< Back to JetLib.com

jetlib.sec » Packet Storm Security Tools

« Expand/Collapse

Packet Storm Security Tools

Skip to page: 1 2 3 4

February 21, 2012
18:11
Red Hat Security Advisory 2012-0324-01
» ‎ Packet Storm Security Tools

Red Hat Security Advisory 2012-0324-01 - The libxml2 library is a development toolbox providing the implementation of various XML standards. It was found that the hashing routine used by libxml2 arrays was susceptible to predictable hash collisions. Sending a specially-crafted message to an XML service could result in longer processing time, which could lead to a denial of service. To mitigate this issue, randomization has been added to the hashing function to reduce the chance of an attacker successfully causing intentional collisions. All users of libxml2 are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. The desktop must be restarted for this update to take effect.
Tags: hat red libxml red-hat-security development-toolbox denial-of-service
4:12
Nmap Iptables Shell Script
» ‎ Packet Storm Security Tools

This is a shell script that launches iptables to add rules that will flag various types of nmap scans.
Tags: nmap shell script nmap-scans shell-script
February 18, 2012
8:17
r00t 4 LFI Toolkit
» ‎ Packet Storm Security Tools

This tool is a php script that assists in performing local file inclusion attacks.
Tags: tool toolkit lfi php-script inclusion
8:13
1337 Multiple CMS Scanner Online
» ‎ Packet Storm Security Tools

This tool is a php script that assists in finding vulnerable components in multiple CMS systems.
Tags: multiple scanner cms cms-systems php-script
8:02
360-FAAR Firewall Analysis Audit And Repair 0.1.3
» ‎ Packet Storm Security Tools

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.
Tags: faar analysis firewall manipulation-tool dbedit logs
February 17, 2012
19:19
Multi Threaded TCP Port Scanner 4.0
» ‎ Packet Storm Security Tools

This is a basic TCP SYN scanner that is multi-threaded.
Tags: tcp multi scanner port-scanner
February 15, 2012
19:50
Hydra Network Logon Cracker 7.2
» ‎ Packet Storm Security Tools

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
Tags: logon network hydra cisco-aaa socks pcnfs network-logon vnc
9:22
360-FAAR Firewall Analysis Audit And Repair
» ‎ Packet Storm Security Tools

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.
Tags: faar analysis firewall manipulation-tool dbedit logs
February 13, 2012
16:44
AdSuck DNS Server 2.4.2
» ‎ Packet Storm Security Tools

Adsuck is a small DNS server that spoofs blacklisted addresses and forwards all other queries. The idea is to be able to prevent connections to undesirable sites such as ad servers, crawlers, etc. It can be used locally, for the road warrior, or on the network perimeter in order to protect local machines from malicious sites.
Tags: server adsuck dns network-perimeter dns-server road-warrior
February 12, 2012
18:36
Bluelog Bluetooth Scanner/Logger 1.0.2
» ‎ Packet Storm Security Tools

Bluelog is a Bluetooth scanner/logger written with speed in mind. It is intended to be used as a site survey tool, concerned more about accurately detecting the number of discoverable Bluetooth devices than individual device specifics. Bluelog also includes the unique "Bluelog Live" mode, which puts discovered devices into a constantly updating live webpage which you can serve up with your HTTP daemon of choice.
Tags: bluetooth scanner bluelog bluetooth-devices survey-tool site-survey
8:37
Codetective Analysis Tool
» ‎ Packet Storm Security Tools

Codetective is a simple tool to determine the crypto/encoding algorithm used according to traces of its representation. Written in Python.
Tags: codetective analysis tool encoding-algorithm analysis-tool python
February 10, 2012
14:09
Creepy Geolocation Gathering Tool 0.1.95
» ‎ Packet Storm Security Tools

creepy is an application that allows you to gather geolocation related information about users from social networking platforms and image hosting services. The information is presented in a map inside the application where all the retrieved data is shown, accompanied with relevant information (i.e. what was posted from that specific location) to provide context to the presentation.
Tags: geolocation creepy information networking-platforms image-hosting-services social-networking
February 08, 2012
14:29
Haveged 1.4
» ‎ Packet Storm Security Tools

haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
Tags: algorithm haveged bit irisa expansion-algorithm random-pool test-targets
14:19
trixd00r 0.0.1
» ‎ Packet Storm Security Tools

trixd00r is an advanced and invisible userland backdoor based on TCP/IP for UNIX systems. It consists of a server and a client. The server sits and waits for magic packets using a sniffer. If a magic packet arrives, it will bind a shell over TCP or UDP on the given port or connecting back to the client again over TCP or UDP. The client is used to send magic packets to trigger the server and get a shell.
Tags: tcp server client magic-packets magic-packet unix-systems
14:12
Viper FakeUpdate Script
» ‎ Packet Storm Security Tools

This is a simple script to spawn dns spoofing, arp spoofing, a fake update page for Windows and a backdoored executable on a webserver to cause the Windows box to connect back. Requires Metasploit.
Tags: viper script windows arp-spoofing windows-box
February 07, 2012
15:17
Fake POP3 Daemon
» ‎ Packet Storm Security Tools

This is a compact fake pop3 daemon that logs password attacks.
Tags: pop3-daemon logs
15:12
Another File Integrity Checker 2.20
» ‎ Packet Storm Security Tools

afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. It works by first creating a database that represents a snapshot of the most essential parts of your computer system. Then a user can run the script to discover all modifications made since the snapshot was taken (i.e. files added, changed, or removed). The configuration syntax is very close to that of aide or tripwire, and a graphical interface is provided.
Tags: integrity-checker configuration-syntax windows-platforms
15:08
Whitewash 2.0
» ‎ Packet Storm Security Tools

The Whitewash module allows Ruby programs to clean up any HTML document or fragment coming from an untrusted source and to remove all dangerous constructs that could be used for cross-site scripting or request forgery. All HTML tags, attribute names and values, and CSS properties are filtered through a whitelist that defines which names and what kinds of values are allowed; everything that doesn't match the whitelist is removed. The whitelist is provided externally, and the default whitelist is loaded from the whitelist.yaml shipped with Whitewash. The default is the most strict (for example, it does not allow cross-site links to images in IMG tags) and can be considered safe for all uses.
Tags: untrusted-source cross-site-scripting whitelist
February 06, 2012
3:11
IP-Link 0.2
» ‎ Packet Storm Security Tools

The goal of IP-Link is to show the relationships between different IP addresses from network traffic capture, thus quickly determining for a given address the IP address with which it communicates the most.
Tags: goal ip-link address network-traffic ip-addresses ip-address
February 04, 2012
16:44
Viper Network Sniffer Script
» ‎ Packet Storm Security Tools

This is a bash script to use in conjunction with Backtrack that simplifies the spawning of various sniffers.
Tags: network viper script bash-script network-sniffer sniffers
February 03, 2012
15:37
Port Tester 0.1
» ‎ Packet Storm Security Tools

This is a simple little port scanning script written in python.
Tags: script tester port port-scanning python
February 02, 2012
18:53
Dradis Information Sharing Tool 2.9.0
» ‎ Packet Storm Security Tools

dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of information is essential to avoid duplication of efforts.
Tags: dradis tool information sharing-tool tool-2 different-stages
February 01, 2012
18:03
WeBaCoo (Web Backdoor Cookie) 0.2.2
» ‎ Packet Storm Security Tools

WeBaCoo (Web Backdoor Cookie) is a web backdoor script-kit, aiming to provide a stealth terminal-like connection over HTTP between client and web server. It is a post exploitation tool capable to maintain access to a compromised web server. WeBaCoo was designed to operate under the radar of modern up-to-dated AV, NIDS, IPS, Network Firewalls and Application Firewalls, proving a stealth mechanism to execute system commands to the compromised server. The obfuscated communication is accomplished using HTTP header's Cookie fields under valid client HTTP requests and relative web server's responses.
Tags: webacoo server web network-firewalls relative-web nids
January 31, 2012
19:49
Bluelog Bluetooth Scanner/Logger 1.0.1
» ‎ Packet Storm Security Tools

Bluelog is a Bluetooth scanner/logger written with speed in mind. It is intended to be used as a site survey tool, concerned more about accurately detecting the number of discoverable Bluetooth devices than individual device specifics. Bluelog also includes the unique "Bluelog Live" mode, which puts discovered devices into a constantly updating live webpage which you can serve up with your HTTP daemon of choice.
Tags: bluetooth scanner bluelog bluetooth-devices survey-tool site-survey
19:23
GNU Privacy Guard 1.4.12
» ‎ Packet Storm Security Tools

GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.
Tags: guard privacy gnu gnu-privacy-guard nai-inc digital-signatures
4:13
PgSql Brute Force
» ‎ Packet Storm Security Tools

This is a small application built to demo the weakness in pgsql and networking. It is capable of running login attempts from multiple threads in parallel and can run up to 1024 concurrent connections.
Tags: pgsql brute force login-attempts multiple-threads concurrent-connections
4:12
HTTP Brute Force
» ‎ Packet Storm Security Tools

This is a small application built to test the performance of a http authentication system using a lot of concurrent connections. It can also be used to try lots of password against a http server. It is capable of using up to 1024 (or more using multiple processes). However with this amount it is capable or reducing internet connections to a crawl and also greatly increasing the load on the server.
Tags: server http brute authentication-system concurrent-connections brute-force
January 29, 2012
21:44
Lightidra IRC Router Scanner
» ‎ Packet Storm Security Tools

Lightaidra is an IRC commanded tool that allows for scanning and exploiting routers. It also performs flooding.
Tags: router lightidra irc irc-router scanner
10:11
Zorp Proxy Firewall Suite 3.9.3
» ‎ Packet Storm Security Tools

Zorp is a proxy firewall suite with its core architecture built around today's security demands. It uses application level proxies, is modular and component based, uses a script language to describe policy decisions, makes it possible to monitor encrypted traffic, lets you override client actions, and lets you protect your servers with its built in IDS capabilities.
Tags: firewall zorp proxy proxy-firewall core-architecture policy-decisions
January 28, 2012
5:22
FatCat SQL Injector
» ‎ Packet Storm Security Tools

This is an automatic SQL Injection tool called FatCat. It has features that help you to extract the database information, table information, and column information from a web application.
Tags: sql fatcat information sql-injection information-table web-application
January 27, 2012
16:39
Dark D0rk3r 0.5
» ‎ Packet Storm Security Tools

Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors.
Tags: script dark python python-script sql-injection inclusion
January 25, 2012
15:50
p0f 3.03b Windows Port
» ‎ Packet Storm Security Tools

P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP).
Tags: tool port windows windows-port application-level codebase
15:24
Mobius Forensic Toolkit 0.5.11
» ‎ Packet Storm Security Tools

Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.
Tags: mobius forensic toolkit python-gtk abstract-interface
January 24, 2012
9:12
Dark D0rk3r 0.4
» ‎ Packet Storm Security Tools

Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors.
Tags: python-script sql-injection inclusion
January 23, 2012
21:03
OpenDNSSEC 1.3.5
» ‎ Packet Storm Security Tools

OpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
Tags: opendnssec security domain domain-name-system-security security-extensions domain-name-system
20:30
MagicHash Collision Testing Tool
» ‎ Packet Storm Security Tools

PostTest is a jar file that will send POST requests to servers in order to test for the hash collision vulnerability discussed at the Chaos Communication Congress in Berlin.
Tags: testing collision magichash berlin chaos-communication-congress hash-collision posttest
January 22, 2012
16:43
IPT_PKD Iptables Port Knocking Detection 1.10
» ‎ Packet Storm Security Tools

ipt_pkd is an iptables extension implementing port knock detection with SPA (single packet authorization). This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent.
Tags: packet pkd ipt kernel-module random-port
16:24
Dark D0rk3r 0.3
» ‎ Packet Storm Security Tools

Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors.
Tags: script dark python python-script sql-injection inclusion
January 21, 2012
9:54
Dark D0rk3r 0.2
» ‎ Packet Storm Security Tools

Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors.
Tags: script dark python python-script sql-injection inclusion
January 20, 2012
20:59
Suricata IDPE 1.2.1
» ‎ Packet Storm Security Tools

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
Tags: suricata barnyard engine network-intrusion-detection security-foundation
20:46
Small Python Backdoor
» ‎ Packet Storm Security Tools

This is a very small backdoor written in Python.
Tags: small python backdoor
20:30
Dark D0rk3r 0.1
» ‎ Packet Storm Security Tools

Dark D0rk3r is a python script that performs dork searching and searches for SQL injection errors.
Tags: script dark python python-script
January 19, 2012
15:52
Suricata IDPE 1.2
» ‎ Packet Storm Security Tools

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
Tags: suricata barnyard engine network-intrusion-detection security-foundation
15:43
MySQL Brute Force Tool
» ‎ Packet Storm Security Tools

This is a small MySQL cracking tool capable of running login attempts from multiple threads in parallel. It is capable of 1024 concurrent connections.
Tags: tool brute mysql brute-force-tool login-attempts multiple-threads
15:24
WOL-E Wake On LAN Hacking Toolset 1.0
» ‎ Packet Storm Security Tools

WOL-E is a suite of tools for the Wake on LAN feature of network attached computers, this is now enabled by default on many Apple computers. These tools include bruteforcing the MAC address to wake up clients, sniffing WOL attempts and passwords, scanning for Apple devices and more.
Tags: wake apple wol-e mac lan lan-hacking apple-computers wol mac-address
January 18, 2012
8:14
Distributed Access Control System 1.4.27
» ‎ Packet Storm Security Tools

DACS is a light-weight single sign-on and role-based access control system providing flexible, modular authentication methods and powerful, transparent rule-based authorization checking for Web services, CGI programs, or virtually any program.
Tags: control system access role-based-access-control access-control-system authentication-methods
January 17, 2012
16:24
UniOFuzz Universal Fuzzer Tool
» ‎ Packet Storm Security Tools

UniOFuzz is a universal fuzzing tool for browsers, web services, files, programs and network services/ports.
Tags: uniofuzz universal tool ports
8:13
OATH Toolkit 1.10.5
» ‎ Packet Storm Security Tools

OATH Toolkit attempts to collect several tools that are useful when deploying technologies related to OATH, such as HOTP one-time passwords. It is a fork of the earlier HOTP Toolkit.
Tags: hotp oath toolkit time-passwords attempts
January 16, 2012
17:21
P0f 3.0.0b
» ‎ Packet Storm Security Tools

P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP).
Tags: array tool traffic application-level codebase tcp-ip
16:59
TCP Fast Scan
» ‎ Packet Storm Security Tools

This is a very fast TCP port scanner for Linux that can scan multiple hosts and ports at once.
Tags: tcp scan fast port-scanner ports hosts
16:57
POP3 Password Brute Forcer
» ‎ Packet Storm Security Tools

A small application built to test the performance of a pop3 authentication system using a lot of concurrent connections. It can also be used to try lots of password against a pop3 server. It is capable of using up to 1024 sessions (or more using multiple processes). However with this amount it is capable of reducing internet connections to a crawl and also greatly increasing the load on the server.
Tags: pop server password brute-forcer pop3-authentication authentication-system
16:53
Fake sshd Tool
» ‎ Packet Storm Security Tools

This is a fake sshd which can be used to log common login attempts which are typically used by scammers / spammers / script kiddies to attempt to gain access to servers. It does not modify OpenSSH and uses libssh instead. There is no valid way to login to a shell, can be used to tarpit / delay attackers and can be used to steal the entries used in a dictionary attack.
Tags: sshd login fake script-kiddies login-attempts dictionary-attack
16:51
ICMP Ping Sweep
» ‎ Packet Storm Security Tools

This is a simple ICMP ping sweeping tool that takes in a range of IP addresses.
Tags: ping sweep icmp ping-sweep ip-addresses icmp-ping
January 15, 2012
19:01
Xplico Network Forensic Analysis Tool 0.7.1
» ‎ Packet Storm Security Tools

Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams, etc. This is the version that has a GUI allowing you to view photos, texts and videos contained in MMS messages.
Tags: forensic network xplico forensic-analysis source-network analysis-tool
18:40
Exploit Next Generation SQL Fingerprint 1.12.120115/RC0
» ‎ Packet Storm Security Tools

The Exploit Next Generation® SQL Fingerprint tool uses well-known techniques based on several public tools capable of identifying the Microsoft SQL Server version (such as: SQLping and SQLver), but, instead of showing only the "raw version" (i.e., Microsoft SQL Version 10.00.2746), the Exploit Next Generation® SQL Fingerprint shows the mapped Microsoft SQL Server version (i.e., Microsoft SQL 2008 SP1 (CU5)).
Tags: version microsoft sql sql-server-version microsoft-sql-server public-tools
17:11
Priv8 2012 Bypass Shell
» ‎ Packet Storm Security Tools

This is a php shell that offers various connect-back methods, the ability to read files, grab source, execute code, etc.
Tags: priv shell bypass php-shell
4:44
Ban Facebook SSL Script 1.0
» ‎ Packet Storm Security Tools

This tool pulls down all netblocks for Facebook and block access to the site via IPTables.
Tags: facebook ban ssl
January 10, 2012
22:55
AdSuck DNS Server 2.4.1
» ‎ Packet Storm Security Tools

adsuck is a small DNS server that spoofs blacklisted addresses and forwards all other queries. The idea is to be able to prevent connections to undesirable sites such as ad servers, crawlers, etc. It can be used locally, for the road warrior, or on the network perimeter in order to protect local machines from malicious sites.
Tags: server adsuck dns network-perimeter dns-server road-warrior
January 09, 2012
20:44
P0f 3.0.0 Release Candidate 1
» ‎ Packet Storm Security Tools

P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP).
Tags: tool candidate Release application-level codebase tcp-ip
14:24
Cisco Template Manager 0.3.2
» ‎ Packet Storm Security Tools

Cisco Template Manager (CTM) is a set of tools that make it easy to manage Cisco configurations over a whole network based on your self-defined templates. Templates support regular expressions. It works with the C760x, C730x, C37xx, C35xx, C29xx, C28xx, C18xx, and C17xx series.
Tags: ctm set manager cisco-template cisco regular-expressions
14:21
Mandos Encrypted File System Unattended Reboot Utility 1.5.2
» ‎ Packet Storm Security Tools

The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
Tags: system server file openpgp-key encrypted-file-system ram-disk
January 06, 2012
16:31
OpenSSL Toolkit 1.0.0f
» ‎ Packet Storm Security Tools

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.
Tags: openssl toolkit layer openssl-toolkit transport-layer-security secure-sockets-layer
January 05, 2012
16:23
Linux IPTables Firewall 1.4.12.2
» ‎ Packet Storm Security Tools

iptables is built on top of netfilter, the packet alteration framework for Linux 2.4.x and 2.6.x. It is a major rewrite of its predecessor ipchains, and is used to control packet filtering, Network Address Translation (masquerading, portforwarding, transparent proxying), and special effects such as packet mangling.
Tags: packet iptables linux network-address-translation iptables-firewall transparent-proxying
16:22
WiRouter KeyRec 1.1.1
» ‎ Packet Storm Security Tools

WiRouter KeyRec is a powerful and platform independent piece of software that recovers the default WPA passphrases of the supported router's models (Telecom Italia Alice AGPF, Fastweb Pirelli, Fastweb Tesley).
Tags: keyrec wirouter fastweb alice-agpf telecom-italia-alice independent-piece
16:19
Conntrack Tools 1.0.1
» ‎ Packet Storm Security Tools

conntrack-tools is a set of userspace tools for Linux that allow system administrators to interact with the Connection Tracking System, the module which provides stateful packet inspection for iptables. It includes the userspace daemon conntrackd and the commandline interface conntrack.
Tags: userspace conntrack system commandline-interface packet-inspection iptables
16:15
Stev.Org Sniffer
» ‎ Packet Storm Security Tools

This sniffer has an ncurses user interface, network statics for many different protocols, a view into active TCP connections, UDP packets, ICMP packets, and more.
Tags: stev sniffer org tcp-connections statics user-interface
January 04, 2012
13:20
S.S.T Javascript Keylogger
» ‎ Packet Storm Security Tools

S.S.T (Save Typed Text) javascript proof of concept keylogging code.
Tags: keylogger typed text s.s.t-javascript s.s.t proof-of-concept text-javascript
January 03, 2012
8:22
Peta Zetas IDS Testing Tool
» ‎ Packet Storm Security Tools

PZIDS (Peta Zetas IDS) is a tool to test if your IDS is detecting threats properly. Written in Python.
Tags: testing tool ids peta-zetas zetas testing-tool peta
January 02, 2012
15:22
Fwknop Port Knocking Utility 2.0
» ‎ Packet Storm Security Tools

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
Tags: authorization fwknop port target-system authorization-scheme ssh
7:23
Log2Command 1.0
» ‎ Packet Storm Security Tools

log2command is a PHP script that tracks IPs in log files and executes shell commands per each IP. log2command was created as a sort of reverse fail2ban or cheap VPN-firewall: a machine with a closed firewall can be told, by a foreign machine, to accept connections from a specific IP. log2command then keeps track of the webserver log file and watches for inactivity from the user's IP. After an amount of time another command is executed that can remove the user's IP from the firewall, closing down the machine again. The PHP script is a command-line program that can be run in the background.
Tags: machine log command vpn-firewall shell-commands php-script
January 01, 2012
9:33
KBeast (Kernel Beast) Linux Rootkit 2012
» ‎ Packet Storm Security Tools

