FreeBSD Security Advisory - healthd allows a local root compromise. healthd v0.3 installs a utility which is setuid root in order to monitor the system status. This utility contains a trivial buffer overflow which allows an unprivileged local user to obtain root privileges on the system. healthd is part of the freebsd ports collection.
4f5be229484c65d7c49f8225b7b74307cfe1d849795c078158155c12990724f9FreeBSD Security Advisory - ircII port contains a remote overflow. ircII version 4.4 distributed with freebsd contained a remotely-exploitable buffer overflow in the /DCC CHAT command which allows remote users to execute arbitrary code as the client user.
3a268e8ea1fac6ad5e28d4025657105fbf8a8193d83f84cc0c60a9aad1ccb416FCHECK is a very stable PERL script written to generate and comparatively monitor a UNIX system against its baseline for any file alterations and report them through syslog, console, or any log monitoring interface. Monitoring events can be done in as little as one minute intervals if a system's drive space is small enough, making it very difficult to circumvent. This is a freely-available open-source alternative to 'tripwire' that is time tested, and is easier to configure and use.
fb3737c1c6d920726f78f8eb8ca0423876e061872907a6ac44797d57c526954dThe Linux Intrusion Detection System is a patch which enhances the kernel's security. When it's in effect, many system administration operations can be made impossible even for root. You can turn the security protection on or off online and you can hide sensitive processes and prevent anyone from using ptrace or any other capability on your system. LIDS can also provide raw device and I/O access protection.
9c166e8e0e5a58a0ffeced7658dc95d44db9df2a1fcd671edd9e3bd9a7844608Nessus is a free, up-to-date, and full featured remote security scanner for Linux, BSD, Solaris and some other systems. It is multithreaded, plugin-based, has a nice GTK interface, and currently performs over 330 remote security checks. It has powerful reporting capabilities (HTML, LaTeX, ASCII text) and not only points out problems, but suggests a solution for each of them.
bbc6b6399ce467317ea2045424a9d6b509589fee84d5a1cf3ffdba50107e3b98Nmap is an advanced utility for network exploration or security auditing. It supports ping scanning, many port scanning techniques, TCP/IP fingerprinting (remote OS detection), advanced host enumeration, firewall bypassing, flexible target and port specification, decoy scanning, determination of TCP sequence predictability characteristics, sunRPC scanning, reverse-identd scanning, and more.
cff8ac72e75f90ed079f81104b7046b98eff7dceb7e5a40234d05d0541339b48An encrypt/decrypt utility. Nice&easy interface and strong encryption methods.
0c7a050f3892c9e16e459c9e6e62f57b7b0dfb7240c7560f4e8f67b30f64a38aDatapool v2.1 combines 82 dos attacks into one script. Features logging, port rance specification, continous attack option, miltiple IP addresses, and looping attack of multiple IPs. Includes sources of almost all attacks used.
bb70eb01c7c05bf69a77ac32527662ac4f02cad77ee8253d0db74cf093f2dabfidentscan.c is a port scanner with identd lookup, to find the UID that each remote service is running under.
5a5939479da9aeb9dba6f180b8420fbce981b280585ed177d171d87030487ebfkillwin.c - winnuke idea, modifcation for me ONLY - napster
24f05493ff734720c99c65884c58e431fc48c6270d9cc663bcf92c323b6100f7Nestea 2 - Improved version of nestea.
bd1ba5d143c9416d9a483b4e84f86b9c5a784b19c269c5f4f77e67e342ca2668Introduction to Internetworking - Inspired by a cisco class, here is some information on how todays high bandwidth network connections work, and how packets get to thier destination.
29b07499f57834b8f70bffe236a18e54dbbd16837d027f4ab7be055c8a29db74Documentation on possibilities to freeze/deny service to applications and daemons via reading devices on unix/windows based operating systems. (unix note: most of these device calls don't require root, on most dists) Includes some sample html for crashing browsers through file:// links.
d7c8deedc35391eaa333c07710195642bccfa5468ade29076a0bcabc58fa637cLocal buffer overflow exploit for Yapp Conferencing System, Version 2.2.
42a69224ad18bfe0ffd84ecdd97d200a20ddcee417e83cc22a0f5d94706017aeEtherape is an etherman clone which displays network activity graphically. Active hosts are shown as circles of varying size, and traffic among them is shown as lines of varying width. It is GNOME and pcap based.
139ede74780f763639c3e4c17e79775166a928120fafb3c52374277758d1d850dsniff is a suite of utilities that are useful for penetration testing. It consists of the following programs: arpredirect intercepts packets from a target host on the LAN intended for another host on the LAN by forging ARP replies. findgw determines the local gateway of an unknown network via passive sniffing. macof floods the local network with random MAC addresses. tcpkill kills specified in-progress TCP connections. dsniff is a simple password sniffer which handles many protocols. mailsnarf outputs all messages sniffed from SMTP traffic in Berkeley mbox format. webspy sends URLs sniffed from a client to your local Netscape browser for display, updated in real-time.
52ba277dacb74c072066d3c2127476355fb36af015fc50f685a3fc540d94ddb2
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed