Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 12:10:33 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1731115621&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Fjava%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1731115621.1338207033.1338207033.1338207033.1%3B%2B__utmz%3D32867617.1338207033.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/96675/J2EEPayload-0.1.zip http://packetstormsecurity.org/files/96675/J2EEPayload-0.1.zip http://packetstormsecurity.org/files/96675/J2EEPayload-0.1.html Mon, 13 Dec 2010 21:31:07 GMT This archive contains a collection of WAR and EAR compatible stagers that use a variety of communication methods to communicate back to the attacker - even if the only open port is the HTTP/JNDI port, or even if no incoming ports are open but the victim can call back (which can be tricky as usually WARs and EARs are initialized on demand). http://packetstormsecurity.org/files/88636/JavaPayload-0.2.zip http://packetstormsecurity.org/files/88636/JavaPayload-0.2.zip http://packetstormsecurity.org/files/88636/JavaPayload-Platform-Independent-Java-Stager-Payloads.html Mon, 19 Apr 2010 22:39:28 GMT This archive contains a collection of pure Java payloads, from simple Shell and UpExec payloads (which need - to some degree - platform dependent parameters), to a JSh ("Java Shell") payload that supports an interactive shell to query system properties, run applications, open TCP connections, navigate the filesystem and read/write text files. Basic job control enables to run more than one command or TCP session via a single exploited session. These payloads are modular, consisting of three parts: loaders, stagers and stages. Loaders, stagers and stages can be combined arbitrarily, and the stages and stagers can also be used to integrate them into other exploit frameworks like Metasploit (if you are more Ruby-literate than me). There are also examples included how to call these payloads from standalone applications, signed Java applets, OpenOffice macros or via JDWP debug connections. http://packetstormsecurity.org/files/33197/fstools-1.0.3.zip http://packetstormsecurity.org/files/33197/fstools-1.0.3.zip http://packetstormsecurity.org/files/33197/fstools-1.0.3.zip.html Wed, 28 Apr 2004 05:27:45 GMT File system investigator is a forensic tool that allows viewing of ReiserFS and EXT2/3. While primarily intended as a forensics tool, it is also useful for Linux users who dual boot with another OS; it allows them to view and extract files from their partitions. Written in Java. http://packetstormsecurity.org/files/33057/fstools-1.0.2.zip http://packetstormsecurity.org/files/33057/fstools-1.0.2.zip http://packetstormsecurity.org/files/33057/fstools-1.0.2.zip.html Sat, 10 Apr 2004 16:44:00 GMT File system investigator is a forensic tool that allows viewing of ReiserFS and EXT2/3. While primarily intended as a forensics tool, it is also useful for Linux users who dual boot with another OS; it allows them to view and extract files from their partitions. Written in Java. http://packetstormsecurity.org/files/32894/jpcap-0.01.15.tar.gz http://packetstormsecurity.org/files/32894/jpcap-0.01.15.tar.gz http://packetstormsecurity.org/files/32894/jpcap-0.01.15.tar.gz.html Thu, 18 Mar 2004 16:48:39 GMT Network Packet Capture Facility for Java is a set of Java classes that provide an interface and system for network packet capture. A protocol library and tool for visualizing network traffic is included. It utilizes libpcap, a widely used system library for packet capture. http://packetstormsecurity.org/files/30853/hextodec.java http://packetstormsecurity.org/files/30853/hextodec.java http://packetstormsecurity.org/files/30853/hextodec.java.html Thu, 27 Feb 2003 09:09:42 GMT Hextodec.java is a simple hex ip to dec ip converter which can be useful for many things, among them is finding the ips of users on java chats similar to the one on www.ircnet.com. http://packetstormsecurity.org/files/26237/JavaPortScan.zip http://packetstormsecurity.org/files/26237/JavaPortScan.zip http://packetstormsecurity.org/files/26237/JavaPortScan.zip.html Thu, 06 Jun 2002 05:16:57 GMT Java simple tcp port