Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:56:33 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1390963383&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Bash%20Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Ftags%2Fbash%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1390963383.1338191793.1338191793.1338191793.1%3B%2B__utmz%3D32867617.1338191793.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/112326/wordpress-bruteforce.txt http://packetstormsecurity.org/files/112326/wordpress-bruteforce.txt http://packetstormsecurity.org/files/112326/WordPress-Bruteforce-Script.html Sun, 29 Apr 2012 12:12:12 GMT This is a simple bash script for bruteforcing WordPress. http://packetstormsecurity.org/files/110105/linux-bash333tcp.c http://packetstormsecurity.org/files/110105/linux-bash333tcp.c http://packetstormsecurity.org/files/110105/Linux-x86-BackShell-TCP-bash-dev-tcp-execve-bin-sh-Shellcode.html Thu, 23 Feb 2012 05:14:43 GMT 62 bytes small Linux/x86 BackShell-TCP bash[/dev/tcp],execve(/bin/sh) shellcode. http://packetstormsecurity.org/files/109445/vns.zip http://packetstormsecurity.org/files/109445/vns.zip http://packetstormsecurity.org/files/109445/Viper-Network-Sniffer-Script.html Sun, 05 Feb 2012 00:44:22 GMT This is a bash script to use in conjunction with Backtrack that simplifies the spawning of various sniffers. http://packetstormsecurity.org/files/109170/kraken-script.rar http://packetstormsecurity.org/files/109170/kraken-script.rar http://packetstormsecurity.org/files/109170/Kraken-Payload-Generator-Beta-1.0.html Fri, 27 Jan 2012 23:42:28 GMT Kraken Payload Generator is a bash script that makes use of msfpayload to generate various shellcode. http://packetstormsecurity.org/files/103820/gotroot.sh.txt http://packetstormsecurity.org/files/103820/gotroot.sh.txt http://packetstormsecurity.org/files/103820/GotRoot-Shell-Script.html Tue, 09 Aug 2011 13:47:26 GMT This post-escalation bash script sanitizes 29 logs, adds a root user, and allows for package installation including hashcat, nmap, and more. Written for Ubuntu. http://packetstormsecurity.org/files/103224/RHSA-2011-1073-01.txt http://packetstormsecurity.org/files/103224/RHSA-2011-1073-01.txt http://packetstormsecurity.org/files/103224/Red-Hat-Security-Advisory-2011-1073-01.html Thu, 21 Jul 2011 14:37:00 GMT Red Hat Security Advisory 2011-1073-01 - Bash is the default shell for Red Hat Enterprise Linux. It was found that certain scripts bundled with the Bash documentation created temporary files in an insecure way. A malicious, local user could use this flaw to conduct a symbolic link attack, allowing them to overwrite the contents of arbitrary files accessible to the victim running the scripts. http://packetstormsecurity.org/files/102008/Cleanup_2.zip http://packetstormsecurity.org/files/102008/Cleanup_2.zip http://packetstormsecurity.org/files/102008/Checkpoint-FW-Cleanup-Tool-2.html Mon, 06 Jun 2011 07:49:11 GMT This shell script is to find unused service objects in objects_5_0.C and rulebases_5_0.fws files on Checkpoint Firewalls. It searches for unused services both in service groups and the rulebase, then generates the output list as a text file. If you have the copies of files objects_5_0.C and rulebases_5_0.fws, you can run the script in a bash environment. http://packetstormsecurity.org/files/102007/Cleanup_1.zip http://packetstormsecurity.org/files/102007/Cleanup_1.zip http://packetstormsecurity.org/files/102007/Checkpoint-FW-Cleanup-Tool-1.html Mon, 06 Jun 2011 07:46:12 GMT This shell script is to find unused objects in objects_5_0.C and rulebases_5_0.fws files on Checkpoint Firewalls. It searches for unused objects both in object groups and the rulebase, then generates the output list as a text file. If you have the copies of files objects_5_0.C and rulebases_5_0.fws, you can also run the script in a bash environment. http://packetstormsecurity.org/files/101235/Glyptodon_1.2.tar.gz http://packetstormsecurity.org/files/101235/Glyptodon_1.2.tar.gz http://packetstormsecurity.org/files/101235/Glyptodon-File-System-Analyzer-1.2.html Mon, 09 May 2011 22:32:53 GMT Glyptodon is a little file-system analyzer for Linux systems. It is written in bash and it comes with an installer to make it run everyday automatically. This script writes some general information about file permissions, socket, ownership, etc. It also verifies the file-system for potential risks, such as set-uid files, world writable files, symlinks nouser files, etc. http://packetstormsecurity.org/files/98558/sa43365.txt http://packetstormsecurity.org/files/98558/sa43365.txt http://packetstormsecurity.org/files/98558/Secunia-Security-Advisory-43365.html Fri, 18 Feb 2011 08:37:41 GMT Secunia Security Advisory - Red Hat has issued an update for bash. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. http://packetstormsecurity.org/files/98487/fina-0.2.4.tar.gz http://packetstormsecurity.org/files/98487/fina-0.2.4.tar.gz http://packetstormsecurity.org/files/98487/Fina-Iptables-Script-0.2.4.html Tue, 15 Feb 2011 15:59:08 GMT Fina is a simple, robust bash script that loads iptables rules from a rules directory. As such, it isn't concerned with creating rules for you; it just helps you load them in a robust way, going back to older or safe rules when things go wrong. http://packetstormsecurity.org/files/90447/tmac-v1.0-beta.tar.gz http://packetstormsecurity.org/files/90447/tmac-v1.0-beta.tar.gz http://packetstormsecurity.org/files/90447/TMAC-For-Linux-1.0-Beta.html Wed, 09 Jun 2010 01:47:48 GMT TMAC is a simple bash program for randomly changing the MAC address of a Network Interface Card (NIC) on Linux . http://packetstormsecurity.org/files/89225/bash_poly.c http://packetstormsecurity.org/files/89225/bash_poly.c http://packetstormsecurity.org/files/89225/Linux-x86-Polymorphic-execve-bin-bash-p-NULL-Shellcode.html Thu, 06 May 2010 00:48:13 GMT 57 bytes small Linux/x86 polymorphic execve("/bin/bash","-p",NULL) shellcode. http://packetstormsecurity.org/files/89203/bash.c http://packetstormsecurity.org/files/89203/bash.c http://packetstormsecurity.org/files/89203/Linux-x86-execve-bin-bash-p-NULL-Shellcode.html Wed, 05 May 2010 01:12:03 GMT 33 bytes small Linux/x86 execve("/bin/bash","-p",NULL) shellcode. http://packetstormsecurity.org/files/88340/netcatscripts.tar.gz http://packetstormsecurity.org/files/88340/netcatscripts.tar.gz http://packetstormsecurity.org/files/88340/Bash-Scripts-For-Bruteforcing-FTP-And-Looking-For-RFI-LFI.html Wed, 14 Apr 2010 06:56:46 GMT This tarball has a couple of bash scripts that use netcat to brute force ftp and scan for local and remote file inclusion vulnerabilities. http://packetstormsecurity.org/files/88010/bing-ip2hosts-0.2.tar.gz http://packetstormsecurity.org/files/88010/bing-ip2hosts-0.2.tar.gz http://packetstormsecurity.org/files/88010/Bing.com-Hostname-IP-Enumerator-0.2.html Sat, 03 Apr 2010 01:51:26 GMT This tool enumerates hostnames from Bing.com for an IP address. Bing.com is Microsoft's search engine which has an IP: search parameter. Written in Bash for Linux. Requires wget. http://packetstormsecurity.org/files/85070/MDVSA-2010-004.txt http://packetstormsecurity.org/files/85070/MDVSA-2010-004.txt