Network Monitoring with Dsniff - This is a practical step by step guide showing how to use Dsniff, MRTG, IP Flow Meter, Tcpdump, NTOP, and Ngrep, and others. It also provides a discussion of how and why we should monitor network traffic.
9c2b884ee4bcdcc32d56cc19e52a212209a75a7a2538c9e712a8aa90c1552e76Encrypted Tunnels using SSH and MindTerm - This paper will discuss using Secure Shell (SSH) and MindTerm to secure organizational communication across the Internet. Easy to setup and reliable software need to be used in order to allow the inexperienced users the ability to quickly establish secure communication channels.
2292de3b07ab295d605e82686f4cf1ebd42618ae5f4567c685d501d01d490d35CERT Quarterly Summary for May, 2001. Since the last regularly scheduled CERT summary, issued in February 2001 (CS-2001-01), we have seen a significant increase in reconnaissance activity, a number of self-propagating worms, and active exploitation of vulnerabilities in snmpxdmid, BIND and IIS by intruders.
4a4c69c74f9f9dfbf99e62d106c6b336a191d5792a093ca4b01aa1079a25f3c2Cool2 is a perl script which checks a list of hosts for IIS servers which are vulnerable to the decode bug and the old unicode bug.
992e799ee26d6aaa457432a5be7c3db3479c2f5ed9f94b41f92878e2fb8ebdd8Securax Security Advisory #20 - The 1st Up Mail Server version 4.1.6a and below contains a remote denial of service vulnerability. Fix available here.
c9d3d44add8e60cf5afe922404991f19df0341b12c9296a9ea83fa9b2c70ae33SF (securefiles) is a local intrusion detection system (IDS) which will get the hashes for the specified files and create a database which is then then it is encrypted with AES. The executable checks itself, and a phrase is displayed (we select it on the installation) every time the program run successfully.
3149931855b0aa87c4b6852889675d677b6c52f94dc9e41de421798f404d911aOmnised.pl is an exploit for Omnihttpd v2.08 for Windows 98/me/nt/2000 which lets you dump the source of php perl and other files to a txt file. These files may contain passwords.
9276193adbdd9b969f90b2323644d613d1e30a9bebe9d41fa67790946031064bMacromedia Decryptor is a utility which decrypts the the website password stored in the registry by all the macromedia dreamweaver (tested on ultradev 3 and 4).
4d4eb49d6ba91d765372afe0e5568d6f750dd5f0ed3a423f5fbcb2e90164d379Local vulnerability in Solaris mailtool(1) - /usr/openwin/bin/mailtool on Solaris 8 (x86 and sparc) contains a local buffer overflow vulnerability. By specifying a long environment buffer containing machine executable code, it is possible to execute arbitrary command(s) as gid mail.
28123a605ca63233f3753280128acfc9dae8cb526852a55c509794079049a661Lcrzoex is a toolbox for network administrators and network hackers. Lcrzoex contains over 200 functionalities using network library lcrzo. For example, one can use it to sniff, spoof, create clients/servers, create decode and display packets, etc. The Ethernet, IP, UDP, TCP, ICMP, ARP and RARP protocols are supported. Lcrzoex and lcrzo were successfully installed under Linux, FreeBSD and Solaris. This archive contains Lcrzo and Lcrzoex.
08571b697c35febfb97344a8d42357253a3fc6c3d40e124d6e65099e4f68ba05Decrypts Fortress 101 2.51 or 3.0 passwords from the fset (2.51) or the default.fg3 (3.0).
819da6c65b969157a629ecc784140fe0fe1792fb306f099e7ee9ab0e58f78431Bdgen generates temp passwords for Fortres 101.
ebd378d05bfe0170073c32b824e49f305ad8f009ceca8492fce760424e671ecaBrutal.pl v0.5 is a perl program that will try to get valid accounts on the remote server using a POP3 brute force method thru wordlist files.
7cda4f6da32eeb905bde37a7b6ed50f90c7dc2c7841db77b72dc9dbed6f745bfLdistfp is an identd fingerprinting tool which works well with all Linux and most *BSD hosts that have their auth service running.
2a08fdfb2ef25619d4dea35c00c18c685ae1ce253062aac1ea47fecf74f5383eTcsh-bofh is a patch to provide true BOFH log functions to tcsh 6.10. Features the ability to log all commands to syslog.
9a430fbdd06f07dddf076ade9186d519ba356273ad7bdb3d82ea6e4f6ab4ff3dBash-bofh is a patch to provide true BOFH log functions to bash 2.05. Features the ability to log all commands to syslog.
88fadfee33ae4d400518edde9f3e7d4ecc31a9e24905944ada156fc4cfdf76d4Xintruder is a utility for cracking password protected Windows 95/98/ME shares. xIntruder exploits vulnerability in SMB implementation on these operating systems, which allows for very effective collection of passwords (any password in local network less than one minute, in the internet less than 10 minutes), originally discovered by www.nsfocus.com. xIntruder was created in the development possess of the project xSHaReZ 2 and is recommended to be used in conjunction with xSHaReZ 2. Tested on Windows 95/98/NT/2000.
49c9392823e6ff9d0e8537adaf4c50d9814b364b986186fae0bac417d3b7a316Og-Brute is a perl package to brute force pop3 and ftp account passwords and probe smtp for valid logins with wingate support.
3d8556641b28804c415bb096bac918f0b0d135a0ed4a6efa0e2d0c555d36fdb7Tyrone is a difficult to trace DoS tool for Linux which uses Back Orifice servers.
a681fc113a8a1846f8afc61b05d832a7392968c7ec8999f6404693bd5e02ebccThe Linux Intrusion Detection System is a patch which enhances the kernel's security. When it's in effect, many system administration operations can be made impossible even for root. You can turn the security protection on or off on the fly and you can hide sensitive processes and prevent anyone from using ptrace or any other capability on your system. LIDS can also provide raw device and I/O access protection. LIDS FAQ available here.
2a2630b8d0ab5101fb7173cc11f937ba8d4ca96414efde327e0bdee62d6c9a0a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed