Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:25:48 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1265964005&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2FUNIX%2Faudit%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1265964005.1338189948.1338189948.1338189948.1%3B%2B__utmz%3D32867617.1338189948.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/112335/rkhunter-1.4.0.tar.gz http://packetstormsecurity.org/files/112335/rkhunter-1.4.0.tar.gz http://packetstormsecurity.org/files/112335/Rootkit-Hunter-1.4.0.html Tue, 01 May 2012 21:24:57 GMT Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix variety except Solaris and NetBSD. http://packetstormsecurity.org/files/100276/sqlmap-0.9.tar.gz http://packetstormsecurity.org/files/100276/sqlmap-0.9.tar.gz http://packetstormsecurity.org/files/100276/SQLMAP-Automatic-SQL-Injection-Tool-0.9.html Mon, 11 Apr 2011 14:52:43 GMT sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more. http://packetstormsecurity.org/files/100264/sara-7.9.2a.tgz http://packetstormsecurity.org/files/100264/sara-7.9.2a.tgz http://packetstormsecurity.org/files/100264/Security-Auditors-Research-Assistant-SARA-7.9.2a.html Sun, 10 Apr 2011 19:42:55 GMT Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated twice a month to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins, open shares, and much more. http://packetstormsecurity.org/files/98225/unhide-20110113.tgz http://packetstormsecurity.org/files/98225/unhide-20110113.tgz http://packetstormsecurity.org/files/98225/Unhide-Forensic-Tool-20110113.html Mon, 07 Feb 2011 15:30:22 GMT Unhide is a forensic tool to find hidden processes and TCP/UDP ports that are hidden via rootkits, LKMs, or other techniques. http://packetstormsecurity.org/files/95937/rkhunter-1.3.8.tar.gz http://packetstormsecurity.org/files/95937/rkhunter-1.3.8.tar.gz http://packetstormsecurity.org/files/95937/Rootkit-Hunter-1.3.8.html Thu, 18 Nov 2010 00:42:04 GMT Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix variety except Solaris and NetBSD. http://packetstormsecurity.org/files/89840/Net-Nessus-XMLRPC-0.30.tar.gz http://packetstormsecurity.org/files/89840/Net-Nessus-XMLRPC-0.30.tar.gz http://packetstormsecurity.org/files/89840/Nessus-XMLRPC-Perl-Interface-0.30.html Sat, 22 May 2010 19:42:08 GMT Net::Nessus::XMLRPC is Perl interface for communication with the Nessus scanner over XMLRPC. It lets you start, stop, pause, and resume scans. It can display the progress and status of scans, download reports, etc. http://packetstormsecurity.org/files/88169/Net-Nessus-XMLRPC-0.20.tar.gz http://packetstormsecurity.org/files/88169/Net-Nessus-XMLRPC-0.20.tar.gz http://packetstormsecurity.org/files/88169/Nessus-XMLRPC-Perl-Interface-0.20.html Wed, 07 Apr 2010 02:34:28 GMT Net::Nessus::XMLRPC is Perl interface for communication with the Nessus scanner over XMLRPC. It lets you start, stop, pause, and resume scans. It can display the progress and status of scans, download reports, etc. http://packetstormsecurity.org/files/87972/Net-Nessus-XMLRPC-0.10.tar.gz http://packetstormsecurity.org/files/87972/Net-Nessus-XMLRPC-0.10.tar.gz http://packetstormsecurity.org/files/87972/Nessus-XMLRPC-Perl-Interface-0.10.html Fri, 02 Apr 2010 00:52:27 GMT Net::Nessus::XMLRPC is Perl interface for communication with the Nessus scanner over XMLRPC. It lets you start, stop, pause, and resume scans. It can display the progress and status of scans, download reports, etc. http://packetstormsecurity.org/files/87522/Net-Nessus-XMLRPC-0.04.tar.gz http://packetstormsecurity.org/files/87522/Net-Nessus-XMLRPC-0.04.tar.gz