Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 08:01:34 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1120245509&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Scanner%20Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Ftags%2Fscanner%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1120245509.1338192094.1338192094.1338192094.1%3B%2B__utmz%3D32867617.1338192094.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/113040/kolkata.tgz http://packetstormsecurity.org/files/113040/kolkata.tgz http://packetstormsecurity.org/files/113040/Kolkata-Web-Application-Fingerprinting.html Fri, 25 May 2012 20:31:24 GMT Kolkata is a tool for IDS evading web application fingerprinting. It is written in perl and uses LibWhisker. http://packetstormsecurity.org/files/112854/webvulscan_v0.11.zip http://packetstormsecurity.org/files/112854/webvulscan_v0.11.zip http://packetstormsecurity.org/files/112854/Web-Application-Vulnerability-Scanner-0.11.html Thu, 17 May 2012 21:54:06 GMT WebVulScan is a web application vulnerability scanner. It is a web application itself written in PHP and can be used to test remote, or local, web applications for security vulnerabilities. As a scan is running, details of the scan are dynamically updated to the user. These details include the status of the scan, the number of URLs found on the web application, the number of vulnerabilities found and details of the vulnerabilities found. After a scan is complete, a detailed PDF report is emailed to the user. The report includes descriptions of the vulnerabilities found, recommendations and details of where and how each vulnerability was exploited. http://packetstormsecurity.org/files/112678/XCat_1.5.zip http://packetstormsecurity.org/files/112678/XCat_1.5.zip http://packetstormsecurity.org/files/112678/XCat-1.5.html Sun, 13 May 2012 12:12:12 GMT XCat is a PHP web interface for scanning sites mined through bing.com. http://packetstormsecurity.org/files/112158/unweb-plown-ef3bc6a.zip http://packetstormsecurity.org/files/112158/unweb-plown-ef3bc6a.zip http://packetstormsecurity.org/files/112158/Plown-Plone-CMS-Scanner.html Tue, 24 Apr 2012 16:22:22 GMT Plown is a security scanner for Plone CMS. Although Plone has the best security track record of any major CMS and is considered highly secure, misconfigurations and weak passwords might enable system break-ins. Plown has been developed to ease the discovery of usernames and passwords, and act as an assistant to system administrators to strengthen their Plone sites. http://packetstormsecurity.org/files/111540/darkd0rk3r-0.7.py.txt http://packetstormsecurity.org/files/111540/darkd0rk3r-0.7.py.txt http://packetstormsecurity.org/files/111540/Dark-D0rk3r-0.7.html Wed, 04 Apr 2012 14:28:44 GMT Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors. http://packetstormsecurity.org/files/111510/darkBing-v.0.1.py.txt http://packetstormsecurity.org/files/111510/darkBing-v.0.1.py.txt http://packetstormsecurity.org/files/111510/darkBing-SQL-Scanner-0.1.html Wed, 04 Apr 2012 01:26:41 GMT darkBing is a tool written in python that leverages bing for mining data on systems that may be susceptible to SQL injection. http://packetstormsecurity.org/files/111015/proxycheck-02122011.tgz http://packetstormsecurity.org/files/111015/proxycheck-02122011.tgz http://packetstormsecurity.org/files/111015/Proxy-Check-02122011.html Wed, 21 Mar 2012 00:15:37 GMT Proxy Check is a tool that includes a website to automate testing for web proxy content filtering. It has a battery of tests that includes looking for typically malicious URLs, several PDF exploits, and more. http://packetstormsecurity.org/files/110947/rdpScan.txt http://packetstormsecurity.org/files/110947/rdpScan.txt http://packetstormsecurity.org/files/110947/rdpScan-Network-Checker.html Sun, 18 Mar 2012 10:33:22 GMT This is a simple script that leverages nmap to scan for RDP-Server. http://packetstormsecurity.org/files/110603/vanguard-public.tgz http://packetstormsecurity.org/files/110603/vanguard-public.tgz http://packetstormsecurity.org/files/110603/Vanguard-Pentesting-Scanner.html Fri, 09 Mar 2012 05:17:09 GMT Vanguard is a comprehensive web penetration testing tool written in Perl that identifies vulnerabilities in web applications. It provides crawling, uses LibWhisker2 for HTTP IDS evasion, and checks for issues like SQL injection, XSS, LDAP injection and more. http://packetstormsecurity.org/files/110150/darkd0rk3r-0.6.py.txt http://packetstormsecurity.org/files/110150/darkd0rk3r-0.6.py.txt http://packetstormsecurity.org/files/110150/Dark-D0rk3r-0.6.html Fri, 24 Feb 2012 05:45:05 GMT Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors. http://packetstormsecurity.org/files/109939/1337scan_v0.2.rar