Page 1 of 2 12 LastLast
Results 1 to 10 of 13

Thread: some useful *nix and windows tools

  1. #1
    Senior Member
    Join Date
    Feb 2003
    Posts
    193

    Post some useful *nix and windows tools

    Credit : Eric Cole www.securityhaven.com

    Tools

    1.Achillies
    http://www.digizen-security.com
    this tool edits web sessions.

    2. Adig
    http://nscan.hypermart.net/index.cgi?index=dns Advanced dig for Windows

    3.Adore http://www.packetstormsecurity.com/U...ation/rootkits
    Kernel level rootkits

    4.AppScan
    http://www.sanctuminc.com
    Web site scanner (commercial)

    5.Authforce http://kapheine.hypa.net/authforce/index.php Attempts to guess passwords for HTTP

    6.Back Orifice 2000
    http://www.bo2k.com
    Remote control trojan program

    7.Brute_ssl http://www.packetstormsecurity.com/E...ve/brute_ssl.c
    Guesses passwords for SSL

    8.Brute_web http://www.packetstormsecurity.com/E...ve/brute_web.c
    Guesses passwords for the web

    9.Cheops
    http://www.marko.net/cheops/
    ICMP mapping tool

    10.Chkrootkit
    ftp://ftp.pangeia.com.br/pub/seg/pac
    Checks for rootkits on systems

    11.Covert_TCP
    http://www.packetstormsecurity.com
    Hiding data in the TCP/IP headers

    12.CPU Hog http://206.170.197.5/hacking/DENIALOFSERVICE/
    Local DOS attack

    13.Crack ftp://coast.cs.purdue.edu/pub/tools/unix/crack
    Unix password cracking

    14.Default passwords
    http://security.nerdnet.com
    Default passwords for many platforms

    15.Dsniff
    http://www.monkey.org/~dugsong/dsniff
    Advanced sniffer suite

    16.DumpSec
    http://www.systemtools.com/somarsoft
    Gathers data through Null session

