Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:17:21 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1866169642&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Fdistributed%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1866169642.1338178641.1338178641.1338178641.1%3B%2B__utmz%3D32867617.1338178641.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/54519/zmbscap-0.1.tar.gz http://packetstormsecurity.org/files/54519/zmbscap-0.1.tar.gz http://packetstormsecurity.org/files/54519/zmbscap-0.1.tar.gz.html Tue, 20 Feb 2007 01:15:49 GMT The zombie scapper is an automated perl tool for detecting and stopping distributed denial of service programs. The tool automatically searches and scans the desired target for programs by looking for the ports that are used by the zombie masters. It stops the zombie masters by sending a kill/stop trigger. http://packetstormsecurity.org/files/35658/scrutinizer-1.03.tar.gz http://packetstormsecurity.org/files/35658/scrutinizer-1.03.tar.gz http://packetstormsecurity.org/files/35658/scrutinizer-1.03.tar.gz.html Tue, 11 Jan 2005 01:42:35 GMT The scrutinizer toolkit is designed to protect Web servers from HTTP (D)DoS attacks. It is a toolkit consisting of an analysis engine which analyzes Web server access logfiles in almost real time, an Apache module which is able to block wrongdoers on the Web server, an extension to block offenders with netfilter firewalls, and a set of visualization tools. The analysis engine uses statistical anomaly detection to expose offenders. The engine has to be trained with old log files so that it can adapt itself to your system. http://packetstormsecurity.org/files/35536/scrutinizer-1.02.tar.gz http://packetstormsecurity.org/files/35536/scrutinizer-1.02.tar.gz http://packetstormsecurity.org/files/35536/scrutinizer-1.02.tar.gz.html Fri, 31 Dec 2004 22:32:46 GMT The scrutinizer toolkit is designed to protect Web servers from HTTP (D)DoS attacks. It is a toolkit consisting of an analysis engine which analyzes Web server access logfiles in almost real time, an Apache module which is able to block wrongdoers on the Web server, an extension to block offenders with netfilter firewalls, and a set of visualization tools. The analysis engine uses statistical anomaly detection to expose offenders. The engine has to be trained with old log files so that it can adapt itself to your system. http://packetstormsecurity.org/files/33343/webdevil-v1.tar.gz http://packetstormsecurity.org/files/33343/webdevil-v1.tar.gz http://packetstormsecurity.org/files/33343/webdevil-v1.tar.gz.html Mon, 17 May 2004 02:51:34 GMT Webdevil is a tool used to create a distributed performance test against webservers by keeping connections alive until the server times them out. Slave daemon is included to assist in stress testing. http://packetstormsecurity.org/files/31883/icmpenum-1.1.1.tgz http://packetstormsecurity.org/files/31883/icmpenum-1.1.1.tgz http://packetstormsecurity.org/files/31883/icmpenum-1.1.1.tgz.html Tue, 21 Oct 2003 03:14:03 GMT This is a proof-of-concept tool to demonstrate possible distributed attacking concepts, such as sending packets from one workstation and sniffing the reply packets on another. http://packetstormsecurity.org/files/31870/icmpdoor.tar.gz http://packetstormsecurity.org/files/31870/icmpdoor.tar.gz http://packetstormsecurity.org/files/31870/icmpdoor.tar.gz.html Tue, 21 Oct 2003 02:21:56 GMT Small ICMP based backdoor and DDoS slave + master. In German and English. http://packetstormsecurity.org/files/29632/pud.tgz http://packetstormsecurity.org/files/29632/pud.tgz http://packetstormsecurity.org/files/29632/pud.tgz.html Thu, 12 Sep 2002 13:34:11 GMT Pud is a peer-to-peer ddos client/server which does not rely on hubs or leafs to function properly. It can connect as many nodes together as you like, and if one node dies, the rest will always stay up). http://packetstormsecurity.org/files/29551/DOSnet.c http://packetstormsecurity.org/files/29551/DOSnet.c http://packetstormsecurity.org/files/29551/DOSnet.c.html Thu, 05 Sep 2002 05:25:18 GMT DOSnet.c is a ddos script which runs from root and connects to an IRC network to take commands via ctcp. http://packetstormsecurity.org/files/26196/d7-pH-orgasm.tgz http://packetstormsecurity.org/files/26196/d7-pH-orgasm.tgz http://packetstormsecurity.org/files/26196/d7-pH-orgasm.tgz.html Mon, 03 Jun 2002 06:26:31 GMT Orgasm v1.0 is a distributed reflection denial of service attack. More information available here. http://packetstormsecurity.org/files/26078/drdos_v2.0.tar.gz http://packetstormsecurity.org/files/26078/drdos_v2.0.tar.gz http://packetstormsecurity.org/files/26078/drdos_v2.0.tar.gz.html Wed, 15 May 2002 04:26:59 GMT Drdos v2.0 is a tool for distributed reflection denial of service attacks. http://packetstormsecurity.org/files/25682/find_ddos_v42_linux.tar.Z http://packetstormsecurity.org/files/25682/find_ddos_v42_linux.tar.Z http://packetstormsecurity.org/files/25682/find_ddos_v42_linux.tar.Z.html Thu, 31 Jan 2002 06:10:01 GMT Find_ddos v4.2 (linux) - The NIPC has developed a tool to assist in combating ddos agents. The