Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 11:46:44 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1784059771&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Electronic%20Souls%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Fgroups%2Felectronicsouls%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1784059771.1338205604.1338205604.1338205604.1%3B%2B__utmz%3D32867617.1338205604.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/34014/0x4553_Scorpion.tar.gz http://packetstormsecurity.org/files/34014/0x4553_Scorpion.tar.gz http://packetstormsecurity.org/files/34014/0x4553_Scorpion.tar.gz.html Wed, 11 Aug 2004 01:28:29 GMT Tool for infecting statically linked ELF binaries. http://packetstormsecurity.org/files/34013/0x4553-Static_Infecting.html http://packetstormsecurity.org/files/34013/0x4553-Static_Infecting.html http://packetstormsecurity.org/files/34013/0x4553-Static_Infecting.html.html Wed, 11 Aug 2004 01:17:26 GMT White paper discussing a method of infecting statically linked ELF binaries. http://packetstormsecurity.org/files/34012/0x4553_Exorcist.tar.gz http://packetstormsecurity.org/files/34012/0x4553_Exorcist.tar.gz http://packetstormsecurity.org/files/34012/0x4553_Exorcist.tar.gz.html Wed, 11 Aug 2004 01:09:12 GMT Exorcist is a tool that can be considered an anti-anti-ptrace utility that unlocks the ptrace_traceme guard of a binary. http://packetstormsecurity.org/files/31679/0x4553-silencer-public.tgz http://packetstormsecurity.org/files/31679/0x4553-silencer-public.tgz http://packetstormsecurity.org/files/31679/0x4553-silencer-public.tgz.html Sun, 21 Sep 2003 20:09:37 GMT Silencer holds three different functionalities. It will deploy a backdoor in a listening service that an attacker must connect to, feed the magic word, and then portscan the machine to find the bindshell spawned, it has an Apache backdoor that allows a connection over HTTP to drop to a shell, and it also has a read sniffer built in that goes through the kernel read() process and then logs it to /tmp/.es.rox. The authors ask to be contacted if anyone finds any systems or kernels that this does not work on. http://packetstormsecurity.org/files/31070/ESc.c http://packetstormsecurity.org/files/31070/ESc.c http://packetstormsecurity.org/files/31070/ESc.c.html Sun, 27 Apr 2003 22:35:41 GMT (N)compress 4.2.4 local root exploit. http://packetstormsecurity.org/files/31067/0x4553_dr01d.tar.gz http://packetstormsecurity.org/files/31067/0x4553_dr01d.tar.gz http://packetstormsecurity.org/files/31067/0x4553_dr01d.tar.gz.html Thu, 24 Apr 2003 16:45:56 GMT Flooding and sniffing robot for the IRC that attacks with spoof IGMP packets. http://packetstormsecurity.org/files/31066/0x4553_asm_portscan.tar.gz http://packetstormsecurity.org/files/31066/0x4553_asm_portscan.tar.gz http://packetstormsecurity.org/files/31066/0x4553_asm_portscan.tar.gz.html Thu, 24 Apr 2003 16:45:50 GMT Full low level (without libc) AT+T port scanner written for the article "Advanced AT+T asm tutorial. Part 1". http://packetstormsecurity.org/files/31065/0x4553_Permutator.tar.gz http://packetstormsecurity.org/files/31065/0x4553_Permutator.tar.gz http://packetstormsecurity.org/files/31065/0x4553_Permutator.tar.gz.html Thu, 24 Apr 2003 16:45:48 GMT Demo Permutate Engine for Linux that supports a few permutatable instructions: xor,sub,test,or,mov. http://packetstormsecurity.org/files/31064/0x4553_Executor.tar.gz http://packetstormsecurity.org/files/31064/0x4553_Executor.tar.gz http://packetstormsecurity.org/files/31064/0x4553_Executor.tar.gz.html Thu, 24 Apr 2003 16:45:42 GMT 0x4553_Executor is a memory executor that allows a user to load code from file to memory and execute it. http://packetstormsecurity.org/files/31063/0x4553_Crypt0r.tar.gz http://packetstormsecurity.org/files/31063/0x4553_Crypt0r.tar.gz http://packetstormsecurity.org/files/31063/0x4553_Crypt0r.tar.gz.html Tue, 22 Apr 2003 19:58:30 GMT 0x4553_Crypt0r is a base engine for encrypting ELF binaries. Uses simple bit rotation and allows for the ability to add your own algorithm. http://packetstormsecurity.org/files/31069/core-locate.c http://packetstormsecurity.org/files/31069/core-locate.c http://packetstormsecurity.org/files/31069/core-locate.c.html Wed, 16 Apr 2003 02:40:32 GMT This utility will search in a binary or core dump for a user supplied string and return the exact location in memory. http://packetstormsecurity.org/files/31068/4553-invader.c http://packetstormsecurity.org/files/31068/4553-invader.c http://packetstormsecurity.org/files/31068/4553-invader.c.html Tue, 15 Apr 2003 22:33:42 GMT This ELF infector appends two executables together. The payload inside this parasite opens a bind shell on the infected machine as the user who executed it. http://packetstormsecurity.org/files/31071/ES-term-sniff.sh http://packetstormsecurity.org/files/31071/ES-term-sniff.sh http://packetstormsecurity.org/files/31071/ES-term-sniff.sh.html Tue, 15 Apr 2003 13:46:09 GMT This utility is a basic terminal sniffer. http://packetstormsecurity.org/files/31072/ESbasket.c http://packetstormsecurity.org/files/31072/ESbasket.c http://packetstormsecurity.org/files/31072/ESbasket.c.html Tue, 15 Apr 2003 13:44:27 GMT Exploit for NetMerchant that allows for remote command execution. http://packetstormsecurity.org/files/31073/esbug2.gif http://packetstormsecurity.org/files/31073/esbug2.gif http://packetstormsecurity.org/files/31073/esbug2.gif.html Thu, 05 Apr 2001 15:53:41 GMT Graphic for Electronic Souls