Teso ≈ Packet Storm

7350ssharp-0.51.tgz

Fri, 25 Jun 2004 11:45:00 GMT

ssharp is a tool for man in the middle attacks against SSH.

adore-ng-0.41.tgz

Fri, 12 Mar 2004 01:34:01 GMT

Adore is a Linux LKM based rootkit for Linux v2.[246]. Features smart PROMISC flag hiding, persistent file and directory hiding (still hidden after reboot), process-hiding, netstat hiding, rootshell-backdoor, and an uninstall routine. Includes a userspace program to control everything.

adore-ng-0.31.tgz

Tue, 06 Jan 2004 00:33:29 GMT

Adore is a Linux LKM based rootkit for Linux v2.[24]. Features smart PROMISC flag hiding, persistent file and directory hiding (still hidden after reboot), process-hiding, netstat hiding, rootshell-backdoor, and an uninstall routine. Includes a userspace program to control everything.

objobf-0.5.0.tar.bz2

Sun, 10 Aug 2003 23:28:01 GMT

objobf is an obfuscater for x86/Linux ELF relocatable object files (.o files) that can produce fancy graphs to visualize function structures. Released at CCCAMP 2k3.

loaded-0.21.tgz

Wed, 28 May 2003 09:06:24 GMT

loaded version 0.21 is an IPv4 load balancer for Linux. It requires netfilter and the QUEUE target enabled in the kernel.

guess-who-0.44.tgz

Wed, 28 May 2003 09:03:54 GMT

guess-who version 0.44 is a password brute force utility for SSH2.

reducebind.c

Mon, 27 Jan 2003 19:06:14 GMT

This utility converts a dynamically link Linux IA32 ELF binary to a static binary.

sparc.c

Sun, 05 Jan 2003 14:25:05 GMT

Remote root exploit for Solaris Napalm heap overflow - SPARC version. Tested against SunOS 5.6, 5.7, 5.8, and 5.9. Attempts to add a root shell to inetd.conf.

burneye-1.0.1-src.tar.bz2

Tue, 24 Dec 2002 15:57:49 GMT

Burneye ELF encryption program 1.0.1 with full source and docs.

epta.tgz

Tue, 03 Dec 2002 06:20:53 GMT

Execution Path Timing Analysis of Unix Daemons - White paper on how to determine if a username is valid remotely by timing remote responses of login programs. OpenSSH diff against v2.99p2 which determines if a username exists even on the newest versions of OpenSSH included.

hack.pl

Sat, 30 Nov 2002 20:39:50 GMT

Suidperl v5.00503 and others tmp race local root exploit.

7350pippi.pl

Sat, 30 Nov 2002 20:38:04 GMT

7350pippi is a x86/Linux ipppd local root exploit.

7350lapsus.pl

Sat, 30 Nov 2002 20:36:37 GMT

7350lapsus is a lpr-3.0.48 Local root exploit. Requires root on a host counted in hosts.lpd and local account on lpd box. This is proof of concept, chown()ing /etc/passwd to a user named 'stealth'.

adore-0.42.tgz

Thu, 19 Sep 2002 22:18:14 GMT

Adore is a linux LKM based rootkit for Linux v2.[24]. Features smart PROMISC flag hiding, persistent file and directory hiding (still hidden after reboot), process-hiding, netstat hiding, rootshell-backdoor, and an uninstall routine. Includes a userspace program to control everything.

burneye-1.0-linux-static.tar.gz

Thu, 19 Sep 2002 22:15:37 GMT

Burneye ELF encryption program, x86-linux binary, version 1.0 - new year release!

burneye-stripped.tar.gz

Thu, 19 Sep 2002 22:14:47 GMT

Stripped burneye sources, for educational purposes (beside the speech + article).

teso_crew_99_at_ccc-camp.jpg

Sun, 15 Sep 2002 03:38:06 GMT

TESO at CCC.

chap.pdf

Tue, 26 Feb 2002 06:28:20 GMT

Weaknesses in the CHAP protocol as used within PPP and PPTP. Allows authentication in PPTP networks without knowing valid login/password combinations. This authentication scheme is widely used at universities (WLAN networks). A link to a special pppd which is able to authenticate without valid /etc/ppp/chap-secrets is included.

teso-advisory-012.txt

Tue, 05 Feb 2002 07:21:07 GMT

TESO Security Advisory - LIDS Linux Intrusion Detection System vulnerability. The "Linux Intrusion Detection System" security patch for the Linux kernel creates a security vulnerability. Exploitation is easy and local users may be able to gain unrestricted root privileges.

iob-0.1.tar.gz

Thu, 11 Oct 2001 04:40:44 GMT

IOB stands for I/O bridge, a simple tty chaining program. It can be used to log almost any session, including ssh, gpg, pgp, cfsattach, losetup, etc.

teso-advisory-011.txt

Sun, 29 Jul 2001 09:59:35 GMT

TESO Security Advisory #11 - Multiple vendor Telnet Daemon vulnerability. Most current telnet daemons in use today contain a buffer overflow in the telnet option handling. Under certain circumstances it may be possible to exploit it to gain root privileges remotely. Affected systems include BSDI 4.x, FreeBSD, IRIX, Linux with netkit-telnetd < 0.14, NetBSD, OpenBSD 2.x, and Solaris.

adore-0.39b4.tgz

Sun, 29 Jul 2001 09:48:33 GMT

adorebsd-0.34.tar.gz

Fri, 25 May 2001 22:24:56 GMT

AdoreBSD 0.34 - Based off Linux Adore by Stealth. Features hiding files and directories from view, makes processes invisible, hides promiscuous flag and syslog messages, execute as root, hides sysctl mib entries, netstat service hiding, authentication, and module hiding. Developed on FreeBSD 4.3-STABLE.

adore-0.38.tar.gz

Fri, 25 May 2001 22:17:46 GMT

arpmim-0.2.tar.gz

Sat, 07 Apr 2001 07:29:58 GMT

Arpmim v0.2 implements an ARP man in the middle attack. Includes single or multiple host support, asymmetric MiM, arpop_request, and macoff.