Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 08:22:00 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2170993330&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2FCrackers%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2170993330.1338193320.1338193320.1338193320.1%3B%2B__utmz%3D32867617.1338193320.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/112995/cpcracker.txt http://packetstormsecurity.org/files/112995/cpcracker.txt http://packetstormsecurity.org/files/112995/Private-Cpanel-Cracker.html Wed, 23 May 2012 11:11:11 GMT This is a php script called Private Cpanel Cracker. It takes in a site list and a word list. http://packetstormsecurity.org/files/112926/QuarksPwDump_v0.1b.rar http://packetstormsecurity.org/files/112926/QuarksPwDump_v0.1b.rar http://packetstormsecurity.org/files/112926/Quarks-PwDump-0.1b.html Sun, 20 May 2012 18:11:11 GMT Quarks PwDump is a native Win32 tool to extract credentials from Windows operating systems. It currently extracts local accounts NT/LM hashes and history, domain accounts NT/LM hashes and history, cached domain password, and Bitlocker recovery information. http://packetstormsecurity.org/files/112607/md5db.py.txt http://packetstormsecurity.org/files/112607/md5db.py.txt http://packetstormsecurity.org/files/112607/MD5-MySQL-Brute-Forcer.html Thu, 10 May 2012 09:11:11 GMT This is a simple python script for cracking MySQL MD5 passwords. http://packetstormsecurity.org/files/112400/oclHashcat-plus-0.08-32.7z http://packetstormsecurity.org/files/112400/oclHashcat-plus-0.08-32.7z http://packetstormsecurity.org/files/112400/oclHashcat-Advanced-GPU-Hash-Cracking-Utility-32-Bit-0.08.html Wed, 02 May 2012 03:28:36 GMT oclHashcat+ Advanced GPU hash cracking utility that includes the World's fastest md5crypt and phpass crackers and has the first GPGPU-based rule engine. Focuses on highly iterated modern hashes, single dictionary-based attacks, and more. 32-bit version. http://packetstormsecurity.org/files/112401/oclHashcat-plus-0.08-64.7z http://packetstormsecurity.org/files/112401/oclHashcat-plus-0.08-64.7z http://packetstormsecurity.org/files/112401/oclHashcat-Advanced-GPU-Hash-Cracking-Utility-64-Bit-0.08.html Wed, 02 May 2012 02:50:05 GMT oclHashcat+ Advanced GPU hash cracking utility that includes the World's fastest md5crypt and phpass crackers and has the first GPGPU-based rule engine. Focuses on highly iterated modern hashes, single dictionary-based attacks, and more. 64-bit version. http://packetstormsecurity.org/files/112381/sha1db.py.txt http://packetstormsecurity.org/files/112381/sha1db.py.txt http://packetstormsecurity.org/files/112381/SHA-1-MySQL-Bruteforcer.html Mon, 30 Apr 2012 18:11:11 GMT SHA-1 MySQL database brute forcing utility. Written in Python. http://packetstormsecurity.org/files/112326/wordpress-bruteforce.txt http://packetstormsecurity.org/files/112326/wordpress-bruteforce.txt http://packetstormsecurity.org/files/112326/WordPress-Bruteforce-Script.html Sun, 29 Apr 2012 12:12:12 GMT This is a simple bash script for bruteforcing WordPress. http://packetstormsecurity.org/files/112254/cintruder_v0.2.0.tar.gz http://packetstormsecurity.org/files/112254/cintruder_v0.2.0.tar.gz http://packetstormsecurity.org/files/112254/CIntruder-0.2-CAPTCHA-Bypass.html Thu, 26 Apr 2012 23:59:49 GMT CIntruder is an automatic pentesting tool to bypass CAPTCHA. http://packetstormsecurity.org/files/111707/cintruder_v0.1.0.tar.gz http://packetstormsecurity.org/files/111707/cintruder_v0.1.0.tar.gz http://packetstormsecurity.org/files/111707/CIntruder-0.1-CAPTCHA-Bypass.html Tue, 10 Apr 2012 04:14:40 GMT CIntruder version 0.1 is an automatic pentesting tool to bypass CAPTCHA. http://packetstormsecurity.org/files/109279/brute-pgsql-2012-01-30.c http://packetstormsecurity.org/files/109279/brute-pgsql-2012-01-30.c