scanner. Very portable. http://packetstormsecurity.org/files/26145/secura_java.zip http://packetstormsecurity.org/files/26145/secura_java.zip http://packetstormsecurity.org/files/26145/secura_java.zip.html Mon, 27 May 2002 09:26:03 GMT Secura is an open source cross platform java crypto package. Jar available here. http://packetstormsecurity.org/files/25696/jvmcrash.txt http://packetstormsecurity.org/files/25696/jvmcrash.txt http://packetstormsecurity.org/files/25696/jvmcrash.txt.html Sat, 02 Feb 2002 07:01:20 GMT java.security.AccessController can cause Sun derived JVM to crash. Tested on v1.3.1. Article available here. http://packetstormsecurity.org/files/25316/cpt1.tar.gz http://packetstormsecurity.org/files/25316/cpt1.tar.gz http://packetstormsecurity.org/files/25316/cpt1.tar.gz.html Thu, 27 Sep 2001 04:56:58 GMT Proxy Toolkit is coded in Java and checks to see what information a web proxy forwards. http://packetstormsecurity.org/files/25310/mindterm_2.1-bin.zip http://packetstormsecurity.org/files/25310/mindterm_2.1-bin.zip http://packetstormsecurity.org/files/25310/mindterm_2.1-bin.zip.html Sat, 22 Sep 2001 02:55:08 GMT MindTerm is a complete ssh-client in pure java which can be used either as a standalone java-application or as a java-applet. Includes a vt102/xterm-terminal with the ssh protocol and also "drop-in" socket replacements to use ssh tunnels transparently from a java application/applet. http://packetstormsecurity.org/files/25220/marvinobfuscator1_2.zip http://packetstormsecurity.org/files/25220/marvinobfuscator1_2.zip http://packetstormsecurity.org/files/25220/marvinobfuscator1_2.zip.html Sat, 25 Aug 2001 06:47:49 GMT The Marvin Obfuscater rewrites Java applications in a way that makes it almost impossible to decompile them and understand their inner workings. http://packetstormsecurity.org/files/25103/sneaky.tar.gz http://packetstormsecurity.org/files/25103/sneaky.tar.gz http://packetstormsecurity.org/files/25103/sneaky.tar.gz.html Sat, 04 Aug 2001 11:35:47 GMT Sneaky Pete is a java program which lets you input an alphabetic passphrase into a computer without using a keyboard, thus foiling keylogging software/hardware. It also incorporates anti-TEMPEST fonts to make it harder for monitor-scanners to see what letters are on your display. http://packetstormsecurity.org/files/24937/mindterm_2.0-src.zip http://packetstormsecurity.org/files/24937/mindterm_2.0-src.zip http://packetstormsecurity.org/files/24937/mindterm_2.0-src.zip.html Thu, 07 Jun 2001 00:56:38 GMT MindTerm is a complete ssh-client in pure java which can be used either as a standalone java-application or as a java-applet. Includes a vt102/xterm-terminal with the ssh protocol and also "drop-in" socket replacements to use ssh tunnels transparently from a java application/applet. http://packetstormsecurity.org/files/23630/mindtermbin-v199.zip http://packetstormsecurity.org/files/23630/mindtermbin-v199.zip http://packetstormsecurity.org/files/23630/mindtermbin-v199.zip.html Fri, 16 Mar 2001 23:08:20 GMT MindTerm is a complete ssh-client in pure java which can be used either as a standalone java-application or as a java-applet. Includes a vt102/xterm-terminal with the ssh protocol and also "drop-in" socket replacements to use ssh tunnels transparently from a java application/applet. http://packetstormsecurity.org/files/24112/freeze_me.txt http://packetstormsecurity.org/files/24112/freeze_me.txt http://packetstormsecurity.org/files/24112/freeze_me.txt.html Wed, 24 Jan 2001 22:16:14 GMT This Java script will cause Internet Explorer to consume 100% resources. http://packetstormsecurity.org/files/23643/shellinabox.tar.gz http://packetstormsecurity.org/files/23643/shellinabox.tar.gz http://packetstormsecurity.org/files/23643/shellinabox.tar.gz.html Sun, 19 Nov 2000 08:14:01 GMT Shell In A Box provides shell access to a server from within any Java-enabled Web browser. Requests are tunneled over HTTP using the same proxy settings that the browser uses. On the server, it installs as a CGI program, and there is no client-side installation necessary. It sports full VT102 emulation with Unicode support, international font files, ANSI