Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:15:29 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2008674989&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Fcrypt%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2008674989.1338178529.1338178529.1338178529.1%3B%2B__utmz%3D32867617.1338178529.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/113060/Hyperion-1.0.zip http://packetstormsecurity.org/files/113060/Hyperion-1.0.zip http://packetstormsecurity.org/files/113060/Hyperion-Runtime-Encrypter-1.0.html Sat, 26 May 2012 21:11:11 GMT Hyperion is a runtime encrypter for 32-bit portable executables. It is a reference implementation and bases on the paper "Hyperion: Implementation of a PE-Crypter". http://packetstormsecurity.org/files/112881/libssh2-1.4.2.tar.gz http://packetstormsecurity.org/files/112881/libssh2-1.4.2.tar.gz http://packetstormsecurity.org/files/112881/libssh2-C-Library-1.4.2.html Sat, 19 May 2012 01:37:12 GMT libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS, SECSH-USERAUTH, SECSH-CONNECTION, SECSH-ARCH, SECSH-FILEXFER, SECSH-DHGEX, SECSH-NUMBERS, and SECSH-PUBLICKEY. http://packetstormsecurity.org/files/112648/sslsplit-0.4.4.tar.bz2 http://packetstormsecurity.org/files/112648/sslsplit-0.4.4.tar.bz2 http://packetstormsecurity.org/files/112648/SSLsplit-0.4.4.html Sat, 12 May 2012 18:22:22 GMT SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing. http://packetstormsecurity.org/files/112576/video_entropyd-2.0.tgz http://packetstormsecurity.org/files/112576/video_entropyd-2.0.tgz http://packetstormsecurity.org/files/112576/Video-Entropyd-2.0.html Thu, 10 May 2012 03:45:21 GMT video-entropyd is a program to add entropy data from video4linux devices to the kernel random driver. http://packetstormsecurity.org/files/112447/strongswan-4.6.3.tar.gz http://packetstormsecurity.org/files/112447/strongswan-4.6.3.tar.gz http://packetstormsecurity.org/files/112447/strongSwan-IPsec-Implementation-4.6.3.html Thu, 03 May 2012 22:54:20 GMT strongSwan is a complete IPsec implementation for the Linux, Android, Maemo, FreeBSD, and Mac OS X operating systems. It interoperates with with most other IPsec-based VPN products via the IKEv2 or IKEv1 key exchange protocols. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A rich choice of modular plugins adds additional features like Trusted Network Connect or advanced cryptographical algorithms. http://packetstormsecurity.org/files/112024/openssl-1.0.1a.tar.gz http://packetstormsecurity.org/files/112024/openssl-1.0.1a.tar.gz http://packetstormsecurity.org/files/112024/OpenSSL-Toolkit-1.0.1a.html Fri, 20 Apr 2012 06:52:00 GMT OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. http://packetstormsecurity.org/files/111372/cryptmount-4.3.tar.gz http://packetstormsecurity.org/files/111372/cryptmount-4.3.tar.gz http://packetstormsecurity.org/files/111372/cryptmount-Filesystem-Manager-4.3.html Fri, 30 Mar 2012 00:18:55 GMT cryptmount is a utility for creating and managing secure filing systems on GNU/Linux systems. After initial setup, it allows any user to mount or unmount filesystems on demand, solely by providing the decryption password, with any system devices needed to access the filing system being configured automatically. A wide variety of encryption schemes (provided by the kernel dm-crypt system and the libgcrypt library) can be used to protect both the filesystem and the access key. The protected filing systems can reside in either ordinary files or disk partitions. The package also supports encrypted swap partitions, and automatic configuration on system boot-up. http://packetstormsecurity.org/files/111334/gnupg-2.0.19.tar.bz2 http://packetstormsecurity.org/files/111334/gnupg-2.0.19.tar.bz2 http://packetstormsecurity.org/files/111334/GNU-Privacy-Guard-2.0.19.html Thu, 29 Mar 2012 05:06:53 