tool scans a local system that is either known or suspected to contain a DDOS program. The tool will detect several known denial-of-service attack tools including tfn2k client, tfn2k daemon, trinoo daemon, trinoo master, tfn daemon, tfn client, stacheldraht master, stacheldraht client, stachelddraht demon and tfn-rush client. Solaris version also available. http://packetstormsecurity.org/files/25090/ddos.txt http://packetstormsecurity.org/files/25090/ddos.txt http://packetstormsecurity.org/files/25090/ddos.txt.html Thu, 02 Aug 2001 02:15:16 GMT DDoS IRC bots are becoming popular Distributed Denial Of Service attack method. They do not require unix clients to operate and are easy to use. Hypnosis http://packetstormsecurity.org/files/25021/skd36.zip http://packetstormsecurity.org/files/25021/skd36.zip http://packetstormsecurity.org/files/25021/skd36.zip.html Thu, 19 Jul 2001 01:26:02 GMT Skydance v3.6 is a distributed denial of service tool for Windows. Uses the IP_HDRINCL option. Tested on Win98 and Win2k. Uses ICMP for communication. http://packetstormsecurity.org/files/23939/knight.c http://packetstormsecurity.org/files/23939/knight.c http://packetstormsecurity.org/files/23939/knight.c.html Thu, 12 Jul 2001 05:36:50 GMT Knight.c Knight is a distributed denial of service client that is very light weight and is very powerful. It goes on IRC and joins a channel, then accepts commands via IRC (to prevent from getting caught). It has features like, an automatic updater via http or ftp, a checksum generater, a syn flooder, a tcp flooder, a udp flooder, slice2, spoofing to subnets, and more. This program has been used to create DDoS nets of over 1000 clients. http://packetstormsecurity.org/files/24912/ddos.sh http://packetstormsecurity.org/files/24912/ddos.sh http://packetstormsecurity.org/files/24912/ddos.sh.html Thu, 31 May 2001 21:45:22 GMT ddos.sh is a tool which causes NT servers which are vulnerable to the unicode bug to pingflood a target host. http://packetstormsecurity.org/files/24532/ddnsf.tar.gz http://packetstormsecurity.org/files/24532/ddnsf.tar.gz http://packetstormsecurity.org/files/24532/ddnsf.tar.gz.html Tue, 27 Mar 2001 00:43:53 GMT Distributed DNS Flooder v0.1b - A powerful attack against DNS servers. http://packetstormsecurity.org/files/24516/stick.tgz http://packetstormsecurity.org/files/24516/stick.tgz http://packetstormsecurity.org/files/24516/stick.tgz.html Tue, 20 Mar 2001 21:49:49 GMT Stick is a distributed denial of service attack which targets IDS systems. It takes a snort rule file as input. Binary distribution. http://packetstormsecurity.org/files/24487/stick.htm http://packetstormsecurity.org/files/24487/stick.htm http://packetstormsecurity.org/files/24487/stick.htm.html Fri, 16 Mar 2001 22:47:53 GMT The Stick DDOS tool is a resource starvation attack against IDS systems. Many IDS systems are affected. http://packetstormsecurity.org/files/24309/ramenfind.v0.4.gz http://packetstormsecurity.org/files/24309/ramenfind.v0.4.gz http://packetstormsecurity.org/files/24309/ramenfind.v0.4.gz.html Fri, 16 Feb 2001 01:29:41 GMT Ramenfind v0.4 is a local Ramen worm detection and removal tool. Final release unless problems are found. http://packetstormsecurity.org/files/24260/ramenfind.v0.3.gz http://packetstormsecurity.org/files/24260/ramenfind.v0.3.gz http://packetstormsecurity.org/files/24260/ramenfind.v0.3.gz.html Sun, 11 Feb 2001 00:13:23 GMT Ramenfind v0.3 is a local Ramen worm detection and removal tool. Final release unless problems are found. http://packetstormsecurity.org/files/24144/stachelantigl.tar.gz http://packetstormsecurity.org/files/24144/stachelantigl.tar.gz http://packetstormsecurity.org/files/24144/stachelantigl.tar.gz.html Fri, 26 Jan 2001 07:49:38 GMT Stacheldraht v1.666 + antigl + yps distributed denial of service tool. http://packetstormsecurity.org/files/24133/ramenfind.v0.2.gz http://packetstormsecurity.org/files/24133/ramenfind.v0.2.gz http://packetstormsecurity.org/files/24133/ramenfind.v0.2.gz.html Thu, 25 Jan 2001 22:10:11 GMT Ramen worm local detection tool. Still in beta. http://packetstormsecurity.org/files/24108/ramen-clean.zip http://packetstormsecurity.org/files/24108/ramen-clean.zip http://packetstormsecurity.org/files/24108/ramen-clean.zip.html Wed, 24 Jan 2001 21:58:06 GMT Ramen-Clean is a perl script which checks to see if your system is infected with the Ramen Linux Worm, and cleans it. http://packetstormsecurity.org/files/24033/flitz-0.1.tgz http://packetstormsecurity.org/files/24033/flitz-0.1.tgz http://packetstormsecurity.org/files/24033/flitz-0.1.tgz.html Mon, 08 Jan 2001 23:42:01 GMT Flitz is a DDOS tool which features spoofed ip/tcp/udp flood, flooding in parallel, distributed smurf attack and status report of the slave. With one stop command, you can stop all the slaves at once. http://packetstormsecurity.org/files/16982/ddosping.zip http://packetstormsecurity.org/files/16982/ddosping.zip http://packetstormsecurity.org/files/16982/ddosping.zip.html Wed, 13 Dec 2000 06:28:23 GMT DDoSPing v2.0 is a Win 9x/NT GUI scanner for the DDoS agents Wintrinoo, Trinoo, Stacheldraht and TFN.