http://packetstormsecurity.org/files/109279/PgSql-Brute-Force.html Tue, 31 Jan 2012 12:13:11 GMT This is a small application built to demo the weakness in pgsql and networking. It is capable of running login attempts from multiple threads in parallel and can run up to 1024 concurrent connections. http://packetstormsecurity.org/files/109278/brute-http-2012-01-30.c http://packetstormsecurity.org/files/109278/brute-http-2012-01-30.c http://packetstormsecurity.org/files/109278/HTTP-Brute-Force.html Tue, 31 Jan 2012 12:12:12 GMT This is a small application built to test the performance of a http authentication system using a lot of concurrent connections. It can also be used to try lots of password against a http server. It is capable of using up to 1024 (or more using multiple processes). However with this amount it is capable or reducing internet connections to a crawl and also greatly increasing the load on the server. http://packetstormsecurity.org/files/108835/brute-mysql-2012-01-19.c http://packetstormsecurity.org/files/108835/brute-mysql-2012-01-19.c http://packetstormsecurity.org/files/108835/MySQL-Brute-Force-Tool.html Thu, 19 Jan 2012 23:43:02 GMT This is a small MySQL cracking tool capable of running login attempts from multiple threads in parallel. It is capable of 1024 concurrent connections. http://packetstormsecurity.org/files/108730/brute-pop3-2012-01-05.c http://packetstormsecurity.org/files/108730/brute-pop3-2012-01-05.c http://packetstormsecurity.org/files/108730/POP3-Password-Brute-Forcer.html Tue, 17 Jan 2012 00:57:08 GMT A small application built to test the performance of a pop3 authentication system using a lot of concurrent connections. It can also be used to try lots of password against a pop3 server. It is capable of using up to 1024 sessions (or more using multiple processes). However with this amount it is capable of reducing internet connections to a crawl and also greatly increasing the load on the server. http://packetstormsecurity.org/files/108346/extendedstay-5dollarcrack.txt http://packetstormsecurity.org/files/108346/extendedstay-5dollarcrack.txt http://packetstormsecurity.org/files/108346/Guestek-Oneview-Wireless-Cracker.html Wed, 04 Jan 2012 14:44:44 GMT Proof of concept WiFi cracking code for Guestek / Oneview systems as found in Extended Stay of America hotels. http://packetstormsecurity.org/files/108221/patator_v0.3.py.txt http://packetstormsecurity.org/files/108221/patator_v0.3.py.txt http://packetstormsecurity.org/files/108221/Patator-Brute-Forcer-0.3.html Thu, 29 Dec 2011 15:04:09 GMT Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage. When Medusa, Hydra or other brute-force tools fail to do what you want, Patator might be what you need. http://packetstormsecurity.org/files/107982/john-1.7.9-jumbo-5.tar.gz http://packetstormsecurity.org/files/107982/john-1.7.9-jumbo-5.tar.gz http://packetstormsecurity.org/files/107982/John-The-Ripper-1.7.9-Jumbo-5.html Mon, 19 Dec 2011 02:25:02 GMT John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes. On top of this, many other hash types are added with contributed patches, and some are added in John the Ripper Pro. http://packetstormsecurity.org/files/107601/password-generator.txt http://packetstormsecurity.org/files/107601/password-generator.txt http://packetstormsecurity.org/files/107601/Password-Generation-Script.html Wed, 07 Dec 2011 16:15:31 GMT This is a perl script that generates a list of passwords from user-supplied input on the command line. It enables a tester the ability to create various permutations of a given password for testing. http://packetstormsecurity.org/files/107421/oclHashcat-plus-0.06.7z http://packetstormsecurity.org/files/107421/oclHashcat-plus-0.06.7z