http://packetstormsecurity.org/files/109939/1337scan_v0.2.rar http://packetstormsecurity.org/files/109939/1337-Multiple-CMS-Scanner-Online.html Sat, 18 Feb 2012 16:13:25 GMT This tool is a php script that assists in finding vulnerable components in multiple CMS systems. http://packetstormsecurity.org/files/109913/threaded-syn-port-scanner-4.0.zip http://packetstormsecurity.org/files/109913/threaded-syn-port-scanner-4.0.zip http://packetstormsecurity.org/files/109913/Multi-Threaded-TCP-Port-Scanner-4.0.html Sat, 18 Feb 2012 03:19:11 GMT This is a basic TCP SYN scanner that is multi-threaded. http://packetstormsecurity.org/files/109409/porttest.py.txt http://packetstormsecurity.org/files/109409/porttest.py.txt http://packetstormsecurity.org/files/109409/Port-Tester-0.1.html Fri, 03 Feb 2012 23:37:21 GMT This is a simple little port scanning script written in python. http://packetstormsecurity.org/files/109244/lightaidra-0x2012no-cross.tar.gz http://packetstormsecurity.org/files/109244/lightaidra-0x2012no-cross.tar.gz http://packetstormsecurity.org/files/109244/Lightidra-IRC-Router-Scanner.html Mon, 30 Jan 2012 05:44:44 GMT Lightaidra is an IRC commanded tool that allows for scanning and exploiting routers. It also performs flooding. http://packetstormsecurity.org/files/109211/FatCat-SQL-Injector-.zip http://packetstormsecurity.org/files/109211/FatCat-SQL-Injector-.zip http://packetstormsecurity.org/files/109211/FatCat-SQL-Injector.html Sat, 28 Jan 2012 13:22:22 GMT This is an automatic SQL Injection tool called FatCat. It has features that help you to extract the database information, table information, and column information from a web application. http://packetstormsecurity.org/files/109171/darkd0rk3r-0.5.py.txt http://packetstormsecurity.org/files/109171/darkd0rk3r-0.5.py.txt http://packetstormsecurity.org/files/109171/Dark-D0rk3r-0.5.html Sat, 28 Jan 2012 00:39:16 GMT Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors. http://packetstormsecurity.org/files/109101/p0f-3.03b-win.zip http://packetstormsecurity.org/files/109101/p0f-3.03b-win.zip http://packetstormsecurity.org/files/109101/p0f-3.03b-Windows-Port.html Wed, 25 Jan 2012 23:50:27 GMT P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP). http://packetstormsecurity.org/files/109032/darkd0rk3r-0.4.py.txt http://packetstormsecurity.org/files/109032/darkd0rk3r-0.4.py.txt http://packetstormsecurity.org/files/109032/Dark-D0rk3r-0.4.html Tue, 24 Jan 2012 17:12:13 GMT Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors. http://packetstormsecurity.org/files/109010/PostTester.jar http://packetstormsecurity.org/files/109010/PostTester.jar http://packetstormsecurity.org/files/109010/MagicHash-Collision-Testing-Tool.html Tue, 24 Jan 2012 04:30:40 GMT PostTest is a jar file that will send POST requests to servers in order to test for the hash collision vulnerability discussed at the Chaos Communication Congress in Berlin. http://packetstormsecurity.org/files/108945/darkd0rk3r-0.3.py.txt http://packetstormsecurity.org/files/108945/darkd0rk3r-0.3.py.txt http://packetstormsecurity.org/files/108945/Dark-D0rk3r-0.3.html Mon, 23 Jan 2012 00:24:58 GMT Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors. http://packetstormsecurity.org/files/108901/darkd0rk3r-0.2.py.txt http://packetstormsecurity.org/files/108901/darkd0rk3r-0.2.py.txt http://packetstormsecurity.org/files/108901/Dark-D0rk3r-0.2.html Sat, 21 Jan 2012 17:54:36 GMT Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors. http://packetstormsecurity.org/files/108868/darkd0rk3r-0.1.py.txt http://packetstormsecurity.org/files/108868/darkd0rk3r-0.1.py.txt http://packetstormsecurity.org/files/108868/Dark-D0rk3r-0.1.html Sat, 21 Jan 2012 04:30:03 GMT Dark D0rk3r is a python script that performs dork searching and searches for SQL injection errors. http://packetstormsecurity.org/files/108736/p0f-3.00b.tgz http://packetstormsecurity.org/files/108736/p0f-3.00b.tgz http://packetstormsecurity.org/files/108736/P0f-3.0.0b.html Tue, 17 Jan 2012 01:21:20 GMT P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP). http://packetstormsecurity.org/files/108731/tcp-fast-scan-2011-12-08.c http://packetstormsecurity.org/files/108731/tcp-fast-scan-2011-12-08.c http://packetstormsecurity.org/files/108731/TCP-Fast-Scan.html Tue, 17 Jan 2012 00:59:54 GMT This is a very fast TCP port scanner for Linux that can scan multiple hosts and ports at once. http://packetstormsecurity.org/files/108728/icmp-psweep-2011-12-08.c http://packetstormsecurity.org/files/108728/icmp-psweep-2011-12-08.c http://packetstormsecurity.org/files/108728/ICMP-Ping-Sweep.html Tue, 17 Jan 2012 00:51:17 GMT This is a simple ICMP ping sweeping tool that takes in a range of IP addresses.