overriding quotas and kernel resource limits, can be stored in root-owned +t directory (like /tmp) - inside... filenames!

  • ePerl.txt - Bad handling of ISINDEX queries when ePerl runs as a nph-cgi/cgi can lead to arbitrary Perl code being executed on server.

  • WinAudlog - New centralized logfile checking tool for auditing distributed system logs in a network and certify that intruders did not modify these logs. It works in conjunction with SecureSyslog, the replacement for UNIX syslogd.

  • Cabral Domain Scanner - Final release of Cabral Domain scanner for Win95/98/NT.

  • winproxy.txt - Windows Proxy servers WinGate and StarTech contain buffer overflows.

  • irixat.txt - IRIX 6.2 'at' allows you to send yourself files owned by root via e-mail.

  • dslip203.txt - Dslip 2.03's allocslip which runs setuid has a buffer overflow.

  • solaris-sendmail-8.8.4.sh - The old /tmp Sendmail bug ported to Solaris 2.5 and 2.5.1.

  • synful.c - synful.c - SYN (SYN/ACK and ACK blow) written by \\StOrM\\ of sinnerz.com.

  • Mutilate v1.1 - Mutilate v1.1 - port mutilator/scanner, connects as many times as possible to a port resulting in a DoS attack or lag kill, by HoGs HeaD, of sinnerz.com.

  • passhack.mrc - Brute Force password cracker for mIRC.

  • ml.sh.gz - Monolith dyndns update script. Updates your hostname in the background. Emails user of any errors; by Jwit of sinnerz.com.

  • Domain Scanner v2.0 - Domain Scanner v2.0, by HoGs HeaD, of sinnerz.com.

  • The Atomic Bomb - How to build an atomic bomb.

  • winhackgold.zip - Winhack Gold is a program for Windows that scans blocks of IPs for open file shares that you can access, as featured in News Bytes.

  • aspads.txt - By appending ::$DATA to .asp URLs you are able to download the ASP source code from Microsoft web servers (IIS).

  • bitchx-dns-oddities.txt - BitchX ircd and dns bugs/oddities described. Can result in signal SIGSEGV, Segmentation fault.

  • ktcpd-strobemasker-1.4.gz - Linux 2.0.x kernel patch that protects you from strobes. Detects all strobes, logs all strobe attempts, refuses connections after a strobe begins, logs ALL packets (tcp, icmp, udp). Basically, makes your Linux box appear to be a Macintosh.

  • NetCop v1.6 - Automatic Port Scanner, Finger, Whois, in one small package.

  • Xnetstat - GUI based netstat monitor for Win95/NT. Simple to use. Coded by Freshman.

  • skippy.jar - Java based network scanning tool. Probes for many common holes and exploits. readme

  • afhrm-0.2.tgz - Advanced file hide & redirect module for Linux 2.0.xx / i386.

  • WinWebserver-exploit.txt - Bug in Win95/NT versions of Netscape Enterprise and WebSite Pro servers that allows anyone to access private documents such as DB passwds and programming code.

  • check-ps-1.2alpha4.tar.gz - Newest release of check-ps, a security alarm that kill scans rogue PIDs, acts as tripwire httpd with fake argument list. Read the accompanying text file.

  • mailxploit.tar.gz - Buffer overflow exploit in latest versions of mailx. Mail group AND root compromise. Text file, exploit code and patch included in this tarred and zipped file.

  • backhoe.pl - Backdoor daemon that copies a rootshell into /tmp and then spawns multiple copies of itself. Can be run in defensive and stealth modes also. Read the article.