http://packetstormsecurity.org/files/107421/oclHashcat-Advanced-GPU-Hash-Cracking-Utility-0.06.html Wed, 30 Nov 2011 23:45:07 GMT oclHashcat+ Advanced GPU hash cracking utility that includes the World's fastest md5crypt and phpass crackers and has the first GPGPU-based rule engine. Focuses on highly iterated modern hashes, single dictionary-based attacks, and more. Linux and Windows binaries are included. http://packetstormsecurity.org/files/107422/oclHashcat-lite-0.08.7z http://packetstormsecurity.org/files/107422/oclHashcat-lite-0.08.7z http://packetstormsecurity.org/files/107422/oclHashcat-lite-GPU-Hash-Cracking-Utility-0.08.html Wed, 30 Nov 2011 23:43:36 GMT oclHashcat-lite Advanced GPU hash cracking utility that includes the World's fastest MD4, MD5, SHA1, and SHA256 cracker. It supports up to 16 GPUs and include binaries for both Linux and Windows. http://packetstormsecurity.org/files/107420/oclHashcat-0.26.7z http://packetstormsecurity.org/files/107420/oclHashcat-0.26.7z http://packetstormsecurity.org/files/107420/oclHashcat-GPU-Hash-Cracking-Utility-0.26.html Wed, 30 Nov 2011 23:43:22 GMT oclHashcat GPU hash cracking utility that has multi-GPU and multi-hash support. It supports dictionary-based and mask-attacks for hybrid cracking. Linux and Windows binaries are included. http://packetstormsecurity.org/files/107333/john-1.7.9.tar.gz http://packetstormsecurity.org/files/107333/john-1.7.9.tar.gz http://packetstormsecurity.org/files/107333/John-The-Ripper-1.7.9.html Sun, 27 Nov 2011 18:09:38 GMT John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes. On top of this, many other hash types are added with contributed patches, and some are added in John the Ripper Pro. http://packetstormsecurity.org/files/106815/john-1.7.8-jumbo-8.tar.gz http://packetstormsecurity.org/files/106815/john-1.7.8-jumbo-8.tar.gz http://packetstormsecurity.org/files/106815/John-The-Ripper-1.7.8-Jumbo-8.html Thu, 10 Nov 2011 02:42:41 GMT John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes. On top of this, many other hash types are added with contributed patches, and some are added in John the Ripper Pro. http://packetstormsecurity.org/files/105345/sshtrix-0.0.2.tar.gz http://packetstormsecurity.org/files/105345/sshtrix-0.0.2.tar.gz http://packetstormsecurity.org/files/105345/SSHTrix-Multithreaded-SSH-Login-Cracker-0.0.2.html Tue, 27 Sep 2011 00:56:27 GMT sshtrix is a very fast multithreaded SSH login cracker. It supports SSHv1 and SSHv2. sshtrix was designed to automate rapid bruteforce attacks against SSH authentification screens. Unlike other public tools, the aim is to keep it simple, stable, fast and modular. With its clean code design, it is easy to extend the code to a framework or to fork it against protocols of your choice. http://packetstormsecurity.org/files/105291/john-1.7.8-jumbo-7.tar.gz http://packetstormsecurity.org/files/105291/john-1.7.8-jumbo-7.tar.gz http://packetstormsecurity.org/files/105291/John-The-Ripper-1.7.8-Jumbo-7.html Thu, 22 Sep 2011 05:56:59 GMT John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes. On top of this, many other hash types are added with contributed patches, and some are added in John the Ripper Pro. http://packetstormsecurity.org/files/105195/sshtrix-0.0.1.tar.gz http://packetstormsecurity.org/files/105195/sshtrix-0.0.1.tar.gz http://packetstormsecurity.org/files/105195/SSHTrix-Multithreaded-SSH-Login-Cracker-0.0.1.html Sun, 18 Sep 2011 00:43:33 GMT sshtrix is a very fast multithreaded SSH login cracker. It supports SSHv1 and SSHv2. sshtrix was designed to automate rapid bruteforce attacks against SSH authentification screens. Unlike other public tools, the aim is to keep it simple, stable, fast and modular. With its clean code design, it is easy to extend the code to a framework or to fork it against protocols of your choice.