Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 03:56:56 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1359788251&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2FUNIX%2Fsecurity%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1359788251.1338177416.1338177416.1338177416.1%3B%2B__utmz%3D32867617.1338177416.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/101019/ArpON-2.2.tar.gz http://packetstormsecurity.org/files/101019/ArpON-2.2.tar.gz http://packetstormsecurity.org/files/101019/ArpON-Arp-Handler-Inspection-2.2.html Sun, 01 May 2011 17:22:22 GMT ArpON (Arp handler inspectiON) is a portable ARP handler. It detects and blocks all ARP poisoning/spoofing attacks with the Static Arp Inspection (SARPI) and Dynamic Arp Inspection (DARPI) approaches on switched/hubbed LAN with/without DHCP protocol. http://packetstormsecurity.org/files/100056/arpatk-1.0.tar.gz http://packetstormsecurity.org/files/100056/arpatk-1.0.tar.gz http://packetstormsecurity.org/files/100056/ArpAtk-ARP-Poisoner-1.0.html Mon, 04 Apr 2011 05:05:05 GMT ArpAtk is a simple tool for leveraging ARP poisoning. Written to work on both Linux and FreeBSD. http://packetstormsecurity.org/files/97429/graudit-1.9.tar.gz http://packetstormsecurity.org/files/97429/graudit-1.9.tar.gz http://packetstormsecurity.org/files/97429/GRAudit-Grep-Auditing-Tool-1.9.html Tue, 11 Jan 2011 15:22:22 GMT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible. http://packetstormsecurity.org/files/97351/graudit-1.8.tar.gz http://packetstormsecurity.org/files/97351/graudit-1.8.tar.gz http://packetstormsecurity.org/files/97351/GRAudit-Grep-Auditing-Tool-1.8.html Sat, 08 Jan 2011 20:10:22 GMT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible. http://packetstormsecurity.org/files/97206/netspoc-3.2.tar.gz http://packetstormsecurity.org/files/97206/netspoc-3.2.tar.gz http://packetstormsecurity.org/files/97206/Network-Security-Policy-Compiler-3.2.html Mon, 03 Jan 2011 11:11:11 GMT Network Security Policy Compiler (NetSPoC) is a tool for security management of large networks with different security domains. It generates configuration files for packet filters controlling the borders of security domains. It provides its own language for describing security policy and the topology of a network. The security policy is a set of rules that state which packets are allowed to pass the network and which are not. NetSPoC is topology aware - a rule for traffic from A to B is automatically applied to all managed packet filters on the path from A to B. http://packetstormsecurity.org/files/92320/graudit-1.7.tar.gz http://packetstormsecurity.org/files/92320/graudit-1.7.tar.gz http://packetstormsecurity.org/files/92320/GRAudit-Grep-Auditing-Tool-1.7.html Tue, 03 Aug 2010 06:13:07 GMT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible. http://packetstormsecurity.org/files/90427/ArpON-2.0.tar.gz http://packetstormsecurity.org/files/90427/ArpON-2.0.tar.gz http://packetstormsecurity.org/files/90427/ArpON-Arp-Handler-Inspection-2.0.html Wed, 09 Jun 2010 01:02:39 GMT ArpON (Arp handler inspectiON) is a portable ARP handler. It detects and blocks all ARP poisoning/spoofing attacks with the Static Arp Inspection (SARPI) and Dynamic Arp Inspection (DARPI) approaches on switched/hubbed LAN with/without DHCP protocol. http://packetstormsecurity.org/files/89554/graudit-1.6.tar.gz http://packetstormsecurity.org/files/89554/graudit-1.6.tar.gz http://packetstormsecurity.org/files/89554/GRAudit-Grep-Auditing-Tool-1.6.html Fri, 14 May 2010 23:48:41 GMT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible. http://packetstormsecurity.org/files/82922/graudit-1.4.tar.gz http://packetstormsecurity.org/files/82922/graudit-1.4.tar.gz http://packetstormsecurity.org/files/82922/GRAudit-Grep-Auditing-Tool-1.4.html Wed, 25 Nov 2009 22:54:03 GMT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible. http://packetstormsecurity.org/files/82429/graudit-1.3.tar.gz http://packetstormsecurity.org/files/82429/graudit-1.3.tar.gz http://packetstormsecurity.org/files/82429/GRAudit-Grep-Auditing-Tool-1.3.html Tue, 03 Nov 2009 05:05:52 GMT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible. http://packetstormsecurity.org/files/81534/graudit-1.2.tar.gz http://packetstormsecurity.org/files/81534/graudit-1.2.tar.gz http://packetstormsecurity.org/files/81534/GRAudit-Grep-Auditing-Tool-1.2.html Tue, 22 Sep 2009 20:59:14 GMT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible. http://packetstormsecurity.org/files/81327/graudit-1.1.tar.bz2 http://packetstormsecurity.org/files/81327/graudit-1.1.tar.bz2 http://packetstormsecurity.org/files/81327/Graudit-Source-Code-Analysis-Tool-1.1.html Wed, 16 Sep 2009 06:42:44 GMT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible. http://packetstormsecurity.org/files/74274/ip-array_0.05.74d.tar.gz http://packetstormsecurity.org/files/74274/ip-array_0.05.74d.tar.gz http://packetstormsecurity.org/files/74274/IP-Array-Linux-IPTables-Firewall-Script.html Fri, 23 Jan 2009 20:14:11 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP. http://packetstormsecurity.org/files/73634/ip-array_0.05.74c.tar.gz http://packetstormsecurity.org/files/73634/ip-array_0.05.74c.tar.gz http://packetstormsecurity.org/files/73634/IP-Array-IPTables-Firewall-Script.html Wed, 07 Jan 2009 01:47:26 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP. http://packetstormsecurity.org/files/73495/zerowine-0.0.1.tar.gz http://packetstormsecurity.org/files/73495/zerowine-0.0.1.tar.gz http://packetstormsecurity.org/files/73495/Project-Zero-Wine-Malware-Analysis.html Wed, 31 Dec 2008 15:53:10 GMT Zero wine is an open source research project to dynamically analyze the behavior of malware. Zero wine just runs the malware using WINE in a safe virtual sandbox (in an isolated environment) collecting information about the APIs called by the program. http://packetstormsecurity.org/files/73390/star-1.0.tar.gz http://packetstormsecurity.org/files/73390/star-1.0.tar.gz http://packetstormsecurity.org/files/73390/STARS-A-RATS-Front-End-Written-In-Python.html Tue, 30 Dec 2008 23:31:59 GMT STAR is a front-end written in Python for the Rough Auditing Tool for Security (RATS). This is the source release. Simply run "python setup.py install" and then run "star". http://packetstormsecurity.org/files/73334/ip-array_0.05.74b.tar.gz http://packetstormsecurity.org/files/73334/ip-array_0.05.74b.tar.gz http://packetstormsecurity.org/files/73334/IP-Array-IPTables-Firewall-Script.html Tue, 30 Dec 2008 20:26:57 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP. http://packetstormsecurity.org/files/73069/ip-array_0.05.74.tar.gz http://packetstormsecurity.org/files/73069/ip-array_0.05.74.tar.gz http://packetstormsecurity.org/files/73069/IP-Array-Firewall-Script.html Wed, 17 Dec 2008 02:41:37 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP. http://packetstormsecurity.org/files/68803/ArpON-1.44.tar.gz http://packetstormsecurity.org/files/68803/ArpON-1.44.tar.gz http://packetstormsecurity.org/files/68803/ArpON-1.44.tar.gz.html Mon, 04 Aug 2008 21:52:25 GMT ArpON (Arp handler inspectiON) is a portable ARP handler. It detects and blocks all ARP poisoning/spoofing attacks with the Static Arp Inspection (SARPI) and Dynamic Arp Inspection (DARPI) approaches on switched/hubbed LAN with/without DHCP protocol. http://packetstormsecurity.org/files/66894/ArpON-1.10.tar.gz http://packetstormsecurity.org/files/66894/ArpON-1.10.tar.gz http://packetstormsecurity.org/files/66894/ArpON-1.10.tar.gz.html Mon, 02 Jun 2008 21:31:53 GMT ArpON (Arp handler inspectiON) is a portable ARP handler. It detects and blocks all ARP poisoning/spoofing attacks with the Static Arp Inspection (SARPI) and Dynamic Arp Inspection (DARPI) approaches on switched/hubbed LAN with/without DHCP protocol. http://packetstormsecurity.org/files/62255/netspoc-3.1.tar.gz http://packetstormsecurity.org/files/62255/netspoc-3.1.tar.gz http://packetstormsecurity.org/files/62255/netspoc-3.1.tar.gz.html Thu, 03 Jan 2008 18:24:14 GMT Network Security Policy Compiler (NetSPoC) is a tool for security management of large networks with different security domains. It generates configuration files for packet filters controlling the borders of security domains. It provides its own language for describing security policy and the topology of a network. The security policy is a set of rules that state which packets are allowed to pass the network and which are not. NetSPoC is topology aware - a rule for traffic from A to B is automatically applied to all managed packet filters on the path from A to B. http://packetstormsecurity.org/files/53809/flawfinder-1.27.tar.gz http://packetstormsecurity.org/files/53809/flawfinder-1.27.tar.gz http://packetstormsecurity.org/files/53809/flawfinder-1.27.tar.gz.html Sat, 20 Jan 2007 04:10:34 GMT Flawfinder searches through source code for potential security flaws, listing potential security flaws sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function. Secure Programming HOWTO here. http://packetstormsecurity.org/files/50930/arp-sk-0.0.16.tgz http://packetstormsecurity.org/files/50930/arp-sk-0.0.16.tgz http://packetstormsecurity.org/files/50930/arp-sk-0.0.16.tgz.html Sat, 14 Oct 2006 00:27:52 GMT Arp-sk is an ARP packet generator for Unix designed to illustrate ARP protocol flaws and applications such as ARP cache poisoning and MAC spoofing. It gives complete control of link and network level data. See arp-sk.org for further information. http://packetstormsecurity.org/files/49332/ip-array_0.05.72.tar.gz http://packetstormsecurity.org/files/49332/ip-array_0.05.72.tar.gz http://packetstormsecurity.org/files/49332/ip-array_0.05.72.tar.gz.html Sun, 27 Aug 2006 06:55:57 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP. http://packetstormsecurity.org/files/46851/Impacket-0.9.6.0.tar.gz http://packetstormsecurity.org/files/46851/Impacket-0.9.6.0.tar.gz http://packetstormsecurity.org/files/46851/Impacket-0.9.6.0.tar.gz.html Tue, 30 May 2006 00:08:08 GMT Impacket is a collection of Python classes for working with network protocols. Impacket is mostly focused on providing low-level programmatic access to the packets, however some protocols (for instance NMB and SMB) are implemented in a higher level as a foundation for other protocols. Packets can be constructed from scratch, as well as parsed from raw data, and the object oriented API makes it simple to work with deep hierarchies of protocols. Impacket is most useful when used together with a packet capture utility or package such as Pcapy, an object oriented Python extension for capturing network packets.