KBeast (Kernel Beast) 2012 is a Linux rootkit that hides the loadable kernel module, hides files and directories, hides processes, hides sockets and connections, performs keystroke logging, has anti-kill functionality and more.
Tags: kbeast kernel beast kernel-module linux-rootkit sockets
December 31, 2011
6:22
OWASP Mantra Armada 0.81 Beta
» ‎ Packet Storm Security Tools

OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the platform independent release.
Tags: web mantra source beta owasp web-application-developers open-source-tools penetration-testers
December 30, 2011
7:37
Reaver-WPS 1.1
» ‎ Packet Storm Security Tools

Reaver implements a brute force attack against Wifi Protected Setup (WPS) registrar PINs in order to recover WPA/WPA2 passphrases. Reaver has been designed to be a robust and practical attack against WPS, and has been tested against a wide variety of access points and WPS implementations. On average Reaver will recover the target AP's plain text WPA/WPA2 passphrase in 4-10 hours, depending on the AP. In practice, it will generally take half this time to guess the correct WPS pin and recover the passphrase.
Tags: reaver wps wpa wpa-wpa2 brute-force-attack passphrase
December 29, 2011
7:08
Reaver-WPS 1.0
» ‎ Packet Storm Security Tools

Reaver implements a brute force attack against Wifi Protected Setup (WPS) registrar PINs in order to recover WPA/WPA2 passphrases. Reaver has been designed to be a robust and practical attack against WPS, and has been tested against a wide variety of access points and WPS implementations. On average Reaver will recover the target AP's plain text WPA/WPA2 passphrase in 4-10 hours, depending on the AP. In practice, it will generally take half this time to guess the correct WPS pin and recover the passphrase.
Tags: reaver wps wpa wpa-wpa2 brute-force-attack passphrase
7:04
Patator Brute Forcer 0.3
» ‎ Packet Storm Security Tools

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage. When Medusa, Hydra or other brute-force tools fail to do what you want, Patator might be what you need.
Tags: patator brute forcer brute-force-tools brute-forcer flexible-usage
6:59
Pound Reverse HTTP Proxy 2.6
» ‎ Packet Storm Security Tools

Pound is a reverse HTTP proxy, load balancer, and SSL wrapper. It proxies client HTTPS requests to HTTP backend servers, distributes the requests among several servers while keeping sessions, supports HTTP/1.1 requests even if the backend server(s) are HTTP/1.0, and sanitizes requests.
Tags: http pound proxy backend-servers load-balancer proxies
December 27, 2011
9:47
GNUnet P2P Framework 0.9.1
» ‎ Packet Storm Security Tools

GNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP (IPv4 and IPv6), TCP (IPv4 and IPv6), HTTP, or SMTP messages. GNUnet supports accounting to provide contributing nodes with better service. The primary service build on top of the framework is anonymous file sharing.
Tags: framework gnunet ipv p-framework smtp-messages abstraction-layer ipv4-and-ipv6
9:45
Tor-ramdisk i686 UClibc-based Linux Distribution x86_64 20111225
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86_64 version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key virtual-tunnels tor-operator
9:44
Tor-ramdisk i686 UClibc-based Linux Distribution x86 20111225
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86 version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key virtual-tunnels tor-operator
9:43
Tor-ramdisk i686 UClibc-based Linux Distribution MIPS 20111225
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. MIPS version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key mips-version virtual-tunnels
9:28
NIELD (Network Interface Events Logging Daemon) 0.21
» ‎ Packet Storm Security Tools

Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules.
Tags: network logging interface interface-events network-interface ndp
December 26, 2011
7:34
Lynis Auditing Tool 1.3.0
» ‎ Packet Storm Security Tools

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
Tags: lynis tool Software unix-specialists auditing-software software-patch
December 23, 2011
22:47
Packet Fence 3.1.0
» ‎ Packet Storm Security Tools

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
Tags: network packetfence packet large-heterogeneous-networks nac-system network-access-control
22:46
Firewall Builder With GUI 5.0.1.3592
» ‎ Packet Storm Security Tools

Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
Tags: policy firewall gui cisco-pix drop-operations abstract-model
December 22, 2011
11:41
Google Hack DB Tool 1.5
» ‎ Packet Storm Security Tools

Google Hack DB Tool is a database tool with almost 8,000 entries. It allows administrators the ability to check their site for vulnerabilities based on data stored in Google.
Tags: google hack tool database-tool tool-1
December 21, 2011
13:59
Mobius Forensic Toolkit 0.5.10
» ‎ Packet Storm Security Tools

Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.
Tags: mobius forensic toolkit python-gtk abstract-interface
December 20, 2011
12:26
NiX API Script
» ‎ Packet Storm Security Tools

NiX API is a powerful anti-proxy, anti-fraud, and IP reputation lookup API. It uses the NiX database at cli.nixapi.com to determine IP country/region/city, data center details, satellite provider details, open proxy details, and Tor network association.
Tags: script api nix tor satellite-provider provider-details fraud
8:42
Bluelog Bluetooth Scanner/Logger 1.0.0
» ‎ Packet Storm Security Tools

Bluelog is a Bluetooth scanner/logger written with speed in mind. It is intended to be used as a site survey tool, concerned more about accurately detecting the number of discoverable Bluetooth devices than individual device specifics. Bluelog also includes the unique "Bluelog Live" mode, which puts discovered devices into a constantly updating live webpage which you can serve up with your HTTP daemon of choice.
Tags: bluetooth scanner bluelog bluetooth-devices survey-tool site-survey
December 19, 2011
15:01
WeBaCoo (Web Backdoor Cookie) 0.2
» ‎ Packet Storm Security Tools

WeBaCoo (Web Backdoor Cookie) is a web backdoor script-kit, aiming to provide a stealth terminal-like connection over HTTP between client and web server. It is a post exploitation tool capable to maintain access to a compromised web server. WeBaCoo was designed to operate under the radar of modern up-to-dated AV, NIDS, IPS, Network Firewalls and Application Firewalls, proving a stealth mechanism to execute system commands to the compromised server. The obfuscated communication is accomplished using HTTP header's Cookie fields under valid client HTTP requests and relative web server's responses.
Tags: webacoo server web network-firewalls relative-web nids
December 18, 2011
18:25
John The Ripper 1.7.9 Jumbo 5
» ‎ Packet Storm Security Tools

John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes. On top of this, many other hash types are added with contributed patches, and some are added in John the Ripper Pro.
Tags: password ripper unix john unix-passwords password-cracker flavors
13:42
TOR Virtual Network Tunneling Tool 0.2.2.35
» ‎ Packet Storm Security Tools

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
Tags: internet privacy network tor-virtual tor virtual-tunnels instant-messaging-services local-internet-service-providers
December 14, 2011
18:24
Fwknop Port Knocking Utility 2.0rc5
» ‎ Packet Storm Security Tools

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
Tags: authorization fwknop port target-system authorization-scheme ssh
December 09, 2011
16:34
OpenDNSSEC 1.3.4
» ‎ Packet Storm Security Tools

OpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
Tags: opendnssec security domain domain-name-system-security security-extensions domain-name-system
9:24
WeBaCoo (Web Backdoor Cookie) 0.1.2
» ‎ Packet Storm Security Tools

WeBaCoo (Web Backdoor Cookie) is a web backdoor script-kit, aiming to provide a stealth terminal-like connection over HTTP between client and web server. It is a post exploitation tool capable to maintain access to a compromised web server. WeBaCoo was designed to operate under the radar of modern up-to-dated AV, NIDS, IPS, Network Firewalls and Application Firewalls, proving a stealth mechanism to execute system commands to the compromised server. The obfuscated communication is accomplished using HTTP header's Cookie fields under valid client HTTP requests and relative web server's responses.
Tags: webacoo server web network-firewalls relative-web nids
December 07, 2011
20:11
Suricata IDPE 1.1.1
» ‎ Packet Storm Security Tools

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
Tags: suricata barnyard engine network-intrusion-detection security-foundation
14:15
Samhain File Integrity Checker 3.0.1
» ‎ Packet Storm Security Tools

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Tags: samhain server file system-integrity-checker client-server-application networked-hosts
8:18
Netbios Share Scanner 1.0
» ‎ Packet Storm Security Tools

This Python script is a tool that can be used to check windows workstations and servers if they have accessible shared resources.
Tags: share netbios scanner windows-workstations python-script
December 06, 2011
17:48
Ostinato Traffic Generator 0.5 Source Code
» ‎ Packet Storm Security Tools

Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. This is the source code release.
Tags: traffic generator ostinato source-code-release packet-traffic traffic-generator
17:47
Ostinato Traffic Generator 0.5 Windows Binary
» ‎ Packet Storm Security Tools

Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. This is the Windows binary release.
Tags: traffic generator ostinato packet-traffic traffic-generator
17:47
Ostinato Traffic Generator 0.5 Mac OS X
» ‎ Packet Storm Security Tools

Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. This is the Mac OS X release.
Tags: traffic wireshark generator mac-os ostinato mac-os-x packet-traffic traffic-generator
December 05, 2011
17:47
Ettercap Network Sniffer / Interceptor 0.7.4
» ‎ Packet Storm Security Tools

Ettercap is a network sniffer/interceptor/logger for ethernet LANs. It supports active and passive dissection of many protocols (even ciphered ones, like SSH and HTTPS). Data injection in an established connection and filtering on the fly is also possible, keeping the connection synchronized. Many sniffing modes were implemented to give you a powerful and complete sniffing suite. Plugins are supported. It has the ability to check whether you are in a switched LAN or not, and to use OS fingerprints (active or passive) to let you know the geometry of the LAN.
Tags: ettercap sniffer network lan network-sniffer interceptor dissection
December 04, 2011
14:35
Circumference WebAuth Client 1.5
» ‎ Packet Storm Security Tools

Circumference is a server-client-style implementation of a WebAuth client and server to supplement the WebAuth Diameter subprotocol, complete with an extensible Diameter server and base library. Diameter is a peer-to-peer authentication protocol as specified in RFC3588 and its updates.
Tags: webauth circumference diameter authentication-protocol base-library
December 02, 2011
17:06
Nixory Anti-Spyware Tool 1.2.4
» ‎ Packet Storm Security Tools