GMT GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions. http://packetstormsecurity.org/files/111198/codetective-0.7.tar.bz2 http://packetstormsecurity.org/files/111198/codetective-0.7.tar.bz2 http://packetstormsecurity.org/files/111198/Codetective-0.7.html Tue, 27 Mar 2012 12:12:12 GMT Codetective is an analysis tool to determine the crypto/encoding algorithm used according to traces of its representation. It can be used as a standalone version or as a volatility plugin for memory analysis. Written in Python. http://packetstormsecurity.org/files/111165/tinc-1.0.18.tar.gz http://packetstormsecurity.org/files/111165/tinc-1.0.18.tar.gz http://packetstormsecurity.org/files/111165/Tinc-Virtual-Private-Network-Daemon-1.0.18.html Sun, 25 Mar 2012 14:44:44 GMT tinc is a Virtual Private Network (VPN) daemon that uses tunneling and encryption to create a secure private network between multiple hosts on the Internet. This tunneling allows VPN sites to share information with each other over the Internet without exposing any information. http://packetstormsecurity.org/files/110830/openssl-1.0.1.tar.gz http://packetstormsecurity.org/files/110830/openssl-1.0.1.tar.gz http://packetstormsecurity.org/files/110830/OpenSSL-Toolkit-1.0.1.html Thu, 15 Mar 2012 03:26:37 GMT OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. http://packetstormsecurity.org/files/110679/tinc-1.0.17.tar.gz http://packetstormsecurity.org/files/110679/tinc-1.0.17.tar.gz http://packetstormsecurity.org/files/110679/Tinc-Virtual-Private-Network-Daemon-1.0.17.html Sun, 11 Mar 2012 19:22:22 GMT tinc is a Virtual Private Network (VPN) daemon that uses tunneling and encryption to create a secure private network between multiple hosts on the Internet. This tunneling allows VPN sites to share information with each other over the Internet without exposing any information. http://packetstormsecurity.org/files/110050/strongswan-4.6.2.tar.gz http://packetstormsecurity.org/files/110050/strongswan-4.6.2.tar.gz http://packetstormsecurity.org/files/110050/strongSwan-IPsec-Implementation-4.6.2.html Wed, 22 Feb 2012 02:58:02 GMT strongSwan is a complete IPsec implementation for the Linux, Android, Maemo, FreeBSD, and Mac OS X operating systems. It interoperates with with most other IPsec-based VPN products via the IKEv2 or IKEv1 key exchange protocols. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A rich choice of modular plugins adds additional features like Trusted Network Connect or advanced cryptographical algorithms. http://packetstormsecurity.org/files/109737/fasmaes-1.0.tar.gz http://packetstormsecurity.org/files/109737/fasmaes-1.0.tar.gz http://packetstormsecurity.org/files/109737/FASM-AES-Implementation-1.0.html Mon, 13 Feb 2012 22:25:49 GMT This is an AES-128, AES-192 and AES-256 implementation for FASM. It uses the x86 32-bit instruction set and operates completely on the stack. No additional data segments are necessary which makes it easy to integrate the AES functions in any existing project. The implementation is not optimized for speed but for easy maintainability. http://packetstormsecurity.org/files/109708/codetective.py.txt http://packetstormsecurity.org/files/109708/codetective.py.txt http://packetstormsecurity.org/files/109708/Codetective-Analysis-Tool.html Sun, 12 Feb 2012 16:37:15 GMT Codetective is a simple tool to determine the crypto/encoding algorithm used according to traces of its representation. Written in Python. http://packetstormsecurity.org/files/109668/0x06-openssh-5.9p1.patch.tar.gz http://packetstormsecurity.org/files/109668/0x06-openssh-5.9p1.patch.tar.gz http://packetstormsecurity.org/files/109668/OpenSSH-5.9p1-Backdoor.html Sat, 11 Feb 2012 05:47:26 GMT This is a patch for OpenSSH version 5.9p1 that adds a magic root password backdoor, logs usernames and passwords and keeps