Synnergy Laboratories ≈ Packet Storm

mailtool-adv.txt

Wed, 30 May 2001 19:21:25 GMT

Local vulnerability in Solaris mailtool(1) - /usr/openwin/bin/mailtool on Solaris 8 (x86 and sparc) contains a local buffer overflow vulnerability. By specifying a long environment buffer containing machine executable code, it is possible to execute arbitrary command(s) as gid mail.

dc20ctrlex.perl

Wed, 14 Feb 2001 07:34:43 GMT

Dc20ctrlex.perl is a FreeBSD 3.x/4.X /usr/local/bin/dc20ctrl local exploit which gives egid=dialer or root on non-freebsd systems. Tested against FreeBSD 4.2.

portscan.pdf

Fri, 05 Jan 2001 08:26:29 GMT

Examining port scan methods - Analyzing Audible Techniques. This paper attempts to enumerate a variety of ways to discover and map internal/external networks using signature-based packet replies and known protocol responses when scanning. Specifically, this document presents all known techniques used to determine open/closed ports on a host and ways an attacker may identify the network services running on arbitrary servers. Text version available here.

portscan.txt

Fri, 05 Jan 2001 08:24:32 GMT

dtors.txt

Wed, 13 Dec 2000 03:53:04 GMT

Overwriting the .dtors section - This paper presents a concise explanation of a technique to gain control of a C program's flow of execution given that it has been compiled with gcc. This exploit technique has several advantages over changing the stack pointer, including ease of determining the exact position where we want to write and point to our shellcode, and is simpler than a GOT patch.

bug-testing.txt

Tue, 03 Oct 2000 19:46:41 GMT

The Importance of Bug Testing - Includes discussion of alpha / beta releases, the importance of bug testing, software development goals, software testing strategies, functional prototypes, designing test sets, defect testing, acceptance testing, and structural prototypes.

bandmon-0.2.tar.gz

Mon, 14 Aug 2000 22:11:56 GMT

Bandmon monitors the bandwidth usage on your network.

msadcscan-unix.c

Mon, 13 Dec 1999 23:33:05 GMT

Synnergy Networks msadc scanner - This is just a basic string scanner that happens to scan for the msadc module string.

fakelog-unix.c

Mon, 13 Dec 1999 08:14:15 GMT

Sends message to everyone on unix system via syslog().

sadmindex-brute-lux.c

Mon, 13 Dec 1999 08:14:15 GMT

Sadmind exploit stack pointer brute forcer, just ./sadmindex-brute-lux [arch] and it will brute force the stack pointer, it'll output a message on success and open ingreslock (1524) on the remote computer. This brute forcer requires sadmind exploit by Cheez Whiz.

qpop-linux

Fri, 10 Dec 1999 06:20:09 GMT

Remote buffer overflow exploit in perl for QPOP 3.0b<=20 running on Linux.

syn.jpg

Fri, 10 Dec 1999 05:17:49 GMT

Synnergy Logo

bindshell-unix

Sun, 05 Dec 1999 23:41:15 GMT

Remote unix shell backdoor written in perl.

tryseg-unix.c

Sat, 25 Sep 1999 13:38:33 GMT

Test for catching the SIGSEGV or SIGBUS without crashing and combined with try{}catch(){}.

segvbus-unix.c

Sat, 25 Sep 1999 13:38:19 GMT

Test for catching the SIGSEGV and SIGBUS without crashing and with setjmp()/longjmp().

liberty-unix.c

Sat, 25 Sep 1999 13:37:43 GMT

This will fill up all available memory, if no ulimit is set in the kernel.

ia.txt

Sat, 25 Sep 1999 13:20:46 GMT

IP Aliasing - How to set it up on a unix host.

tcp_relay-unix.c

Sat, 25 Sep 1999 13:20:46 GMT

A tcp relay. For more details, read the source.

ftpd-aix

Fri, 24 Sep 1999 21:49:47 GMT

Remote buffer overflow exploit for ftpd from AIX 4.3.2 running on an RS6000. (power).