http://packetstormsecurity.org/files/85070/Mandriva-Linux-Security-Advisory-2010-004.html Thu, 14 Jan 2010 02:26:35 GMT Mandriva Linux Security Advisory 2010-004 - A vulnerability have been discovered in Mandriva bash package, which could allow a malicious user to hide files from the ls command, or garble its output by crafting files or directories which contain special characters or escape sequences. This update fixes the issue by disabling the display of control characters by default. Additionally, this update fixes the unsafe file creation in bash-doc sample scripts. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. http://packetstormsecurity.org/files/83339/gggooglescan-0.1.tar.gz http://packetstormsecurity.org/files/83339/gggooglescan-0.1.tar.gz http://packetstormsecurity.org/files/83339/Google.com-Hostname-URL-Enumerator.html Tue, 01 Dec 2009 22:38:09 GMT This tool enumerates hostnames and URLs from Google. It features antibot avoidance, search within a country, custom search appliance, output either hostnames or URLs, and custom search depth. Written in Bash for Linux. http://packetstormsecurity.org/files/83338/bing-ip2hosts-0.1.tar.gz http://packetstormsecurity.org/files/83338/bing-ip2hosts-0.1.tar.gz http://packetstormsecurity.org/files/83338/Bing.com-Hostname-IP-Enumerator.html Tue, 01 Dec 2009 21:59:40 GMT This tool enumerates hostnames from Bing.com for an IP address. Bing.com is Microsoft's search engine which has an IP: search parameter. Written in Bash for Linux. Requires wget. http://packetstormsecurity.org/files/77214/sa34989.txt http://packetstormsecurity.org/files/77214/sa34989.txt http://packetstormsecurity.org/files/77214/Secunia-Security-Advisory-34989.html Mon, 04 May 2009 07:30:03 GMT Secunia Security Advisory - Fedora has acknowledged a weakness in bash-completion, which can be exploited by malicious, local users to gain escalated privileges. http://packetstormsecurity.org/files/76357/Vuurmuur-0.7.tar.gz http://packetstormsecurity.org/files/76357/Vuurmuur-0.7.tar.gz http://packetstormsecurity.org/files/76357/Vuurmuur-Firewall-Manager.html Mon, 06 Apr 2009 20:53:37 GMT Vuurmuur is a middle-end and front-end for netfilter and iptables that is aimed at system administrators who need a decent firewall, but do not have netfilter specific knowledge. It converts human-readable rules into an iptables ruleset (or optional a bash script), makes netfilter logs readable, and includes an ncurses GUI. http://packetstormsecurity.org/files/74274/ip-array_0.05.74d.tar.gz http://packetstormsecurity.org/files/74274/ip-array_0.05.74d.tar.gz http://packetstormsecurity.org/files/74274/IP-Array-Linux-IPTables-Firewall-Script.html Fri, 23 Jan 2009 20:14:11 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP. http://packetstormsecurity.org/files/73634/ip-array_0.05.74c.tar.gz http://packetstormsecurity.org/files/73634/ip-array_0.05.74c.tar.gz http://packetstormsecurity.org/files/73634/IP-Array-IPTables-Firewall-Script.html Wed, 07 Jan 2009 01:47:26 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP. http://packetstormsecurity.org/files/73334/ip-array_0.05.74b.tar.gz http://packetstormsecurity.org/files/73334/ip-array_0.05.74b.tar.gz http://packetstormsecurity.org/files/73334/IP-Array-IPTables-Firewall-Script.html Tue, 30 Dec 2008 20:26:57 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP. http://packetstormsecurity.org/files/73069/ip-array_0.05.74.tar.gz http://packetstormsecurity.org/files/73069/ip-array_0.05.74.tar.gz http://packetstormsecurity.org/files/73069/IP-Array-Firewall-Script.html Wed, 17 Dec 2008 02:41:37 GMT IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP.