Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:01:58 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2106635480&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2FWin%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2106635480.1338177718.1338177718.1338177718.1%3B%2B__utmz%3D32867617.1338177718.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/111542/HookAnalyser1.4.zip http://packetstormsecurity.org/files/111542/HookAnalyser1.4.zip http://packetstormsecurity.org/files/111542/Hook-Analyser-Malware-Tool-1.4.html Wed, 04 Apr 2012 14:32:02 GMT Hook Analyser is a hook tool which can be potentially helpful in reversing applications and analysing malware. It can hook to an API in a process and search for a pattern in memory or dump the buffer. http://packetstormsecurity.org/files/108312/TMACv6_Setup.zip http://packetstormsecurity.org/files/108312/TMACv6_Setup.zip http://packetstormsecurity.org/files/108312/Technitium-MAC-Address-Changer.html Tue, 03 Jan 2012 14:04:37 GMT Technitium MAC Address Changer allows you to change Media Access Control (MAC) Address of your Network Interface Card (NIC) irrespective to your NIC manufacturer or its driver. It has a very simple user interface and provides ample information regarding each NIC in the machine. http://packetstormsecurity.org/files/107584/ostinato-src-0.5.tar.gz http://packetstormsecurity.org/files/107584/ostinato-src-0.5.tar.gz http://packetstormsecurity.org/files/107584/Ostinato-Traffic-Generator-0.5-Source-Code.html Wed, 07 Dec 2011 01:48:00 GMT Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. This is the source code release. http://packetstormsecurity.org/files/107583/ostinato-bin-win32-0.5.zip http://packetstormsecurity.org/files/107583/ostinato-bin-win32-0.5.zip http://packetstormsecurity.org/files/107583/Ostinato-Traffic-Generator-0.5-Windows-Binary.html Wed, 07 Dec 2011 01:47:58 GMT Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. This is the Windows binary release. http://packetstormsecurity.org/files/107582/ostinato-bin-osx-universal-0.5.dmg.gz http://packetstormsecurity.org/files/107582/ostinato-bin-osx-universal-0.5.dmg.gz http://packetstormsecurity.org/files/107582/Ostinato-Traffic-Generator-0.5-Mac-OS-X.html Wed, 07 Dec 2011 01:47:04 GMT Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. This is the Mac OS X release. http://packetstormsecurity.org/files/106966/HookAnalyser1.3.zip http://packetstormsecurity.org/files/106966/HookAnalyser1.3.zip http://packetstormsecurity.org/files/106966/Hook-Analyser-Malware-Tool-1.3.html Mon, 14 Nov 2011 15:53:20 GMT Hook analyser is a hook tool which can be potentially helpful in reversing applications and analysing malware. It can hook to an API in a process and search for a pattern in memory or dump the buffer. http://packetstormsecurity.org/files/106154/Agnitio-2.1.tgz http://packetstormsecurity.org/files/106154/Agnitio-2.1.tgz http://packetstormsecurity.org/files/106154/Agnitio-2.1.html Mon, 24 Oct 2011 17:46:17 GMT Agnitio is a tool to help developers and security professionals conduct manual security code reviews in a consistent and repeatable way. Agnitio aims to replace the adhoc nature of manual security code review documentation, create an audit trail and reporting. Both x86 and x64 versions are included in this archive. http://packetstormsecurity.org/files/105027/HookAnalyser.zip http://packetstormsecurity.org/files/105027/HookAnalyser.zip http://packetstormsecurity.org/files/105027/Hook-Analyser-Malware-Tool.html Tue, 13 Sep 2011 14:29:22 GMT Hook analyser is a hook tool which can be potentially helpful in reversing applications and analysing malware. It can hook to an API in a process and search for a pattern in memory or dump the buffer. http://packetstormsecurity.org/files/104877/regdecoderR19.zip http://packetstormsecurity.org/files/104877/regdecoderR19.zip http://packetstormsecurity.org/files/104877/Registry-Decoder-Digital-Forensics-Tool.html Thu, 08 Sep 2011 01:51:53 GMT Digital forensics deals with the analysis of artifacts on all types of digital devices. One of the most prevalent analysis techniques performed is that of the registry hives contained in Microsoft Windows operating systems. Registry Decoder was developed with the purpose of providing a single tool for the acquisition, analysis, and reporting of registry contents. http://packetstormsecurity.org/files/103731/Agnitio-2.0.tgz http://packetstormsecurity.org/files/103731/Agnitio-2.0.tgz http://packetstormsecurity.org/files/103731/Agnitio-2.0.html Thu, 04 Aug 2011 23:26:08 GMT Agnitio is a tool to help developers and security professionals conduct manual security code reviews in a consistent and repeatable way. Agnitio aims to replace the adhoc nature of manual security code review documentation, create an audit trail and reporting. http://packetstormsecurity.org/files/102793/del2info-0.1.2.tar.gz http://packetstormsecurity.org/files/102793/del2info-0.1.2.tar.gz http://packetstormsecurity.org/files/102793/del2info-Windows-Analyzer-0.1.2.html Mon, 04 Jul 2011 01:01:01 GMT The del2info utility was written to analyze Windows Recycle Bin INFO2 and $I?????? files. It can extract file deletion time, original path, and size of deleted files and whether they have been moved from the Recycle Bin. It supports files from Windows 2000 to 7. http://packetstormsecurity.org/files/102672/del2info-0.1.tar.gz http://packetstormsecurity.org/files/102672/del2info-0.1.tar.gz http://packetstormsecurity.org/files/102672/del2info-Windows-Analyzer-0.1.html Thu, 30 Jun 2011 06:03:26 GMT The del2info utility was written to analyze Windows Recycle Bin INFO2 and $I?????? files. It can extract file deletion time, original path, and size of deleted files and whether they have been moved from the Recycle Bin. It supports files from Windows 2000 to 7. http://packetstormsecurity.org/files/102443/reglookup-src-1.0.0.tar.gz http://packetstormsecurity.org/files/102443/reglookup-src-1.0.0.tar.gz http://packetstormsecurity.org/files/102443/RegLookup-Registry-Parser-1.0.0.html Mon, 20 Jun 2011 08:35:37 GMT RegLookup is a small command line utility for parsing and searching registry files from Windows NT and later. http://packetstormsecurity.org/files/101828/HttpConsole1.0.0.0.zip http://packetstormsecurity.org/files/101828/HttpConsole1.0.0.0.zip http://packetstormsecurity.org/files/101828/HTTPConsole-1.0.0.0-For-Windows.html Tue, 31 May 2011 13:43:04 GMT This is an HTTP console to remote administer Windows hosts with a browser-based, AJAX-enabled, command-line interface. Server requires .NET 3.5. Written in C# and JavaScript. http://packetstormsecurity.org/files/101015/reglookup-src-0.99.0.tar.gz http://packetstormsecurity.org/files/101015/reglookup-src-0.99.0.tar.gz http://packetstormsecurity.org/files/101015/RegLookup-Registry-Parser-0.99.0.html Mon, 02 May 2011 18:04:33 GMT RegLookup is a small command line utility for parsing and searching registry files from Windows NT and later. http://packetstormsecurity.org/files/100553/wce_v1_2.tgz http://packetstormsecurity.org/files/100553/wce_v1_2.tgz http://packetstormsecurity.org/files/100553/Windows-Credential-Editor-1.2.html Mon, 18 Apr 2011 22:22:22 GMT Windows Credentials Editor (WCE) allows to list logon sessions and add, change, list and delete associated credentials (ex.: LM/NT hashes and Kerberos tickets). This can be used, for example, to perform pass-the-hash on Windows, obtain NT/LM hashes from memory (from interactive logons, services, remote desktop connections, etc.) which can be used to perform further attacks, obtain Kerberos tickets and reuse them in other Windows or Unix systems. http://packetstormsecurity.org/files/100289/regstringwiper.exe http://packetstormsecurity.org/files/100289/regstringwiper.exe