http://packetstormsecurity.org/files/87522/Nessus-XMLRPC-Perl-Interface.html Mon, 22 Mar 2010 22:44:14 GMT Net::Nessus::XMLRPC is Perl interface for communication with the Nessus scanner over XMLRPC. It lets you start, stop, pause, and resume scans. It can display the progress and status of scans, download reports, etc. http://packetstormsecurity.org/files/87284/sqlmap-0.8.tar.gz http://packetstormsecurity.org/files/87284/sqlmap-0.8.tar.gz http://packetstormsecurity.org/files/87284/SQLMAP-Automatic-SQL-Injection-Tool-0.8.html Tue, 16 Mar 2010 03:12:07 GMT sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more. http://packetstormsecurity.org/files/86989/nessus-xmlrpc-0.3.tar.gz http://packetstormsecurity.org/files/86989/nessus-xmlrpc-0.3.tar.gz http://packetstormsecurity.org/files/86989/Nessus-XML-RPC-Ruby-Library-0.3.html Mon, 08 Mar 2010 22:17:39 GMT nessus-xmlrpc is a Ruby library for the Nessus XML-RPC interface. It comes with an example command line program that shows how easy it is to interact with the Nessus scanner. http://packetstormsecurity.org/files/86771/nessus-xmlrpc-0.2.tar.gz http://packetstormsecurity.org/files/86771/nessus-xmlrpc-0.2.tar.gz http://packetstormsecurity.org/files/86771/Nessus-XML-RPC-Ruby-Library-0.2.html Sun, 28 Feb 2010 19:55:02 GMT nessus-xmlrpc is a Ruby library for the Nessus XML-RPC interface. It comes with an example command line program that shows how easy it is to interact with the Nessus scanner. http://packetstormsecurity.org/files/83281/rkhunter-1.3.6.tar.gz http://packetstormsecurity.org/files/83281/rkhunter-1.3.6.tar.gz http://packetstormsecurity.org/files/83281/Rootkit-Hunter-1.3.6.html Mon, 30 Nov 2009 22:01:27 GMT Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix variety except Solaris and NetBSD. http://packetstormsecurity.org/files/83943/chkrootkit-0.49.tar.gz http://packetstormsecurity.org/files/83943/chkrootkit-0.49.tar.gz http://packetstormsecurity.org/files/83943/Check-Rootkit-0.49.html Thu, 30 Jul 2009 16:01:02 GMT Chkrootkit checks locally for signs of a rootkit. Chkrootkit includes ifpromisc.c to check and see if the interface is in promisc mode, chklastlog.c to check lastlog for deletions, and chkwtmp.c to check wtmp for deletions, strings.c for quick and dirty strings replacement, check_wtmpx.c to check for wtmpx deletions and the files chkproc.c and chkdirs.c to check for LKM trojans. Tested on Linux 2.0.x, 2.2.x and 2.4.x, FreeBSD 2.2.x, 3.x, 4.x, and 5.x, BSDI, OpenBSD 2.6, 2.7, 2.8, 2.9, 3.0 and 3.1, NetBSD 1.5.2 and Solaris 2.5.1, 2.6 and 8.0, and HP-UX 11. http://packetstormsecurity.org/files/79674/sqlmap-0.7.tar.gz http://packetstormsecurity.org/files/79674/sqlmap-0.7.tar.gz http://packetstormsecurity.org/files/79674/SQLMAP-Automatic-SQL-Injection-Tool.html Tue, 28 Jul 2009 01:10:34 GMT sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more. http://packetstormsecurity.org/files/76953/curuncula.tgz http://packetstormsecurity.org/files/76953/curuncula.tgz http://packetstormsecurity.org/files/76953/Curuncula-Rootkit-Detection.html Thu, 23 Apr 2009 20:14:43 GMT Curuncula is a tool shipped as a loadable kernel module that aims to detect rootkits based on the Intel debugging support facilities. Rootkits that set the GD access flag are also detected. It makes use of the "last branch recording" mechanism provided by the Intel architecture. Support both the 2.4 and 2.6 Linux kernels. http://packetstormsecurity.org/files/76945/sqlmap-0.7rc1.tar.gz http://packetstormsecurity.org/files/76945/sqlmap-0.7rc1.tar.gz http://packetstormsecurity.org/files/76945/SQLMAP-Automatic-SQL-Injection-Tool.html Wed, 22 Apr 2009 21:28:56 GMT sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more. http://packetstormsecurity.org/files/74660/sqlmap-0.6.4.tar.gz http://packetstormsecurity.org/files/74660/sqlmap-0.6.4.tar.gz http://packetstormsecurity.org/files/74660/SQLMAP-Automatic-SQL-Injection-Tool.html Wed, 04 Feb 2009 19:05:48 GMT sqlmap is an open source command-line automatic SQL injection tool developed in Python. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specific DBMS tables/columns, run his own SQL statement, read specific files on the file system and more. http://packetstormsecurity.org/files/73510/rkhunter-1.3.4.tar.gz http://packetstormsecurity.org/files/73510/rkhunter-1.3.4.tar.gz http://packetstormsecurity.org/files/73510/Rootkit-Hunter-1.3.4-Is-Released.html Wed, 31 Dec 2008 20:24:50 GMT Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix variety except Solaris and NetBSD. http://packetstormsecurity.org/files/73197/sqlmap-0.6.3.tar.gz http://packetstormsecurity.org/files/73197/sqlmap-0.6.3.tar.gz http://packetstormsecurity.org/files/73197/SQLMAP-Automatic-SQL-Injection-Tool.html Mon, 22 Dec 2008 00:32:02 GMT sqlmap is an automatic SQL injection tool developed in Python. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specific DBMS tables/columns, run his own SQL SELECT statement, read specific files on the file system and much more. http://packetstormsecurity.org/files/71567/sqlmap-0.6.2.tar.gz http://packetstormsecurity.org/files/71567/sqlmap-0.6.2.tar.gz http://packetstormsecurity.org/files/71567/SQLMAP-Automatic-SQL-Injection-Tool.html Wed, 05 Nov 2008 06:31:33 GMT sqlmap is an automatic SQL injection tool developed in Python. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specific DBMS tables/columns, run his own SQL SELECT statement, read specific files on the file system and much more. http://packetstormsecurity.org/files/71066/sqlmap-0.6.1.tar.gz http://packetstormsecurity.org/files/71066/sqlmap-0.6.1.tar.gz http://packetstormsecurity.org/files/71066/SQLMAP-Automatic-SQL-Injection-Tool.html Tue, 21 Oct 2008 00:21:48 GMT sqlmap is an automatic SQL injection tool developed in Python. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specific DBMS tables/columns, run his own SQL SELECT statement, read specific files on the file system and much more. http://packetstormsecurity.org/files/69580/sqlmap-0.6.tar.gz http://packetstormsecurity.org/files/69580/sqlmap-0.6.tar.gz http://packetstormsecurity.org/files/69580/SQLMAP-Automatic-SQL-Injection-Tool.html Wed, 03 Sep 2008 15:54:30 GMT sqlmap is an automatic SQL injection tool developed in Python. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specific DBMS tables/columns, run his own SQL SELECT statement, read specific files on the file system and much more. http://packetstormsecurity.org/files/69465/sara-7.8.1.tgz http://packetstormsecurity.org/files/69465/sara-7.8.1.tgz http://packetstormsecurity.org/files/69465/sara-7.8.1.tgz.html Fri, 29 Aug 2008 05:12:37 GMT Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated twice a month to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins, open shares, and much more. http://packetstormsecurity.org/files/68020/sara-7.5.7.tgz http://packetstormsecurity.org/files/68020/sara-7.5.7.tgz http://packetstormsecurity.org/files/68020/sara-7.5.7.tgz.html Thu, 10 Jul 2008 05:41:56 GMT Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated twice a month to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins, open shares, and much more.