Nixory is an innovative, fast, and powerful anti-spyware program, with a user-friendly graphical interface. It protects Mozilla Firefox from dangerous spyware and harmful cookies. Platform independent source tarball.
Tags: spyware anti nixory graphical-interface source-tarball independent-source
16:48
HideMAC 1.2
» ‎ Packet Storm Security Tools

A MAC changing utility that uses both ifconfig and GNU-Macchanger (checks if mac changer exists, if not, uses ifconfig) to spoof ones MAC with a totally random value. Written in Python.
Tags: ifconfig hidemac utility mac random-value spoof python
December 01, 2011
7:37
CSRFScanner 1.0
» ‎ Packet Storm Security Tools

CSRFSCanner is a tool designed to identify the forms potentially vulnerable to CSRF/XSRF on a website. This detection is made on forms that are only accessible by logged-in users (cookies are needed to find these forms). The methodology used to identify these forms is the 4-pass reverse diff analysis. Then, in order to determine if a form may be vulnerable, the tool analyzes hidden and password fields to find an anti-CSRF token.
Tags: tool csrf csrfscanner password-fields methodology
7:33
XssScanner 1.1
» ‎ Packet Storm Security Tools

XssScanner is a tool designed to help penetration testers find cross site scripting vulnerabilities. It analyzes a webpage to determine which are the payloads that could be used according to the position of the parameter. Then, for each selected payload, XssScanner sends a request using the payload and checks the returned page to find the payload. The major feature of XssScanner is its ability to detect many encodings that do not change the behavior of the payload (eg: double quote encoded into ").
Tags: payload tool xssscanner penetration-testers payloads
November 30, 2011
17:05
GNUnet P2P Framework 0.9.0
» ‎ Packet Storm Security Tools

GNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP (IPv4 and IPv6), TCP (IPv4 and IPv6), HTTP, or SMTP messages. GNUnet supports accounting to provide contributing nodes with better service. The primary service build on top of the framework is anonymous file sharing.
Tags: framework gnunet ipv p-framework smtp-messages abstraction-layer ipv4-and-ipv6
16:47
XSSer Penetration Testing Tool 1.6-1
» ‎ Packet Storm Security Tools

XSSer is an open source penetration testing tool that automates the process of detecting and exploiting XSS injections against different applications. It contains several options to try to bypass certain filters, and various special techniques of code injection.
Tags: xsser testing penetration testing-tool tool-1
November 28, 2011
16:43
Vega Web Security Scanner 1.0 Beta Windows 64 Bit
» ‎ Packet Storm Security Tools

Vega is a GUI-based, multi-platform, free and open source web security scanner that can be used to find instances of SQL injection, cross-site scripting (XSS), and other vulnerabilities in your web applications. Vega also includes an intercepting proxy for interactive web application debugging. Vega attack modules are written in Javascript, users can easily modify them or write their own. This is the Windows 64-bit version.
Tags: web scanner security vega beta-windows vega-web interactive-web-application open-source-web javascript-users
16:40
Vega Web Security Scanner 1.0 Beta Windows 32 Bit
» ‎ Packet Storm Security Tools

Vega is a GUI-based, multi-platform, free and open source web security scanner that can be used to find instances of SQL injection, cross-site scripting (XSS), and other vulnerabilities in your web applications. Vega also includes an intercepting proxy for interactive web application debugging. Vega attack modules are written in Javascript, users can easily modify them or write their own. This is the Windows 32-bit version.
Tags: web scanner security vega beta-windows vega-web interactive-web-application open-source-web javascript-users
16:37
Vega Web Security Scanner 1.0 Beta Linux 64 Bit
» ‎ Packet Storm Security Tools

Vega is a GUI-based, multi-platform, free and open source web security scanner that can be used to find instances of SQL injection, cross-site scripting (XSS), and other vulnerabilities in your web applications. Vega also includes an intercepting proxy for interactive web application debugging. Vega attack modules are written in Javascript, users can easily modify them or write their own. This is the Linux 64-bit version.
Tags: web scanner security vega beta-linux vega-web interactive-web-application open-source-web javascript-users
16:34
Vega Web Security Scanner 1.0 Beta Linux 32 Bit
» ‎ Packet Storm Security Tools

Vega is a GUI-based, multi-platform, free and open source web security scanner that can be used to find instances of SQL injection, cross-site scripting (XSS), and other vulnerabilities in your web applications. Vega also includes an intercepting proxy for interactive web application debugging. Vega attack modules are written in Javascript, users can easily modify them or write their own. This is the Linux 32-bit version.
Tags: web scanner security vega beta-linux vega-web interactive-web-application open-source-web javascript-users
16:30
Vega Web Security Scanner 1.0 Beta Mac OS X 64 Bit
» ‎ Packet Storm Security Tools

Vega is a GUI-based, multi-platform, free and open source web security scanner that can be used to find instances of SQL injection, cross-site scripting (XSS), and other vulnerabilities in your web applications. Vega also includes an intercepting proxy for interactive web application debugging. Vega attack modules are written in Javascript, users can easily modify them or write their own. This is the Mac OS X 64-bit version.
Tags: web scanner security vega mac-os vega-web beta-mac-os interactive-web-application open-source-web mac-os-x
16:25
Vega Web Security Scanner 1.0 Beta Mac OS X 32 Bit
» ‎ Packet Storm Security Tools

Vega is a GUI-based, multi-platform, free and open source web security scanner that can be used to find instances of SQL injection, cross-site scripting (XSS), and other vulnerabilities in your web applications. Vega also includes an intercepting proxy for interactive web application debugging. Vega attack modules are written in Javascript, users can easily modify them or write their own. This is the Mac OS X 32-bit version.
Tags: web scanner security vega mac-os vega-web beta-mac-os interactive-web-application open-source-web mac-os-x
15:40
WordPress Security Scanner 1.1
» ‎ Packet Storm Security Tools

WordPress Security Scanner can perform username enumeration, weak password cracking, version / vulnerability / plugin enumeration, and more.
Tags: wordpress scanner security security-scanner vulnerability
November 27, 2011
10:12
Stunnel SSL Wrapper 4.48
» ‎ Packet Storm Security Tools

Stunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, NNTP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code.
Tags: stunnel wrapper ssl secure-sockets-layer ssl-wrapper tcp-connections
10:09
John The Ripper 1.7.9
» ‎ Packet Storm Security Tools

John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes. On top of this, many other hash types are added with contributed patches, and some are added in John the Ripper Pro.
Tags: password ripper unix john unix-passwords password-cracker flavors
9:57
ARP Toxin Cache Poisoner
» ‎ Packet Storm Security Tools

ARP Toxin is a simple Perl script designed to ARP poison a host on the LAN. It uses Nemesis as a packet crafting tool to create and send the ARP packets. It is NOT original code, merely a slightly improved version of the sample arpredirect script from the book "Hacking: The Art of Exploitation". This variant allows one to set their own poisoning interval and interface to poison on.
Tags: arp script toxin lan art perl-script
November 22, 2011
16:42
Tripwire 2.4.2
» ‎ Packet Storm Security Tools

Tripwire is a very popular system integrity checker, a utility that compares properties of designated files and directories against information stored in a previously generated database. Any changes to these files are flagged and logged, including those that were added or deleted, with optional email and pager reporting. Support files (databases, reports, etc.) are cryptographically signed.
Tags: tripwire integrity system system-integrity-checker email
November 21, 2011
17:22
Packet Fence 3.0.3
» ‎ Packet Storm Security Tools

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
Tags: network packetfence packet large-heterogeneous-networks nac-system network-access-control
November 20, 2011
17:11
Traceroute-Like HTTP Scanner
» ‎ Packet Storm Security Tools

This is a python script that uses the Max-Forwards header in HTTP and SIP to perform a traceroute-like scanning functionality.
Tags: traceroute http scanner max-forwards python-script forwards
November 18, 2011
20:04
rtspFUZZ 0.1
» ‎ Packet Storm Security Tools

rtspFUZZ is a real time streaming protocol server fuzzer. It uses 6 basic crafting techniques OPTIONS,DESCRIBE,SETUP,PLAY,GET_PARAMETER,TEARDOWN,PAUSE etc rtsp commands and 9 advanced crafting techniques to test any target application. It has the ability to fuzz with Metasploit Pattern (pattern_create.rb) which can be helpful for finding the offset.
Tags: rtspfuzz pattern time real-time-streaming-protocol target-application protocol-server
12:23
OpenDNSSEC 1.3.2
» ‎ Packet Storm Security Tools

OpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
Tags: opendnssec security domain domain-name-system-security security-extensions domain-name-system
November 17, 2011
7:57
PHP Vulnerability Hunter 1.1.4.6
» ‎ Packet Storm Security Tools

PHP Vulnerability Hunter is a PHP fuzzing tool that scans for several different vulnerabilities by performing dynamic program analysis. It can detect arbitrary command execution, local file inclusion, arbitrary upload, and several other types of vulnerabilities.
Tags: vulnerability php hunter dynamic-program-analysis command-execution arbitrary-command
November 15, 2011
20:08
Another File Integrity Checker 2.19
» ‎ Packet Storm Security Tools

afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. It works by first creating a database that represents a snapshot of the most essential parts of your computer system. Then a user can run the script to discover all modifications made since the snapshot was taken (i.e. files added, changed, or removed). The configuration syntax is very close to that of aide or tripwire, and a graphical interface is provided.
Tags: file checker integrity integrity-checker configuration-syntax windows-platforms
19:51
TCP Scanners Package Using SCAPY
» ‎ Packet Storm Security Tools

A small collection of scanners using SCAPY that scan for Remote Desktop, VNC, SSH and Telnet servers on networks. It can be used to build target lists or discover rogue services running on your networks. Written in Python.
Tags: tcp scanners scapy telnet-servers remote-desktop target
November 14, 2011
21:44
Linux IPTables Firewall 1.4.12.1
» ‎ Packet Storm Security Tools

iptables is built on top of netfilter, the packet alteration framework for Linux 2.4.x and 2.6.x. It is a major rewrite of its predecessor ipchains, and is used to control packet filtering, Network Address Translation (masquerading, portforwarding, transparent proxying), and special effects such as packet mangling.
Tags: packet iptables linux network-address-translation iptables-firewall transparent-proxying
21:42
Firewall Log Watch 1.3
» ‎ Packet Storm Security Tools

fwlogwatch is a packet filter and firewall log analyzer with support for Linux ipchains, Linux netfilter/iptables, Solaris/BSD/HP-UX/IRIX ipfilter, Cisco IOS, Cisco PIX/ASA, Netscreen, Elsa Lancom router, and Snort IDS log files. It can output its summaries in text and HTML and has a lot of options. fwlogwatch also features a realtime anomaly response capability with a Web interface.
Tags: fwlogwatch log firewall elsa-lancom cisco-ios cisco-pix response-capability
21:31
HWK Wireless Auditing Tool 0.3.2
» ‎ Packet Storm Security Tools

hwk is an easy-to-use wireless authentication and deauthentication tool. Furthermore, it also supports probe response fuzzing, beacon injection flooding, antenna alignment and various injection testing modes. Information gathering is selected by default and shows the incoming traffic indicating the packet types.
Tags: hwk injection tool antenna-alignment packet-types incoming-traffic
7:53
Hook Analyser Malware Tool 1.3
» ‎ Packet Storm Security Tools

