Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 11:52:00 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1262583068&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=s0ftpr0ject%2099%20releases%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Fgroups%2Fs0ftpj%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1262583068.1338205920.1338205920.1338205920.1%3B%2B__utmz%3D32867617.1338205920.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/101480/sniffjoke-0.4.tar.gz http://packetstormsecurity.org/files/101480/sniffjoke-0.4.tar.gz http://packetstormsecurity.org/files/101480/SniffJoke-IDS-Evasion-Tool-0.4.html Tue, 17 May 2011 02:14:47 GMT SniffJoke is middleware software for Linux that is managed by a web interface and enables connection scrambling technology, also known as sniffer evasion techniques. http://packetstormsecurity.org/files/76727/sniffjoke-0.3.zip http://packetstormsecurity.org/files/76727/sniffjoke-0.3.zip http://packetstormsecurity.org/files/76727/SniffJoke-IDS-Evasion-Tool.html Wed, 15 Apr 2009 20:41:29 GMT SniffJoke is middleware software for Linux that is managed by a web interface and enables connection scrambling technology, also known as sniffer evasion techniques. http://packetstormsecurity.org/files/60111/CVE-2007-3896.txt http://packetstormsecurity.org/files/60111/CVE-2007-3896.txt http://packetstormsecurity.org/files/60111/CVE-2007-3896.txt.html Mon, 15 Oct 2007 22:50:54 GMT ShellExecuteFisaco - This is a temporary, third-party patch to help mitigate the URL handling issue discovered in Windows XP and Windows Server 2003. http://packetstormsecurity.org/files/56909/sniffjoke-0.2.tar.gz http://packetstormsecurity.org/files/56909/sniffjoke-0.2.tar.gz http://packetstormsecurity.org/files/56909/sniffjoke-0.2.tar.gz.html Wed, 23 May 2007 04:58:04 GMT SniffJoke implements sniffer/IDS evasion techniques. SniffJoke runs on a network connected box by selectively applying evasion techniques to sessions involving it. Evasion application is governed by user rules and implemented with a netfilter/ulogd module. http://packetstormsecurity.org/files/54802/sniffjoke-0.1.tar.gz http://packetstormsecurity.org/files/54802/sniffjoke-0.1.tar.gz http://packetstormsecurity.org/files/54802/sniffjoke-0.1.tar.gz.html Tue, 06 Mar 2007 01:15:17 GMT SniffJoke implements sniffer/IDS evasion techniques. SniffJoke runs on a network connected box by selectively applying evasion techniques to sessions involving it. Evasion application is governed by user rules and implemented with a netfilter/ulogd module. http://packetstormsecurity.org/files/54801/iam-1.0.2.1.zip http://packetstormsecurity.org/files/54801/iam-1.0.2.1.zip http://packetstormsecurity.org/files/54801/iam-1.0.2.1.zip.html Tue, 06 Mar 2007 01:13:10 GMT Sandboxing tool for Windows. http://packetstormsecurity.org/files/54800/apmislay-0.0.1.tar.gz http://packetstormsecurity.org/files/54800/apmislay-0.0.1.tar.gz http://packetstormsecurity.org/files/54800/apmislay-0.0.1.tar.gz.html Tue, 06 Mar 2007 01:11:45 GMT Apmislay (avoid+privacy+mislay) is a library to make anonymous connections without performance loss. It implements a simple technique based on IP spoofing and suits well for file sharing systems or anonymous transfers of large amount of data. http://packetstormsecurity.org/files/54799/bigboo.tar.gz http://packetstormsecurity.org/files/54799/bigboo.tar.gz http://packetstormsecurity.org/files/54799/bigboo.tar.gz.html Tue, 06 Mar 2007 01:10:38 GMT BigBoo is a