Files ≈ Packet Storm

OpenSSH 5.9p1 Backdoor

Sat, 11 Feb 2012 05:47:26 GMT

This is a patch for OpenSSH version 5.9p1 that adds a magic root password backdoor, logs usernames and passwords and keeps connections from being logged in wtmp, utmp, etc.

Fake sshd Tool

Tue, 17 Jan 2012 00:53:33 GMT

This is a fake sshd which can be used to log common login attempts which are typically used by scammers / spammers / script kiddies to attempt to gain access to servers. It does not modify OpenSSH and uses libssh instead. There is no valid way to login to a shell, can be used to tarpit / delay attackers and can be used to steal the entries used in a dictionary attack.

OpenSSH 5.5p1 Backdoor

Sun, 13 Nov 2011 18:56:22 GMT

This is a patch for OpenSSH version 5.5p1 that adds a magic root password backdoor that also keylogs.

OpenSSH 5.9p1

Tue, 06 Sep 2011 13:15:47 GMT

This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.

OpenSSH 5.8p2

Wed, 04 May 2011 15:30:43 GMT

OpenSSH 5.7p1

Mon, 24 Jan 2011 13:11:11 GMT

OpenSSH 5.6p1

Fri, 27 Aug 2010 02:38:44 GMT

SSH Keychain Utility 2.7.1

Tue, 25 May 2010 05:33:40 GMT

keychain is a utility that helps manage ssh keys in a convenient and secure manner. It acts as a frontend to ssh-agent, but allows the user to easily have one long running ssh-agent process per system, rather than the norm of one ssh-agent per login session. It also makes it easy for remote cron jobs to securely hook-in to a long running ssh-agent process, allowing your scripts to take advantage of key-based logins.

OpenSSH 5.4p1

Mon, 08 Mar 2010 22:09:53 GMT

SShutout Log File Monitor 1.0.6

Mon, 07 Dec 2009 22:38:33 GMT

sshutout is a daemon that periodically monitors log files, looking for multiple failed login attempts via the Secure Shell daemon. The daemon is meant to mitigate what are commonly known as "dictionary attacks," i.e. scripted brute force attacks that use lists of user IDs and passwords to effect unauthorized intrusions. The sshutout daemon blunts such attacks by creating firewall rules to block individual offenders from accessing the system. These rules are created when an attack signature is detected, and after a configurable expiry interval has elapsed, the rules are deleted.

SSH Keychain Utility 2.7.0

Mon, 26 Oct 2009 21:52:12 GMT

SSH Keychain Utility

Tue, 28 Jul 2009 02:03:22 GMT

SSH Keychain Utility

Tue, 21 Jul 2009 21:12:03 GMT

assh-2.0.tgz

Tue, 14 Oct 2008 20:34:05 GMT

Assh is an anonymous ssh client for GNU/Linux and Mac OS X. It use proxies to get connected on remote ssh servers.

OpenSSH-4.4p1-backdoored.tar.gz

Fri, 29 Aug 2008 05:44:21 GMT

OpenSSH version 4.4p1 backdoor that logs all incoming and outgoing logins and password via the client and the daemon, adds a magic password for sshd, store passwords to an encrypted logfile, and disables logging if the magic password is used. Based on the Aion 3.8p1 patch.

assh-1.0.tgz

Thu, 14 Aug 2008 23:58:34 GMT

Assh is an anonymous ssh client for GNU/Linux and Mac OS X. It use proxies to get connected on remote ssh servers.

openssh-5.0p1.tar.gz

Fri, 02 May 2008 20:48:41 GMT

openssh-4.7p1-backdoored.tgz

Wed, 12 Mar 2008 20:50:42 GMT

Backdoored version of OpenSSH version 4.7 that logs user credentials to a file. includes.h holds the password and logfile location.

openssh-4.2p1-backdoored.tgz

Wed, 12 Mar 2008 20:49:49 GMT

Backdoored version of OpenSSH version 4.2 that logs user credentials to a file. includes.h holds the password and logfile location.

sshutout-1.0.5.tar.gz

Mon, 31 Dec 2007 21:04:30 GMT

openssh_4.6p1_trojan.tar.gz

Tue, 18 Dec 2007 01:46:05 GMT

This patch backdoors and logs credentials into /tmp/.X11-map-enGB for OpenSSH 4.6p1. It is an update to the incSTK_ssh_client_trojan.

incSTK_ssh_client_trojan.tar.gz

Fri, 30 Nov 2007 06:51:18 GMT

This patch makes OpenSSH register triplets in a temporary file. Revised for versions 4.7 and below.

sshutout-1.0.4.tar.gz

Fri, 16 Nov 2007 07:12:00 GMT

openssh-4.7p1.tar.gz

Wed, 05 Sep 2007 05:11:22 GMT

openssh-4.6p1-backdored.tar.gz

Tue, 17 Apr 2007 16:14:44 GMT

The backdoored version of OpenSSH 4.6p1. It logs passwords to /tmp/.sshell and also has the typical magic password.