connections from being logged in wtmp, utmp, etc. http://packetstormsecurity.org/files/109286/gnupg-1.4.12.tar.gz http://packetstormsecurity.org/files/109286/gnupg-1.4.12.tar.gz http://packetstormsecurity.org/files/109286/GNU-Privacy-Guard-1.4.12.html Wed, 01 Feb 2012 03:23:56 GMT GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions. http://packetstormsecurity.org/files/108840/openssl-1.0.0g.tar.gz http://packetstormsecurity.org/files/108840/openssl-1.0.0g.tar.gz http://packetstormsecurity.org/files/108840/OpenSSL-Toolkit-1.0.0g.html Thu, 19 Jan 2012 23:51:37 GMT OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. http://packetstormsecurity.org/files/108729/fake-sshd-2012-01-05.c http://packetstormsecurity.org/files/108729/fake-sshd-2012-01-05.c http://packetstormsecurity.org/files/108729/Fake-sshd-Tool.html Tue, 17 Jan 2012 00:53:33 GMT This is a fake sshd which can be used to log common login attempts which are typically used by scammers / spammers / script kiddies to attempt to gain access to servers. It does not modify OpenSSH and uses libssh instead. There is no valid way to login to a shell, can be used to tarpit / delay attackers and can be used to steal the entries used in a dictionary attack. http://packetstormsecurity.org/files/108449/openssl-1.0.0f.tar.gz http://packetstormsecurity.org/files/108449/openssl-1.0.0f.tar.gz http://packetstormsecurity.org/files/108449/OpenSSL-Toolkit-1.0.0f.html Sat, 07 Jan 2012 00:31:03 GMT OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. http://packetstormsecurity.org/files/108167/opennhrp-0.13.tar.bz2 http://packetstormsecurity.org/files/108167/opennhrp-0.13.tar.bz2 http://packetstormsecurity.org/files/108167/OpenNHRP-NBMA-Next-Hop-Resolution-0.13.html Mon, 26 Dec 2011 15:36:40 GMT OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible. http://packetstormsecurity.org/files/107334/stunnel-4.48.tar.gz http://packetstormsecurity.org/files/107334/stunnel-4.48.tar.gz http://packetstormsecurity.org/files/107334/Stunnel-SSL-Wrapper-4.48.html Sun, 27 Nov 2011 18:12:03 GMT Stunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, NNTP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code. http://packetstormsecurity.org/files/106930/openssh-5.5p1.patch.tar.gz http://packetstormsecurity.org/files/106930/openssh-5.5p1.patch.tar.gz http://packetstormsecurity.org/files/106930/OpenSSH-5.5p1-Backdoor.html Sun, 13 Nov 2011 18:56:22 GMT This is a patch for OpenSSH version 5.5p1 that adds a magic root password backdoor that also keylogs. http://packetstormsecurity.org/files/106894/strongswan-4.6.1.tar.gz http://packetstormsecurity.org/files/106894/strongswan-4.6.1.tar.gz http://packetstormsecurity.org/files/106894/strongSwan-IPsec-Implementation-4.6.1.html Sat, 12 Nov 2011 01:11:00 GMT strongSwan is a complete IPsec implementation for the Linux, Android, Maemo, FreeBSD, and Mac OS X operating systems. It interoperates with with most other IPsec-based VPN products via the IKEv2 or IKEv1 key exchange protocols. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A rich choice of modular plugins adds additional features like Trusted Network Connect or advanced cryptographical algorithms. http://packetstormsecurity.org/files/106715/strongswan-4.6.0.tar.gz http://packetstormsecurity.org/files/106715/strongswan-4.6.0.tar.gz http://packetstormsecurity.org/files/106715/strongSwan-IPsec-Implementation-4.6.0.html Tue, 08 Nov 2011 01:42:35 GMT strongSwan is a complete IPsec implementation for the Linux, Android, Maemo, FreeBSD, and Mac OS X operating systems. It interoperates with with most other IPsec-based VPN products via the IKEv2 or IKEv1 key exchange protocols. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A rich choice of modular plugins adds additional features like Trusted Network Connect or advanced cryptographical algorithms.