colors, a scrollback buffer, mouse position reporting, clipboard support, and user-configurable emulation modes. All user preferences are stored as cookies in the client's browser. http://packetstormsecurity.org/files/22717/mindtermsrc-v121.zip http://packetstormsecurity.org/files/22717/mindtermsrc-v121.zip http://packetstormsecurity.org/files/22717/mindtermsrc-v121.zip.html Thu, 03 Aug 2000 00:37:15 GMT MindTerm is a complete GPL'd ssh-client in pure java which can be used either as a standalone java-application or as a java-applet. Includes a vt102/xterm-terminal with the ssh protocol and also "drop-in" socket replacements to use ssh tunnels transparently from a java application/applet. http://packetstormsecurity.org/files/22268/secureftp.jar http://packetstormsecurity.org/files/22268/secureftp.jar http://packetstormsecurity.org/files/22268/secureftp.jar.html Sat, 01 Jul 2000 19:34:16 GMT Secure FTP is a client package that allows for a secure connection to be made to an FTP daemon. In this release, we support connecting via the Secure Sockets Layer. This client is supported on Windows and any Unix platform where a Java 2 (or Swing) runtime environment is present. It was written in 100% Pure Java and can act as either an application or an applet. http://packetstormsecurity.org/files/22127/ftphack010.zip http://packetstormsecurity.org/files/22127/ftphack010.zip http://packetstormsecurity.org/files/22127/ftphack010.zip.html Wed, 14 Jun 2000 18:05:10 GMT Java ftp login scanner is a multithreaded tool which scans ftp sites for a certain user. http://packetstormsecurity.org/files/17851/cst1.tgz http://packetstormsecurity.org/files/17851/cst1.tgz http://packetstormsecurity.org/files/17851/cst1.tgz.html Fri, 12 May 2000 02:05:06 GMT Cum Security Toolkit (cst v1.0) - Contains a scriptscanner and a portscanner Coded in Java. The http-script scanner features the ability to use a proxy server, a scripts-to-scan database, anti-IDS url encoding, fake "X-Forwarded-For:" header, and uses fake "Referer: " info. The port scanner is a full TCP connection scanner which can scan port ranges and grab banners. http://packetstormsecurity.org/files/17814/jport2.tar.gz http://packetstormsecurity.org/files/17814/jport2.tar.gz http://packetstormsecurity.org/files/17814/jport2.tar.gz.html Tue, 09 May 2000 20:45:08 GMT Jport is a simple Java portscanner. Source and binary included. Works best under linux, uses 150 threads. The New version has more features than ever including Port Identifications and New Threading System Increases Speed. http://packetstormsecurity.org/files/17521/mindtermsrc-v12.zip http://packetstormsecurity.org/files/17521/mindtermsrc-v12.zip http://packetstormsecurity.org/files/17521/mindtermsrc-v12.zip.html Fri, 07 Apr 2000 18:03:25 GMT MindTerm is a complete ssh-client in pure java. It can be used either as a standalone java-application or as a java- applet. The source-code is freely available (GPL). Three packages of importance are provided, terminal, ssh, and security. The terminal package is a rather complete vt102/xterm-terminal. The ssh-package contains the ssh- protocol and also "drop-in" socket replacements to use ssh- tunnels transparently from a java application/applet. It also contains functionality to realize a ssh-server. Finally the security package contains RSA, DES, 3DES, RC4 and Blowfish ciphers. http://packetstormsecurity.org/files/17185/JFwadmin-0.82.tar.gz http://packetstormsecurity.org/files/17185/JFwadmin-0.82.tar.gz http://packetstormsecurity.org/files/17185/JFwadmin-0.82.tar.gz.html Mon, 03 Apr 2000 23:45:10 GMT JFwadmin is a Java 2 high-level X11 tool for ipchains. The GUI displays easy-to-understand services. Features include boot scripts generation, firewall save and restore, automatic interface and IP address and routes detection, and current firewall configuration display. http://packetstormsecurity.org/files/17200/jport.tgz http://packetstormsecurity.org/files/17200/jport.tgz http://packetstormsecurity.org/files/17200/jport.tgz.html Sun, 02 Apr 2000 20:04:00 GMT Jport is a simple Java portscanner. Source and binary included. Works best under linux, uses 150 threads.