YABASST, Yet Another Block And Superblock Subversion Tool. It swallows, encrypts and hides your files in a ext2/ext3 or swap partition. http://packetstormsecurity.org/files/54798/SABBIAex-0.0.1.tar.gz http://packetstormsecurity.org/files/54798/SABBIAex-0.0.1.tar.gz http://packetstormsecurity.org/files/54798/SABBIAex-0.0.1.tar.gz.html Tue, 06 Mar 2007 01:09:47 GMT SABBIA protocol anonymizes low latency connections by making a continuous and constant padding over the net. This is an example of implementation on a trusted core. http://packetstormsecurity.org/files/54797/innova-0.0.1.tar.gz http://packetstormsecurity.org/files/54797/innova-0.0.1.tar.gz http://packetstormsecurity.org/files/54797/innova-0.0.1.tar.gz.html Tue, 06 Mar 2007 01:08:58 GMT Innova is a framework that permits to manipulate network sessions starting at layer 3 and is transparent to the application. It runs entirely in userspace on Linux and supports plugins. http://packetstormsecurity.org/files/54796/blastersteg.tar.gz http://packetstormsecurity.org/files/54796/blastersteg.tar.gz http://packetstormsecurity.org/files/54796/blastersteg.tar.gz.html Tue, 06 Mar 2007 01:07:38 GMT This code shows how to send hidden data steganographed into a simulation of common (worm) traffic. http://packetstormsecurity.org/files/54795/sud-1.3.tar.gz http://packetstormsecurity.org/files/54795/sud-1.3.tar.gz http://packetstormsecurity.org/files/54795/sud-1.3.tar.gz.html Tue, 06 Mar 2007 01:06:56 GMT sud (superuser daemon) permits a user to switch to root privileges and to use a suid program in a nosuid environment. It is based on a client/server model and on the ability to pass file descriptors between processes. sud permits you to choose your authentication method, and your effective credentials will be checked by using a Unix domain socket. http://packetstormsecurity.org/files/54794/gtpa-0.12c.tar.gz http://packetstormsecurity.org/files/54794/gtpa-0.12c.tar.gz http://packetstormsecurity.org/files/54794/gtpa-0.12c.tar.gz.html Tue, 06 Mar 2007 01:06:07 GMT Generic time path analysis via ttysnoop-0.12c patching. http://packetstormsecurity.org/files/32297/kstat24_v1.1-2.tgz http://packetstormsecurity.org/files/32297/kstat24_v1.1-2.tgz http://packetstormsecurity.org/files/32297/kstat24_v1.1-2.tgz.html Mon, 01 Dec 2003 03:53:12 GMT Kernel Security Therapy Anti-Trolls (KSTAT) is a very powerful security tool to detect many kinds of rogue kernel rootkits. It analyzes the kernel through /dev/kmem and detects modified syscalls as well as various other problems. This version runs on 2.4.x only, and can assist in finding and removing trojan LKMs. It supports network socket dumps, sys_call fingerprinting, stealth module scanning, and more. http://packetstormsecurity.org/files/26180/kstat24.tgz http://packetstormsecurity.org/files/26180/kstat24.tgz http://packetstormsecurity.org/files/26180/kstat24.tgz.html Wed, 05 Jun 2002 16:34:42 GMT Kstat is a powerful tool for Linux v2.4.x which displays information taken directly from kernel structures taken from /dev/kmem. This is especially useful when we can't trust output from usual sources and applications, for example after an unauthorized access to our systems. Effective if something like ps, ifconfig, lsmod, or system calls are patched. http://packetstormsecurity.org/files/26224/tcc.tar.gz http://packetstormsecurity.org/files/26224/tcc.tar.gz http://packetstormsecurity.org/files/26224/tcc.tar.gz.html Wed, 05 Jun 2002 04:27:07 GMT TCP Congestion paper and proof