Hook analyser is a hook tool which can be potentially helpful in reversing applications and analysing malware. It can hook to an API in a process and search for a pattern in memory or dump the buffer.
Tags: analyser hook malware hook-tool tool-1 analysing
November 12, 2011
14:52
LFI Fuzzploit Tool 1.1
» ‎ Packet Storm Security Tools

LFI Fuzzploit is a simple tool to help in the fuzzing for, finding, and exploiting of local file inclusion vulnerabilities in Linux-based PHP applications. Using special encoding and fuzzing techniques, lfi_fuzzploit will scan for some known and some not so known LFI filter bypasses and exploits using some advanced encoding/bypass methods to try to bypass security and achieve its goal which is ultimately, exploiting a local file inclusion.
Tags: fuzzploit tool lfi php-applications bypasses
November 11, 2011
17:07
Suricata IDPE 1.1
» ‎ Packet Storm Security Tools

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
Tags: suricata barnyard engine network-intrusion-detection security-foundation
November 10, 2011
8:30
w3af Web Application Attack and Audit Framework 1.1
» ‎ Packet Storm Security Tools

w3af, is a Web Application Attack and Audit Framework. The w3af core and it's plugins are fully written in python. The project has more than 130 plugins, which check for SQL injection, cross site scripting (xss), local and remote file inclusion and much more.
Tags: attack application web audit-framework cross-site-scripting web-application
November 09, 2011
18:38
Wormtrack Network IDS 0.1
» ‎ Packet Storm Security Tools

Wormtrack is a network IDS that helps detect scanning worms on a local area network by monitoring anomalous ARP traffic. This allows detection of scanning threats on the network, without having privileged access on a switch to set up a dedicated monitor port, nor does it require a constant updating of the rules engine to address new threats.
Tags: wormtrack network ids network-ids local-area-network arp
7:33
Samhain File Integrity Checker 3.0.0a
» ‎ Packet Storm Security Tools

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Tags: samhain server file system-integrity-checker client-server-application networked-hosts
November 08, 2011
17:00
ROP Gadget Tool 3.3
» ‎ Packet Storm Security Tools

This tool lets you search your gadgets on your binaries (ELF format) to facilitate your ROP exploitation. The gadgets are found on executable segments.
Tags: gadget tool rop gadget-tool elf-format binaries
November 07, 2011
17:41
X Certificate And Key Management 0.9.1
» ‎ Packet Storm Security Tools

XCA is an interface for managing RSA and DSA keys, certificates, certificate signing requests, revocation lists and templates. It uses the OpenSSL and Qt4 libraries. Certificates and requests can be created and signed and many x509v3 extensions can be added. XCA supports multiple root and intermediate Certificate authorities. The CAs can be used to create CRLs and extend certificates. The following file-formats are supported: PEM, DER, PKCS#7, PKCS#8, PKCS#10, PKCS#12, and SPKAC.
Tags: xca certificate pkcs certificate-authorities dsa-keys
17:41
Haveged 1.3a
» ‎ Packet Storm Security Tools

haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
Tags: algorithm haveged bit irisa expansion-algorithm random-pool test-targets
7:35
Xplico Network Forensic Analysis Tool 0.7.0
» ‎ Packet Storm Security Tools

Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams, etc. This is the version that has a GUI allowing you to view photos, texts and videos contained in MMS messages.
Tags: forensic network xplico forensic-analysis source-network analysis-tool
November 05, 2011
5:18
DNS Goblin Search Utility
» ‎ Packet Storm Security Tools

DNS Goblin is a nasty creature that searches for DNS servers. It uses DNS queries and waits for replies.
Tags: dns goblin search dns-queries nasty-creature dns-servers
November 03, 2011
9:01
TOR Virtual Network Tunneling Tool 0.2.2.34
» ‎ Packet Storm Security Tools

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
Tags: internet privacy network tor-virtual tor virtual-tunnels instant-messaging-services local-internet-service-providers
8:53
Tor-ramdisk i686 UClibc-based Linux Distribution x86_64 20111103
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86_64 version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key virtual-tunnels tor-operator
8:52
Tor-ramdisk i686 UClibc-based Linux Distribution x86 20111103
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86 version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key virtual-tunnels tor-operator
8:51
Tor-ramdisk i686 UClibc-based Linux Distribution MIPS 20111103
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. MIPS version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key mips-version virtual-tunnels
November 02, 2011
15:38
Multi Threaded TCP Port Scanner 3.0
» ‎ Packet Storm Security Tools

This is a basic TCP SYN scanner that is multi-threaded.
Tags: tcp multi scanner port-scanner
October 30, 2011
17:32
FStealer Filesystem Mirroring Tool
» ‎ Packet Storm Security Tools

FStealer automates file system mirroring through remote file disclosure vulnerabilities on Linux machines. It uses both, initial path signatures and runtime analysis of downloaded files to recursively find new files. Because of its modularity it is trivial to extend it by writing your own file or path analysis.
Tags: fstealer file mirroring initial-path linux-machines path-analysis
15:22
Joomla Web Scanner 1.7
» ‎ Packet Storm Security Tools

Joomla web scanning perl script that gets the version, components and shows possible bugs.
Tags: web scanner joomla web-scanner version-components Bugs
October 29, 2011
2:02
LFI Fuzzploit Tool
» ‎ Packet Storm Security Tools

LFI Fuzzploit is a simple tool to help in the fuzzing for, finding, and exploiting of local file inclusion vulnerabilities in Linux-based PHP applications. Using special encoding and fuzzing techniques, lfi_fuzzploit will scan for some known and some not so known LFI filter bypasses and exploits using some advanced encoding/bypass methods to try to bypass security and achieve its goal which is ultimately, exploiting a local file inclusion.
Tags: fuzzploit tool lfi php-applications bypasses vulnerabilities
October 27, 2011
5:11
OWASP Mantra c0c0n 11 / AppSecLatam 11 0.71 Beta
» ‎ Packet Storm Security Tools

OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the platform independent release.
Tags: web mantra source beta owasp web-application-developers open-source-tools penetration-testers
October 25, 2011
16:04
Packet Fence 3.0.2
» ‎ Packet Storm Security Tools

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
Tags: network packetfence packet large-heterogeneous-networks nac-system network-access-control
16:00
Haveged 1.3
» ‎ Packet Storm Security Tools

haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
Tags: algorithm haveged bit irisa expansion-algorithm random-pool test-targets
October 24, 2011
19:00
Stunnel SSL Wrapper 4.45
» ‎ Packet Storm Security Tools

Stunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, NNTP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code.
Tags: stunnel wrapper ssl secure-sockets-layer ssl-wrapper tcp-connections
10:53
THC SSL Denial Of Service Tool 1.4 Windows Version
» ‎ Packet Storm Security Tools

THC-SSL-DOS is tool to stress test the SSL handshake by triggering processor intensive RSA_encrypt() calls on the server side. Establishing a secure SSL connection requires 15x more processing power on the server than on the client. THC-SSL-DOS exploits this asymmetric property by overloading the server and knocking it off the Internet. This problem affects all SSL implementations today. The vendors are aware of this problem since 2003 and the topic has been widely discussed. This attack further exploits the SSL secure Renegotiation feature to trigger thousands of renegotiations via a single TCP connection. Windows binary version.
Tags: server tool ssl ssl-handshake connection-windows ssl-implementations
10:53
THC SSL Denial Of Service Tool 1.4
» ‎ Packet Storm Security Tools

THC-SSL-DOS is tool to stress test the SSL handshake by triggering processor intensive RSA_encrypt() calls on the server side. Establishing a secure SSL connection requires 15x more processing power on the server than on the client. THC-SSL-DOS exploits this asymmetric property by overloading the server and knocking it off the Internet. This problem affects all SSL implementations today. The vendors are aware of this problem since 2003 and the topic has been widely discussed. This attack further exploits the SSL secure Renegotiation feature to trigger thousands of renegotiations via a single TCP connection.
Tags: server tool ssl ssl-handshake ssl-implementations denial-of-service
October 21, 2011
15:47
HWK Wireless Auditing Tool 0.3.1
» ‎ Packet Storm Security Tools

hwk is used for wireless audits, fuzzing and stress testing under Linux. It provides various modes as wireless deauthentication and authentication flooding using a monitor mode interface as well as probe response and beacon fuzzing. Furthermore it comes with some basic injection testing and focusing modes.
Tags: hwk testing Wireless mode-interface stress-testing
October 17, 2011
14:16
Clam AntiVirus Toolkit 0.97.3
» ‎ Packet Storm Security Tools

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
Tags: clam toolkit antivirus clam-antivirus mail-servers virus-toolkit
14:16
Clam AntiVirus Toolkit 0.97.3
» ‎ Packet Storm Security Tools

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
Tags: clam toolkit antivirus clam-antivirus mail-servers virus-toolkit
7:36
Jynx Kit Userland Rootkit
» ‎ Packet Storm Security Tools

Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.
Tags: kit userland jynx magic-packet chkrootkit
7:36
Jynx Kit Userland Rootkit
» ‎ Packet Storm Security Tools

Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.
Tags: kit userland jynx magic-packet chkrootkit
October 16, 2011
10:22
PHP SST Sheller 1.0
» ‎ Packet Storm Security Tools

This is simply a PHP shell with a bunch of features like spoofing mail, file uploads, and more.
Tags: sst sheller php php-shell file-uploads
10:22
PHP SST Sheller 1.0
» ‎ Packet Storm Security Tools

This is simply a PHP shell with a bunch of features like spoofing mail, file uploads, and more.
Tags: sst sheller php php-shell file-uploads
October 15, 2011
16:36
Perl CGI Shell
» ‎ Packet Storm Security Tools

This is a Perl CGI backdoor that provides shell-like capability.
Tags: perl cgi shell cgi-backdoor capability
16:36
Perl CGI Shell
» ‎ Packet Storm Security Tools

This is a Perl CGI backdoor that provides shell-like capability.
Tags: perl cgi shell cgi-backdoor capability
October 11, 2011
7:11
Administrative PHP Scanner
» ‎ Packet Storm Security Tools

This PHP script scans a given webserver for various phpMyAdmin administrative pages / directories.
Tags: administrative php scanner php-script
7:11
Administrative PHP Scanner
» ‎ Packet Storm Security Tools

This PHP script scans a given webserver for various phpMyAdmin administrative pages / directories.
Tags: administrative php scanner php-script
October 10, 2011
18:59
Another File Integrity Checker 2.18
» ‎ Packet Storm Security Tools

afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. It works by first creating a database that represents a snapshot of the most essential parts of your computer system. Then a user can run the script to discover all modifications made since the snapshot was taken (i.e. files added, changed, or removed). The configuration syntax is very close to that of aide or tripwire, and a graphical interface is provided.
Tags: file checker integrity integrity-checker configuration-syntax windows-platforms
18:59
Another File Integrity Checker 2.18
» ‎ Packet Storm Security Tools

afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. It works by first creating a database that represents a snapshot of the most essential parts of your computer system. Then a user can run the script to discover all modifications made since the snapshot was taken (i.e. files added, changed, or removed). The configuration syntax is very close to that of aide or tripwire, and a graphical interface is provided.
Tags: file checker integrity integrity-checker configuration-syntax windows-platforms
18:59
Mandos Encrypted File System Unattended Reboot Utility 1.4.0
» ‎ Packet Storm Security Tools

The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
Tags: system server file openpgp-key encrypted-file-system ram-disk
18:59
Mandos Encrypted File System Unattended Reboot Utility 1.4.0
» ‎ Packet Storm Security Tools

The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
Tags: system server file openpgp-key encrypted-file-system ram-disk
18:58
Dradis Information Sharing Tool 2.8.0
» ‎ Packet Storm Security Tools

dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of information is essential to avoid duplication of efforts.
Tags: dradis tool information sharing-tool tool-2 different-stages
18:58
Dradis Information Sharing Tool 2.8.0
» ‎ Packet Storm Security Tools

dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of information is essential to avoid duplication of efforts.
Tags: dradis tool information sharing-tool tool-2 different-stages
18:54
ROP Gadget Tool 3.2
» ‎ Packet Storm Security Tools

This tool lets you search your gadgets on your binaries (ELF format) to facilitate your ROP exploitation. The gadgets are found on executable segments.
Tags: gadget tool rop gadget-tool elf-format binaries
18:54
ROP Gadget Tool 3.2
» ‎ Packet Storm Security Tools

This tool lets you search your gadgets on your binaries (ELF format) to facilitate your ROP exploitation. The gadgets are found on executable segments.
Tags: gadget tool rop gadget-tool elf-format binaries
October 09, 2011
9:25
WiRouter KeyRec 1.1.0
» ‎ Packet Storm Security Tools

WiRouter KeyRec is a powerful and platform independent piece of software that recovers the default WPA passphrases of the supported router's models (Telecom Italia Alice AGPF, Fastweb Pirelli, Fastweb Tesley).
Tags: keyrec wirouter fastweb alice-agpf telecom-italia-alice independent-piece
9:25
WiRouter KeyRec 1.1.0
» ‎ Packet Storm Security Tools

WiRouter KeyRec is a powerful and platform independent piece of software that recovers the default WPA passphrases of the supported router's models (Telecom Italia Alice AGPF, Fastweb Pirelli, Fastweb Tesley).
Tags: keyrec wirouter fastweb alice-agpf telecom-italia-alice independent-piece
October 07, 2011
10:41
WiRouter KeyRec 1.0.9
» ‎ Packet Storm Security Tools

WiRouter KeyRec is a powerful and platform independent piece of software that recovers the default WPA passphrases of the supported router's models (Telecom Italia Alice AGPF, Fastweb Pirelli, Fastweb Tesley).
Tags: keyrec wirouter fastweb alice-agpf telecom-italia-alice independent-piece
10:41
WiRouter KeyRec 1.0.9
» ‎ Packet Storm Security Tools

WiRouter KeyRec is a powerful and platform independent piece of software that recovers the default WPA passphrases of the supported router's models (Telecom Italia Alice AGPF, Fastweb Pirelli, Fastweb Tesley).
Tags: keyrec wirouter fastweb alice-agpf telecom-italia-alice independent-piece
October 04, 2011
14:22
ExploitPack Security Framework
» ‎ Packet Storm Security Tools

Exploit Pack is an open source security framework that combines the benefits of a Java GUI, Python as an Engine, and well-known exploits in the wild. It has an IDE to make the task of developing new exploits easier, instant search, and XML-based modules.
Tags: open-source-security security-framework java-gui
14:22
ExploitPack Security Framework
» ‎ Packet Storm Security Tools

Exploit Pack is an open source security framework that combines the benefits of a Java GUI, Python as an Engine, and well-known exploits in the wild. It has an IDE to make the task of developing new exploits easier, instant search, and XML-based modules.
Tags: framework exploitpack security open-source-security security-framework java-gui
October 03, 2011
16:33
Malware Analyser 3.3
» ‎ Packet Storm Security Tools

Malware Analyser is freeware tool to perform static and dynamic analysis on malwares.
Tags: analyser freeware malware dynamic-analysis
16:33
Malware Analyser 3.3
» ‎ Packet Storm Security Tools

Malware Analyser is freeware tool to perform static and dynamic analysis on malwares.
Tags: analyser freeware malware dynamic-analysis
10:22
Hydra Network Logon Cracker 7.1
» ‎ Packet Storm Security Tools

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
Tags: logon network hydra cisco-aaa socks pcnfs network-logon vnc
10:22
Hydra Network Logon Cracker 7.1
» ‎ Packet Storm Security Tools

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
Tags: logon network hydra cisco-aaa socks pcnfs network-logon vnc
October 02, 2011
10:17
0x4553-Intercepter WinPcap-Based Sniffer 0.8.4
» ‎ Packet Storm Security Tools

0x4553-Intercepter is a WinPcap-based sniffer that offers various capabilities including sniffing for password hashes related to ICQ/IRC/AIM/FTP/IMAP/POP3/SMTP/LDAP/BNC/SOCKS/HTTP/WWW/NNTP/CVS/TELNET/MRA/DC++/VNC/MYSQL and ORACLE. It also sniffs ICQ/AIM/JABBER/YAHOO/MSN/GADU-GADU/IRC and MRA protocols. It has a built-in arp poisoning module, can change MAC addresses of LAN adapters, and has various other interesting functionality.
Tags: sniffer winpcap-based intercepter mac lan socks arp-poisoning lan-adapters mac-addresses
10:17
0x4553-Intercepter WinPcap-Based Sniffer 0.8.4
» ‎ Packet Storm Security Tools

0x4553-Intercepter is a WinPcap-based sniffer that offers various capabilities including sniffing for password hashes related to ICQ/IRC/AIM/FTP/IMAP/POP3/SMTP/LDAP/BNC/SOCKS/HTTP/WWW/NNTP/CVS/TELNET/MRA/DC++/VNC/MYSQL and ORACLE. It also sniffs ICQ/AIM/JABBER/YAHOO/MSN/GADU-GADU/IRC and MRA protocols. It has a built-in arp poisoning module, can change MAC addresses of LAN adapters, and has various other interesting functionality.
Tags: sniffer winpcap-based intercepter mac lan socks arp-poisoning lan-adapters mac-addresses
October 01, 2011
6:11
Knull Shell Alpha1
» ‎ Packet Storm Security Tools

Knull Shell Alpha1 is a PHP shell that has bind, reverse, and backpipe shells.
Tags: shell php knull alpha php-shell alpha1
6:11
Knull Shell Alpha1
» ‎ Packet Storm Security Tools

Knull Shell Alpha1 is a PHP shell that has bind, reverse, and backpipe shells.
Tags: shell php knull alpha php-shell alpha1
September 26, 2011
17:59
DNS Spider Multithreaded Bruteforcer 0.3
» ‎ Packet Storm Security Tools

DNS Spider is a multithreaded bruteforcer of subdomains that leverages a wordlist and/or character permutation.
Tags: dns bruteforcer spider multithreaded wordlist subdomains
17:59
DNS Spider Multithreaded Bruteforcer 0.3
» ‎ Packet Storm Security Tools

DNS Spider is a multithreaded bruteforcer of subdomains that leverages a wordlist and/or character permutation.
Tags: dns bruteforcer spider multithreaded wordlist subdomains
15:19
Tor-ramdisk i686 UClibc-based Linux Distribution x86 20110915
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86 version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key virtual-tunnels tor-operator
15:19
Tor-ramdisk i686 UClibc-based Linux Distribution x86 20110915
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86 version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key virtual-tunnels tor-operator
15:02
Androguard (Android Guard) 0.9
» ‎ Packet Storm Security Tools

Androguard (Android Guard) is a tool written in python to play with .class, .dex, APK, JAR, and Android's binary XML files. It allows you to perform diffing of Android applications, measure similarities, check if it is malware, and more.
Tags: androguard guard android binary-xml python
15:02
Androguard (Android Guard) 0.9
» ‎ Packet Storm Security Tools

Androguard (Android Guard) is a tool written in python to play with .class, .dex, APK, JAR, and Android's binary XML files. It allows you to perform diffing of Android applications, measure similarities, check if it is malware, and more.
Tags: androguard guard android binary-xml python
September 25, 2011
5:12
Hydra Network Logon Cracker 7.0
» ‎ Packet Storm Security Tools

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
Tags: logon network hydra cisco-aaa socks pcnfs network-logon vnc
5:12
Hydra Network Logon Cracker 7.0
» ‎ Packet Storm Security Tools

THC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
Tags: logon network hydra cisco-aaa socks pcnfs network-logon vnc
September 22, 2011
18:01
Multi Threaded TCP Port Scanner 2.0
» ‎ Packet Storm Security Tools

Multi Threaded TCP Port Scanner allows you to scan 65535 TCP ports on an IP address. You can specify how many threads to run and the timeout. Furthermore, it will tell you the MAC address of the target and the services that are running. You can scan IP addresses on your network and find out which open ports you have.
Tags: tcp threaded multi mac open-ports port-scanner tcp-ports
18:01
Multi Threaded TCP Port Scanner 2.0
» ‎ Packet Storm Security Tools

Multi Threaded TCP Port Scanner allows you to scan 65535 TCP ports on an IP address. You can specify how many threads to run and the timeout. Furthermore, it will tell you the MAC address of the target and the services that are running. You can scan IP addresses on your network and find out which open ports you have.
Tags: tcp threaded multi mac open-ports port-scanner tcp-ports
8:53
Ani-Shell 1.4 PHP Shell
» ‎ Packet Storm Security Tools

