jetlib.sec » Tags » magic-packet

Feeds

133363 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

15 items tagged "magic packet"

Related tags: kit [+], jynx [+], chkrootkit [+], userland [+], vulnerable version [+], unix systems [+], tcp [+], server [+], rootkit [+], preload [+], magic packets [+], client [+], authoritative servers [+], packet [+], defect [+], bind [+]

• March 18, 2012
• 9:22

  Jynx-Kit Release 2

   » ‎ Packet Storm Security Recent Files
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  preload kit jynx magic-packet chkrootkit rootkit  

• 9:22

  Jynx-Kit Release 2

   » ‎ Packet Storm Security Tools
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  preload kit jynx magic-packet chkrootkit rootkit  

• 9:22

  Jynx-Kit Release 2

   » ‎ Packet Storm Security Misc. Files
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  preload kit jynx magic-packet chkrootkit rootkit  

• February 08, 2012
• 14:19

  trixd00r 0.0.1

   » ‎ Packet Storm Security Recent Files
  trixd00r is an advanced and invisible userland backdoor based on TCP/IP for UNIX systems. It consists of a server and a client. The server sits and waits for magic packets using a sniffer. If a magic packet arrives, it will bind a shell over TCP or UDP on the given port or connecting back to the client again over TCP or UDP. The client is used to send magic packets to trigger the server and get a shell.

  Tags:  tcp server client magic-packets magic-packet unix-systems  

• 14:19

  trixd00r 0.0.1

   » ‎ Packet Storm Security Tools
  trixd00r is an advanced and invisible userland backdoor based on TCP/IP for UNIX systems. It consists of a server and a client. The server sits and waits for magic packets using a sniffer. If a magic packet arrives, it will bind a shell over TCP or UDP on the given port or connecting back to the client again over TCP or UDP. The client is used to send magic packets to trigger the server and get a shell.

  Tags:  tcp server client magic-packets magic-packet unix-systems  

• 14:19

  trixd00r 0.0.1

   » ‎ Packet Storm Security Misc. Files
  trixd00r is an advanced and invisible userland backdoor based on TCP/IP for UNIX systems. It consists of a server and a client. The server sits and waits for magic packets using a sniffer. If a magic packet arrives, it will bind a shell over TCP or UDP on the given port or connecting back to the client again over TCP or UDP. The client is used to send magic packets to trigger the server and get a shell.

  Tags:  tcp server client magic-packets magic-packet unix-systems  

• October 17, 2011
• 7:36

  Jynx Kit Userland Rootkit

   » ‎ Packet Storm Security Recent Files
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  kit userland jynx magic-packet chkrootkit  

• 7:36

  Jynx Kit Userland Rootkit

   » ‎ Packet Storm Security Recent Files
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  kit userland jynx magic-packet chkrootkit  

• 7:36

  Jynx Kit Userland Rootkit

   » ‎ Packet Storm Security Tools
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  kit userland jynx magic-packet chkrootkit  

• 7:36

  Jynx Kit Userland Rootkit

   » ‎ Packet Storm Security Tools
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  kit userland jynx magic-packet chkrootkit  

• 7:36

  Jynx Kit Userland Rootkit

   » ‎ Packet Storm Security Misc. Files
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  kit userland jynx magic-packet chkrootkit  

• 7:36

  Jynx Kit Userland Rootkit

   » ‎ Packet Storm Security Misc. Files
  Jynx Kit is a LD_PRELOAD userland rootkit. Fully undetectable from chkrootkit and rootkithunter. Includes magic packet SSL reverse back connect shell. Solid building block for further LD_PRELOAD rootkits.

  Tags:  kit userland jynx magic-packet chkrootkit  

• July 05, 2011
• 14:58

  ISC BIND 9 Magic Packet Denial Of Service

   » ‎ Packet Storm Security Advisories
  A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers. The code location of the defect makes it impossible to protect BIND using ACLs configured within named.conf or by disabling any features at compile-time or run-time. A remote attacker would need to be able to send a specially crafted packet directly to a server running a vulnerable version of BIND. There is also the potential for an indirect attack via malware that is inadvertently installed and run, where infected machines have direct access to an organization's nameservers. Versions affected are 9.6.3, 9.6-ESV-R4, 9.6-ESV-R4-P1, 9.6-ESV-R5b1 9.7.0, 9.7.0-P1, 9.7.0-P2, 9.7.1, 9.7.1-P1, 9.7.1-P2, 9.7.2, 9.7.2-P1, 9.7.2-P2, 9.7.2-P3, 9.7.3, 9.7.3-P1, 9.7.3-P2, 9.7.4b1 9.8.0, 9.8.0-P1, 9.8.0-P2, 9.8.0-P3, and 9.8.1b1.

  Tags:  authoritative-servers magic-packet vulnerable-version  

• 14:58

  ISC BIND 9 Magic Packet Denial Of Service

   » ‎ Packet Storm Security Recent Files
  A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers. The code location of the defect makes it impossible to protect BIND using ACLs configured within named.conf or by disabling any features at compile-time or run-time. A remote attacker would need to be able to send a specially crafted packet directly to a server running a vulnerable version of BIND. There is also the potential for an indirect attack via malware that is inadvertently installed and run, where infected machines have direct access to an organization's nameservers. Versions affected are 9.6.3, 9.6-ESV-R4, 9.6-ESV-R4-P1, 9.6-ESV-R5b1 9.7.0, 9.7.0-P1, 9.7.0-P2, 9.7.1, 9.7.1-P1, 9.7.1-P2, 9.7.2, 9.7.2-P1, 9.7.2-P2, 9.7.2-P3, 9.7.3, 9.7.3-P1, 9.7.3-P2, 9.7.4b1 9.8.0, 9.8.0-P1, 9.8.0-P2, 9.8.0-P3, and 9.8.1b1.

  Tags:  bind defect packet authoritative-servers magic-packet vulnerable-version  

• 14:58

  ISC BIND 9 Magic Packet Denial Of Service

   » ‎ Packet Storm Security Misc. Files
  A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers. The code location of the defect makes it impossible to protect BIND using ACLs configured within named.conf or by disabling any features at compile-time or run-time. A remote attacker would need to be able to send a specially crafted packet directly to a server running a vulnerable version of BIND. There is also the potential for an indirect attack via malware that is inadvertently installed and run, where infected machines have direct access to an organization's nameservers. Versions affected are 9.6.3, 9.6-ESV-R4, 9.6-ESV-R4-P1, 9.6-ESV-R5b1 9.7.0, 9.7.0-P1, 9.7.0-P2, 9.7.1, 9.7.1-P1, 9.7.1-P2, 9.7.2, 9.7.2-P1, 9.7.2-P2, 9.7.2-P3, 9.7.3, 9.7.3-P1, 9.7.3-P2, 9.7.4b1 9.8.0, 9.8.0-P1, 9.8.0-P2, 9.8.0-P3, and 9.8.1b1.

  Tags:  bind defect packet authoritative-servers magic-packet vulnerable-version