of concept code - A vulnerability in the TCP protocol affects several OS's, allowing remote denial of service attacks. Includes a netfilter module which implements a new method of blocking the attack. More information on TCP congestion vulnerabilities available here http://packetstormsecurity.org/files/26183/umpf.tar.gz http://packetstormsecurity.org/files/26183/umpf.tar.gz http://packetstormsecurity.org/files/26183/umpf.tar.gz.html Mon, 03 Jun 2002 05:28:45 GMT Umpf is a system for managing encrypted files without using encrypted filesystems such as cfs/tcfs loop-aes/kerneli. Does not require root to run, is lightweight, and transparent. http://packetstormsecurity.org/files/24674/spapem.tar.gz http://packetstormsecurity.org/files/24674/spapem.tar.gz http://packetstormsecurity.org/files/24674/spapem.tar.gz.html Tue, 17 Apr 2001 02:56:25 GMT The Spapem project aims to how how to elude securelevel under *BSD systems by hiding the fact that the system has been rebooted. Includes code to restore the PID, a LKM to change the uptime, a generic rootkit example, a module to remove startup messages, and instructions for patching init(8). http://packetstormsecurity.org/files/24013/ucp.c http://packetstormsecurity.org/files/24013/ucp.c http://packetstormsecurity.org/files/24013/ucp.c.html Fri, 05 Jan 2001 00:42:03 GMT SMS Spoofing Tool - Spoof your SMS by using this code with smsclient. http://packetstormsecurity.org/files/24012/seekh_01a3.zip http://packetstormsecurity.org/files/24012/seekh_01a3.zip http://packetstormsecurity.org/files/24012/seekh_01a3.zip.html Fri, 05 Jan 2001 00:40:46 GMT L.L.H.M. - Low Level Header Manipulation is a tool hides pieces of information in your files. Works on Win32. http://packetstormsecurity.org/files/24011/thclinbd.tar.gz http://packetstormsecurity.org/files/24011/thclinbd.tar.gz http://packetstormsecurity.org/files/24011/thclinbd.tar.gz.html Fri, 05 Jan 2001 00:39:14 GMT THC Backdoor for Linux - This is a simple but useful backdoor for Linux based on a FreeBSD lkm by pragmatic/THC. http://packetstormsecurity.org/files/24010/thcobsdbd.tar.gz http://packetstormsecurity.org/files/24010/thcobsdbd.tar.gz http://packetstormsecurity.org/files/24010/thcobsdbd.tar.gz.html Fri, 05 Jan 2001 00:37:46 GMT THC Backdoor ported to OpenBSD - This is a simple but useful backdoor for OpenBSD based on a FreeBSD lkm by pragmatic/THC. http://packetstormsecurity.org/files/24009/obsd4-sock.tar.gz http://packetstormsecurity.org/files/24009/obsd4-sock.tar.gz http://packetstormsecurity.org/files/24009/obsd4-sock.tar.gz.html Thu, 04 Jan 2001 23:17:15 GMT SRaw for OpenBSD is a kld which makes all users able to open raw sockets. Supported protocols are IPPROTO_RAW, IPPROTO_ICMP, IPPROTO_IPIP, IPPROTO_IPV4, IPPROTO_IGMP. http://packetstormsecurity.org/files/24008/fbsd4-sock.tar.gz http://packetstormsecurity.org/files/24008/fbsd4-sock.tar.gz http://packetstormsecurity.org/files/24008/fbsd4-sock.tar.gz.html Thu, 04 Jan 2001 23:15:04 GMT SRaw is a kld for FreeBSD which disables EPERM in socket() and permits to allocate inpcb even if the socket is raw and users haven't root permissions bypassing suser() in pru_attach() functions. http://packetstormsecurity.org/files/24007/piove.tar.gz http://packetstormsecurity.org/files/24007/piove.tar.gz http://packetstormsecurity.org/files/24007/piove.tar.gz.html Thu, 04 Jan 2001 23:12:55 GMT This FreeBSD module shows how to intercept getpass(3) function and print anything that is typed without terminal echo.