Ani-Shell is a simple PHP shell with some unique features like a mass mailer, ddoser, connect-back shell, bind shell, and various other features.
Tags: ani php shell ani-shell mass-mailer bind
8:53
Ani-Shell 1.4 PHP Shell
» ‎ Packet Storm Security Tools

Ani-Shell is a simple PHP shell with some unique features like a mass mailer, ddoser, connect-back shell, bind shell, and various other features.
Tags: ani php shell ani-shell mass-mailer bind
September 21, 2011
22:55
Packet Fence 3.0.0
» ‎ Packet Storm Security Tools

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
Tags: network packetfence packet large-heterogeneous-networks nac-system network-access-control
22:55
Packet Fence 3.0.0
» ‎ Packet Storm Security Tools

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
Tags: network packetfence packet large-heterogeneous-networks nac-system network-access-control
22:43
Nightwing 0.7.8
» ‎ Packet Storm Security Tools

Nightwing allows the creation of quickly deployed wireless networks without the need to make complicated configurations. With the implementation of a Mesh technology called B.A.T.M.A.N, Nightwing allows the extension of wireless networks with a simple way of adding devices that works with minimal human intervention. It has public and private connection interfaces, and the ability to filter content using OpenDNS. It is designed with security in mind, and has low hardware requirements.
Tags: nightwing creation need b.a.t.m.a.n minimal-human-intervention private-connection hardware-requirements
22:43
Nightwing 0.7.8
» ‎ Packet Storm Security Tools

Nightwing allows the creation of quickly deployed wireless networks without the need to make complicated configurations. With the implementation of a Mesh technology called B.A.T.M.A.N, Nightwing allows the extension of wireless networks with a simple way of adding devices that works with minimal human intervention. It has public and private connection interfaces, and the ability to filter content using OpenDNS. It is designed with security in mind, and has low hardware requirements.
Tags: nightwing creation need b.a.t.m.a.n minimal-human-intervention private-connection hardware-requirements
September 20, 2011
23:41
TOR Virtual Network Tunneling Tool 0.2.2.33
» ‎ Packet Storm Security Tools

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
Tags: internet privacy network tor-virtual tor virtual-tunnels instant-messaging-services local-internet-service-providers
23:41
TOR Virtual Network Tunneling Tool 0.2.2.33
» ‎ Packet Storm Security Tools

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
Tags: internet privacy network tor-virtual tor virtual-tunnels instant-messaging-services local-internet-service-providers
19:36
DNS Discovery Sub-Domain Brute-Forcer
» ‎ Packet Storm Security Tools

DNS Discovery is a multi-threaded DNS sub-domain brute-forcing utility. It is meant to be used by pen-testers during initial stages.
Tags: sub discovery dns brute-forcer initial-stages
10:32
Samhain File Integrity Checker 2.8.6
» ‎ Packet Storm Security Tools

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Tags: samhain server file system-integrity-checker client-server-application networked-hosts
September 15, 2011
11:49
URLCrazy Domain Name Typo Tool 0.4
» ‎ Packet Storm Security Tools

URLCrazy enables the study of domainname typos and URL hijacking. URLCrazy is a domainname typo generator that generates 13 types of typos, knows over 8000 common misspellings, supports multiple keyboard layouts, can check if a typo is a valid domain, tests if domain typos are in use, and estimates the popularity of a typo.
Tags: typo urlcrazy domain common-misspellings typo-generator valid-domain
September 10, 2011
7:35
DNS Spider Multithreaded Bruteforcer 0.2
» ‎ Packet Storm Security Tools

DNS Spider is a multithreaded bruteforcer of subdomains that leverages a wordlist and/or character permutation.
Tags: dns bruteforcer spider multithreaded wordlist subdomains
September 08, 2011
7:39
infIP 0.1 Blacklist Checker
» ‎ Packet Storm Security Tools

infIP is a python script that checks output from netstat against RBLs from Spamhaus.
Tags: blacklist checker infip python-script rbls netstat
September 07, 2011
7:44
Short Fuzzy Rat Scanner
» ‎ Packet Storm Security Tools

Short Fuzzy Rat is a web fuzzing script written in perl. It was inspired by Luca Carettoni's original fuzzing list of 879 attack vectors with 8 levels of recursion.
Tags: fuzzy short rat vectors scanner perl
September 06, 2011
19:42
Tor-ramdisk i686 UClibc-based Linux Distribution x86_64 20110830
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86_64 version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key virtual-tunnels tor-operator
19:35
Tor-ramdisk i686 UClibc-based Linux Distribution x86 20110830
» ‎ Packet Storm Security Tools

Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86 version.
Tags: tor-ramdisk security privacy tor-ramdisk-i tor private-rsa-key virtual-tunnels tor-operator
September 03, 2011
23:22
BadAss 1.0
» ‎ Packet Storm Security Tools

BadAss is a Ruby script that provides an easy to use interface to tools like nmap, nikto, sqlmap, and may more.
Tags: interface script badass ruby
September 01, 2011
22:10
Post Memory Corruption Memory Analyzer 1.00
» ‎ Packet Storm Security Tools

Pmcma aims at automating exploitation of invalid memory writes (being them the consequences of an overflow in a writable section, of a missing format string, integer overflow, variable misuse, or any other type of memory corruption).
Tags: corruption overflow memory memory-corruption integer-overflow format-string
16:55
BadAss 0.9
» ‎ Packet Storm Security Tools

BadAss is a Ruby script that provides an easy to use interface to tools like nmap, nikto, sqlmap, and may more.
Tags: interface script badass ruby
August 31, 2011
18:56
TOR Virtual Network Tunneling Tool 0.2.2.32
» ‎ Packet Storm Security Tools

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
Tags: internet privacy network tor-virtual tor virtual-tunnels instant-messaging-services local-internet-service-providers
August 29, 2011
19:03
Mobius Forensic Toolkit 0.5.9
» ‎ Packet Storm Security Tools

Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.
Tags: mobius forensic toolkit python-gtk abstract-interface
19:03
Malheur Malware Analyzer 0.5.2
» ‎ Packet Storm Security Tools

Malheur is a tool for automatic analysis of program behavior recorded from malicious software (malware). It is designed to support the regular analysis of malicious software and the development of detection and defense measures. It allows for identifying novel classes of malware with similar behavior and assigning unknown malware to discovered classes. It can be applied to recorded program behavior of various formats as long as monitored events are separated by delimiter symbols, e.g. as in reports generated by the popular malware sandboxes CWSandbox, Anubis, Norman Sandbox, and Joebox.
Tags: malheur behavior malware norman-sandbox program-behavior malicious-software
0:11
Plomp Banner Grabber
» ‎ Packet Storm Security Tools

Plomp is a HTTP banner grabber script written in Perl that also sends malformed requests to the server in order to determine if the version information has been altered.
Tags: banner plomp grabber malformed-requests perl
August 28, 2011
14:30
Turtle FreeBSD Rootkit 2
» ‎ Packet Storm Security Tools

Turtle rootkit for FreeBSD. This kernel module hooks unlink() so the protected file cannot be deleted, hooks kill() so the protected process cannot be killed, and has various other nice bells and whistles.
Tags: rootkit turtle freebsd bells-and-whistles kernel-module
August 24, 2011
17:39
Malheur Malware Analyzer 0.5.1
» ‎ Packet Storm Security Tools

Malheur is a tool for automatic analysis of program behavior recorded from malicious software (malware). It is designed to support the regular analysis of malicious software and the development of detection and defense measures. It allows for identifying novel classes of malware with similar behavior and assigning unknown malware to discovered classes. It can be applied to recorded program behavior of various formats as long as monitored events are separated by delimiter symbols, e.g. as in reports generated by the popular malware sandboxes CWSandbox, Anubis, Norman Sandbox, and Joebox.
Tags: malheur behavior malware norman-sandbox program-behavior malicious-software
7:17
Zorp Proxy Firewall Suite 3.9.2
» ‎ Packet Storm Security Tools

Zorp is a proxy firewall suite with its core architecture built around today's security demands. It uses application level proxies, is modular and component based, uses a script language to describe policy decisions, makes it possible to monitor encrypted traffic, lets you override client actions, and lets you protect your servers with its built in IDS capabilities.
Tags: firewall zorp proxy proxy-firewall core-architecture policy-decisions
3:10
H4ckCity Auto T00ls 1.0
» ‎ Packet Storm Security Tools

This perl script performs a variety of auto-rooting and shell install attempts on a given host once a shell is obtained.
Tags: auto ckcity shell perl-script attempts
August 23, 2011
7:25
Sagan Log Monitor 0.2.0
» ‎ Packet Storm Security Tools

Sagan is multi-threaded, real-time system- and event-log monitoring software, but with a twist. Sagan uses a "Snort" like rule set for detecting nefarious events happening on your network and/or computer systems. If Sagan detects a "bad thing" happening, it can do a number of things with that information. Sagan can also correlate the events with your Intrusion Detection/Intrusion Prevention (IDS/IPS) system and basically acts like an SIEM (Security Information and Log Management) system.
Tags: sagan log system real-time-system intrusion-prevention detection-intrusion
August 22, 2011
7:45
FHTTP Attack Tool 1.3
» ‎ Packet Storm Security Tools

This is a framework for HTTP related attacks. It is written in Perl with a GTK interface, has a proxy for debugging and manipulation, proxy chaining, evasion rules, and more.
Tags: attack proxy fhttp gtk-interface tool-1 evasion
7:43
QuickRecon 0.3.2
» ‎ Packet Storm Security Tools

QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
Tags: script quickrecon python bing python-script subdomain-names google
7:10
tor2web Web Proxy 2.0
» ‎ Packet Storm Security Tools

tor2web is a web proxy tool that promotes the use of Tor hidden services. It is based on the Glype web proxy and is meant to protect publishers.
Tags: tor web proxy web-proxy publishers
August 18, 2011
0:12
IC-Discover DNS Mining Tool
» ‎ Packet Storm Security Tools

IC-Discover is a fast multi-threaded sub-domain discovery tool written in C.
Tags: dns ic-discover tool discovery-tool
August 17, 2011
7:31
NIELD (Network Interface Events Logging Daemon) 0.20
» ‎ Packet Storm Security Tools

Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules.
Tags: network logging interface interface-events network-interface ndp
August 14, 2011
10:22
OATH Toolkit 1.10.4
» ‎ Packet Storm Security Tools

OATH Toolkit attempts to collect several tools that are useful when deploying technologies related to OATH, such as HOTP one-time passwords. It is a fork of the earlier HOTP Toolkit.
Tags: hotp oath toolkit time-passwords attempts
August 11, 2011
22:10
dword2url Malware Obfuscation
» ‎ Packet Storm Security Tools

dword2url is a python script for creating obfuscation in URLs for malware.
Tags: url dword obfuscation python-script urls
August 09, 2011
6:47
GotRoot Shell Script
» ‎ Packet Storm Security Tools