http://packetstormsecurity.org/files/100289/Registry-String-Wiper.html Sun, 10 Apr 2011 12:11:11 GMT This windows binary is a lightweight tool for removing strings in the Windows registry. http://packetstormsecurity.org/files/99336/wce_v1_1.tgz http://packetstormsecurity.org/files/99336/wce_v1_1.tgz http://packetstormsecurity.org/files/99336/Windows-Credential-Editor-1.1.html Tue, 15 Mar 2011 20:40:19 GMT Windows Credentials Editor (WCE) allows you to list logon sessions and add, change, list and delete associated credentials (ex.: LM/NT hashes). This can be used, for example, to perform pass-the-hash on Windows and also obtain NT/LM hashes from memory (credentials not stored locally including domain credentials from interactive logons, services, remote desktop connections, etc.) which can be used in further attacks. http://packetstormsecurity.org/files/98456/StreamArmor-1.5.zip http://packetstormsecurity.org/files/98456/StreamArmor-1.5.zip http://packetstormsecurity.org/files/98456/StreamArmor-1.5.html Mon, 14 Feb 2011 10:11:11 GMT StreamArmor is a sophisticated tool for discovering hidden alternate data streams (ADS) that can also clean them completely from the system. StreamArmor comes with a fast multi-threaded ADS scanner which can recursively scan over the entire system and quickly uncover all hidden streams. All such discovered streams are represented using specific color patterns based on threat level which makes it easy for human eye to distinguish between suspicious and normal streams. http://packetstormsecurity.org/files/96626/BinPack-2.0.1-win32bin.zip http://packetstormsecurity.org/files/96626/BinPack-2.0.1-win32bin.zip http://packetstormsecurity.org/files/96626/BinPack-Portable-Security-Environment-2.0.1.html Sat, 11 Dec 2010 16:15:54 GMT BinPack is a portable security environment for Windows. With 100+ security tools in the repository, you can easily convert any system into a hacking platform in minutes. http://packetstormsecurity.org/files/96699/ostinato-bin-win32-0.3.zip http://packetstormsecurity.org/files/96699/ostinato-bin-win32-0.3.zip http://packetstormsecurity.org/files/96699/Ostinato-Traffic-Generator-0.3-Windows-Binary.html Fri, 10 Dec 2010 19:22:11 GMT Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. This is the windows binary release. http://packetstormsecurity.org/files/96714/ostinato-bin-osx-i386-0.3.dmg.gz http://packetstormsecurity.org/files/96714/ostinato-bin-osx-i386-0.3.dmg.gz http://packetstormsecurity.org/files/96714/Ostinato-Traffic-Generator-0.3-Mac-OS-X.html Fri, 10 Dec 2010 19:22:10 GMT Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. This is the Mac OS X release. http://packetstormsecurity.org/files/96622/ostinato-src-0.3.tar.gz http://packetstormsecurity.org/files/96622/ostinato-src-0.3.tar.gz http://packetstormsecurity.org/files/96622/Ostinato-Traffic-Generator-0.3-Source-Code.html Fri, 10 Dec 2010 19:22:10 GMT Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. http://packetstormsecurity.org/files/96197/MioStar_0_2.zip http://packetstormsecurity.org/files/96197/MioStar_0_2.zip http://packetstormsecurity.org/files/96197/MioStar-Data-Extration-Tool-0.2.html Mon, 29 Nov 2010 03:03:11 GMT MioStar is an offspring of the SkypeTrojan. Unlike the SkypeTrojan MioStar puts its focus on hooking functions that deal with sensitive data like account information or network traffic. Currently it extracts passwords from software such as Safari, Google Chrome, GoogleTalk, Microsoft Live Messenger, Microsoft Live Mail and more. http://packetstormsecurity.org/files/93064/winappdbg-1.4.tar.bz2 http://packetstormsecurity.org/files/93064/winappdbg-1.4.tar.bz2 http://packetstormsecurity.org/files/93064/WinAppDbg-Python-Module-1.4.html Thu, 26 Aug 2010 03:42:01 GMT The WinAppDbg python module allows developers to quickly add Windows application debugging facilities to your Python scripts.