This post-escalation bash script sanitizes 29 logs, adds a root user, and allows for package installation including hashcat, nmap, and more. Written for Ubuntu.
Tags: shell gotroot script shell-script bash-script root-user
August 08, 2011
19:06
httpry Specialized HTTP Packet Sniffer 0.1.6
» ‎ Packet Storm Security Tools

httpry is a specialized packet sniffer designed for displaying and logging HTTP traffic. It is not intended to perform analysis itself, but instead to capture, parse, and log the traffic for later analysis. It can be run in real-time displaying the live traffic on the wire, or as a daemon process that logs to an output file. It is written to be as lightweight and flexible as possible, so that it can be easily adaptable to different applications. It does not display the raw HTTP data transferred, but instead focuses on parsing and displaying the request/response line along with associated header fields.
Tags: httpry http traffic response-line packet-sniffer request-response
August 07, 2011
5:12
H4ckcity Sheller Code And Tutorial
» ‎ Packet Storm Security Tools

This archive has the H4ckcity PHP backdoor script along with a tutorial written in Persian.
Tags: sheller ckcity tutorial persian
August 01, 2011
18:20
Metasploit Framework 4.0.0
» ‎ Packet Storm Security Tools

The Metasploit Framework is an advanced open-source platform for developing, testing, and using exploit code. Metasploit is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security researchers world-wide. The framework is written in the Ruby programming language and includes components written in C and assembler.
Tags: testing framework metasploit ruby open-source-platform network-security-professionals ruby-programming
10:26
ROP Gadget Tool 3.0
» ‎ Packet Storm Security Tools

This tool lets you search your gadgets on your binaries (ELF format) to facilitate your ROP exploitation. The gadgets are found on executable segments.
Tags: gadget tool rop gadget-tool elf-format binaries
July 31, 2011
7:23
NDisc6 Discovery Tools 1.0.2
» ‎ Packet Storm Security Tools

ndisc6 consists of three command line tools (ndisc6, rdisc6, and traceroute6) that perform ICMPv6 Neighbor Discovery, ICMPv6 Router Discovery, and IPv6 tcptraceroute/traceroute respectively. It is primarily meant for IPv6 networking diagnostics and monitoring.
Tags: ndisc discovery traceroute neighbor-discovery command-line-tools discovery-tools
6:47
Mini PHP Shell 27.9-2
» ‎ Packet Storm Security Tools

Mini PHP Shell is your typical backdoor script that allows for connect back and more. This is the second version of this code.
Tags: mini shell php
July 29, 2011
19:43
WATOBO Web Application Toolbox Auditor 0.9.7rev544
» ‎ Packet Storm Security Tools

WATOBO, the Web Application Toolbox, is a tool that enables security professionals to perform highly efficient (semi-automated) web application security audits. It acts like a local proxy and analyzes the traffic on the fly for helpful information and vulnerabilities. It also has automated scanning capabilities, e.g. SQL injection, cross site scripting and more.
Tags: application watobo web web-application-security security-audits cross-site-scripting
July 28, 2011
0:07
Firewall Builder With GUI 5.0.0.3568
» ‎ Packet Storm Security Tools

Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
Tags: policy firewall gui cisco-pix drop-operations abstract-model
July 25, 2011
21:39
Suricata IDPE 1.0.5
» ‎ Packet Storm Security Tools

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
Tags: network-intrusion-detection suricata security-foundation
July 20, 2011
8:21
ARP-Scan ARP Generation Tool 1.8.1
» ‎ Packet Storm Security Tools

arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
Tags: arp address arp-scan address-resolution-protocol manual-entries
July 18, 2011
19:50
WordPress Security Scanner 1.0
» ‎ Packet Storm Security Tools

WordPress Security Scanner can perform username enumeration, weak password cracking, version / vulnerability / plugin enumeration, and more.
Tags: wordpress scanner security security-scanner vulnerability
July 16, 2011
8:25
Malware Analyser 3.2
» ‎ Packet Storm Security Tools

Malware Analyser is freeware tool to perform static and dynamic analysis on malwares.
Tags: analyser freeware malware dynamic-analysis
July 13, 2011
17:24
Arachni Web Application Security Scanner Framework 0.2.4
» ‎ Packet Storm Security Tools

Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications. Arachni is smart, it trains itself by learning from the HTTP responses it receives during the audit process. Unlike other scanners, Arachni takes into account the dynamic nature of web applications and can detect changes caused while travelling through the paths of a web application's cyclomatic complexity. This way attack/input vectors that would otherwise be undetectable by non-humans are seamlessly handled by Arachni.
Tags: arachni application web ruby cyclomatic-complexity web-application-security input-vectors
July 11, 2011
7:10
ROP Gadget Tool 2.3
» ‎ Packet Storm Security Tools

This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation.
Tags: gadget tool rop gadget-tool tool-2 binaries
July 06, 2011
8:00
SyRiAn Sh3ll 7
» ‎ Packet Storm Security Tools

SyRiAn Sh3ll is a PHP backdoor that allows for database access, local exploitation of the host, and more.
Tags: php syrian backdoor database-access
7:55
LFI Scanner 4.0
» ‎ Packet Storm Security Tools

This is a simple perl script called Viper LFI Scanner that enumerates local file inclusion attempts when given a specific target.
Tags: perl scanner lfi perl-script target
July 01, 2011
14:58
WiRouter KeyRec 1.0.8
» ‎ Packet Storm Security Tools

WiRouter KeyRec is a powerful and platform independent piece of software that recovers the default WPA passphrases of the supported router's models (Telecom Italia Alice AGPF, Fastweb Pirelli, Fastweb Tesley).
Tags: keyrec wirouter fastweb alice-agpf telecom-italia-alice independent-piece

Skip to page: 1 2 3 4

← Packet Storm Security Recent Files Packet Storm Security Misc. Files →

jetlib.sec » Packet Storm Security Tools

Feeds

Packet Storm Security Tools

Tags: hat red libxml red-hat-security development-toolbox denial-of-service

Tags: nmap shell script nmap-scans shell-script

Tags: tool toolkit lfi php-script inclusion

Tags: multiple scanner cms cms-systems php-script

Tags: faar analysis firewall manipulation-tool dbedit logs

Tags: tcp multi scanner port-scanner

Tags: logon network hydra cisco-aaa socks pcnfs network-logon vnc

Tags: faar analysis firewall manipulation-tool dbedit logs

Tags: server adsuck dns network-perimeter dns-server road-warrior

Tags: bluetooth scanner bluelog bluetooth-devices survey-tool site-survey

Tags: codetective analysis tool encoding-algorithm analysis-tool python

Tags: geolocation creepy information networking-platforms image-hosting-services social-networking

Tags: algorithm haveged bit irisa expansion-algorithm random-pool test-targets

Tags: tcp server client magic-packets magic-packet unix-systems

Tags: viper script windows arp-spoofing windows-box

Tags: pop3-daemon logs

Tags: integrity-checker configuration-syntax windows-platforms

Tags: untrusted-source cross-site-scripting whitelist

Tags: goal ip-link address network-traffic ip-addresses ip-address

Tags: network viper script bash-script network-sniffer sniffers

Tags: script tester port port-scanning python

Tags: dradis tool information sharing-tool tool-2 different-stages

Tags: webacoo server web network-firewalls relative-web nids

Tags: bluetooth scanner bluelog bluetooth-devices survey-tool site-survey

Tags: guard privacy gnu gnu-privacy-guard nai-inc digital-signatures

Tags: pgsql brute force login-attempts multiple-threads concurrent-connections

Tags: server http brute authentication-system concurrent-connections brute-force

Tags: router lightidra irc irc-router scanner

Tags: firewall zorp proxy proxy-firewall core-architecture policy-decisions

Tags: sql fatcat information sql-injection information-table web-application

Tags: script dark python python-script sql-injection inclusion

Tags: tool port windows windows-port application-level codebase

Tags: mobius forensic toolkit python-gtk abstract-interface

Tags: python-script sql-injection inclusion

Tags: opendnssec security domain domain-name-system-security security-extensions domain-name-system

Tags: testing collision magichash berlin chaos-communication-congress hash-collision posttest

Tags: packet pkd ipt kernel-module random-port

Tags: script dark python python-script sql-injection inclusion

Tags: script dark python python-script sql-injection inclusion

Tags: suricata barnyard engine network-intrusion-detection security-foundation

Tags: small python backdoor

Tags: script dark python python-script

Tags: suricata barnyard engine network-intrusion-detection security-foundation

Tags: tool brute mysql brute-force-tool login-attempts multiple-threads

Tags: wake apple wol-e mac lan lan-hacking apple-computers wol mac-address

Tags: control system access role-based-access-control access-control-system authentication-methods

Tags: uniofuzz universal tool ports

Tags: hotp oath toolkit time-passwords attempts

Tags: array tool traffic application-level codebase tcp-ip

Tags: tcp scan fast port-scanner ports hosts

Tags: pop server password brute-forcer pop3-authentication authentication-system

Tags: sshd login fake script-kiddies login-attempts dictionary-attack

Tags: ping sweep icmp ping-sweep ip-addresses icmp-ping

Tags: forensic network xplico forensic-analysis source-network analysis-tool

Tags: version microsoft sql sql-server-version microsoft-sql-server public-tools

Tags: priv shell bypass php-shell

Tags: facebook ban ssl

Tags: server adsuck dns network-perimeter dns-server road-warrior

Tags: tool candidate Release application-level codebase tcp-ip

Tags: ctm set manager cisco-template cisco regular-expressions

Tags: system server file openpgp-key encrypted-file-system ram-disk

Tags: openssl toolkit layer openssl-toolkit transport-layer-security secure-sockets-layer

Tags: packet iptables linux network-address-translation iptables-firewall transparent-proxying

Tags: keyrec wirouter fastweb alice-agpf telecom-italia-alice independent-piece

Tags: userspace conntrack system commandline-interface packet-inspection iptables

Tags: stev sniffer org tcp-connections statics user-interface

Tags: keylogger typed text s.s.t-javascript s.s.t proof-of-concept text-javascript

Tags: testing tool ids peta-zetas zetas testing-tool peta

Tags: authorization fwknop port target-system authorization-scheme ssh

Tags: machine log command vpn-firewall shell-commands php-script

Tags: kbeast kernel beast kernel-module linux-rootkit sockets

Tags: web mantra source beta owasp web-application-developers open-source-tools penetration-testers

Tags: reaver wps wpa wpa-wpa2 brute-force-attack passphrase