    Enum
    http://razor.bindview.com
    Gathers data through Null session
    Ethereal
    http://www.ethereal.com
    Freeware sniffer for NT and Unix
    Fast Lane
    http://www.fastlanetech.com
    NT password filtering tool
    Firewalk http://www.packetstormsecurity.com/UNIX/audit/firewalk
    Determines rules for a firewall
    Fragrouter
    http://www.anzen.com/research/nidsbench
    Fragments IP packets
    GetAdmin http://www.infowar.co.uk/mnemonix/utils.htm
    Elevates access on NT
    Hunt
    http://www.cri.cz/kra/index.html
    Session Hijacking tool
    Hypnopaedia http://www.packetstormsecurity.com/Crackers/hypno.zip
    Guesses POP3 email passwords
    IIS Unicode
    http://www.wiretrip.net/rfp/p/doc.asp?id=57&face=2 IIS exploit
    IMAP Buffer Overflow http://www.packetstormsecurity.com
    Buffer overflow to gain root access
    IP Watcher
    http://www.engarde.com
    Commercial session hijacking tool
    ITS4
    http://www.cigital.com/its4/
    Automated security reviewer
    Jizz
    http://www.rootshell.com
    DNS cache poisoning
    John the ripper
    http://www.openwall.com/john
    Password cracker for multi OS's
    Jolt2
    http://razor.bindview.com
    Denial of service tool
    Juggernaut
    http://www.rootshell.com
    Session hijcaking tool
    Knark http://www.packetstormsecurity.com/U...ation/rootkits
    Kernel level rootkit
    Land
    http://www.packetstormsecurity.com/9...ts/eugenics.pl Denial of service attack
    Linux boot disk http://home.eunet.no/~pnordah/ntpasswd/bootdisk.html
    Linux boot disk for NT
    Loki
    http://www.phrack.com/Archives/phrack51.tgz
    Creates a covert channel
    L0phtcrack (LC)
    http://www.atstake.com
    Password cracker for NT/2000
    Log files
    ftp://ftp.technotronic.com/unix/log-tools
    Tools for editing log files
    Lrk5 http://www.packetstormsecurity.com/U...ation/rootkits
    Rootkit
    Mendex
    http://www.packetstormsecurity.com
    Exploits trust relationship
    Nessus
    http://www.nessus.org
    Vulnerability scanner
    NetBus
    http://www.netbus.org
    Trojan program for NT
    NetCat
    http://www.l0pht.com/users/10pht/nc110.tgz
    Listen and connects to ports
    NetMeeting Buffer Overflow http://www.packetstormsecurity.com
    Buffer overflow for netmeeting
    Nmap
    http://www.insecure.org/nmap
    Port scanner
    NTFSDOS http://www.packetstormsecurity.com/NT/hack/ntfsdos.zip
    Allows DOS to read an NTFS partition
    NT Rootkit
    http://www.rootkit.com
    Rootkit for NT
    PalmCrack http://www.noncon.org/noncon/download.html Password cracker for palmpilot
    Pandora
    http://www.nmrc.org/pandora
    Password cracker for Novell
    Password Guardian
    http://www.georgiasoftworks.com
    NT password filtering tool
    Ping of death
    http://www.packetstormsecurity.com
    Denial of service attack
    Ports
    http://www.simovits.com/nyheter9902.html
    List of common trojan ports
    Pwdump3
    http://www.ebiz-tech.com/pwdump3
    Dumps passwords from NT and 2000
    Queso
    http://www.apostols.org/projectz/queso OS fingerprinting
    Rbone
    http://www.packetstormsecurity.com
    Exploits trust relationship
    RDS exploit
    http://www.wiretrip.net/rfp/p/doc.asp?id=1&iface=2 Gains access on an IIS server
    RedButton
    http://packetstorm.securify.com
    Acquires information from an NT system
    Redir
    http://oh.verio.com/~sammy/hacks
    Packet redirector
    Reverse WWW shell
    http://r3wt.base.org
    Covert channel
    Rstatd
    http://www.packetstormsecurity.com
    Buffer overflow
    Rootkits http://www.packetstormsecurity.com/U...ation/rootkits Rootkits
    Sam Spade http://www.samspade.org
    General reconnaissance tool
    Sechole
    http://www.ntshop.net
    Elevation of privileges
    Silk Rope
    http://www.netninja.com/bo/index.html
    Wrapper programs for creating trojans
    Slint http://www.l0pht.com/slint.html
    Source code security check
    Smurf
    http://www.packetstormsecurity.com
    Denial of service attack
    Smurf amplifier
    http://www.netscan.org
    List of smurf amplifiers
    Smurf amplifier http://www.pulltheplug.com/broadcast2.html
    List of smurf amplifiers
    Smurf defenses
    http://www.pentics.net/denial-of-ser...pers/smurf.cgi
    Defending against the smurf attack
    Sneakin
    http://www.packetstormsecurity.com
    Reverse telnet covert channel
    Sniffit
    http://reptile.rug.ac.be/~coder/sniffit/sniffit.html
    Sniffer
    Snort
    http://www.snort.org IDS/sniffer
    Solaris rootkit http://thc.inferno.tusculum.edu/files/thc/slkm-1.0.html Solaris rootkit
    Somarsoft http://www.packetstormsecurity.com/N....passwords.zip Remotely guesses NT passwords
    SSPing
    http://www.packetstormsecurity.com
    Denial of service attack
    StackGuard
    http://www.angelfire.com/sk/stackshield
    Creates more secure stacks
    Strongpass
    http://ntsecurity.nu/toolbox
    NT password filtering
    SYN Flood
    http://www.packetstormsecurity.com
    Denial of service attack
    Targa
    http://www.packetstormsecurity.com
    Denial of service tool
    TBA
    http://www.l0pht.com/~kingpin/pilot.html
    War dialer for a palm pilot
    THC
    http://thc.inferno.tusculum.edu
    War dialer
    THC Login Hacker
    http://thc.inferno.tusculum.edu
    War dialer scripting language
    Tini
    http://ntsecurity.nu/toolbox/tini
    Backdoor listener
    Tooltalk buffer overflow
    http://www.securityfocus.com
    Buffer overflow for gaining root access
    TFN2K http://www.packetstormsecurity.com/distributed/ DDOS tool
    Trinoo http://www.packetstormsecurity.com/distributed/ DDOS tool
    Tripwire http://www.tripwire.com
    File integrity checker
    TTY watcher ftp://coast.cs.purdue.edu/pub/tools/unix/ttywatcher Session hijacking tool
    Web-based reconnaissance
    http://nettool.false.net Web-based reconnaissance
    Web-based reconnaissance http://members.tripod.com/mixtersecurity/evil.html Web-based reconnaissance
    Web-based reconnaissance
    http://www.network-tools.com
    Web-based reconnaissance
    Web-based reconnaissance http://www.cotse.com/refs.htm
    Web-based reconnaissance
    Web-based reconnaissance http://sucide.netfarmers.net
    Web-based reconnaissance
    Web-based reconnaissance http://www.jtan.com/resources/winnuke.html
    Web-based reconnaissance
    Web-based reconnaissance http://www.securityspace.com
    Web-based reconnaissance
    Web-based reconnaissance http://crypto.yashy.com Web-based reconnaissance
    Web-based reconnaissance http://www.grc.com/x/ne.dll?bh0bkyd2
    Web-based reconnaissance
    Web-based reconnaissance
    http://privacy.net/analyze
    Web-based reconnaissance
    Web-based reconnaissance http://www.webtrends.net/tools/security/scan.asp Web-based reconnaissance
    Web-based reconnaissance http://www.doshelp.com/dostest.htm
    Web-based reconnaissance
    Web-based reconnaissance http://www.dslreports.com/r3/dsl/secureme
    Web-based reconnaissance
    Whisker
    http://www.wiretrip.net/rfp
    CGI vulnerability scanner
    Windump
    http://netgroup-serv.polito.it/windump
    TCP dump for Windows
    Winnuke
    http://www.anticode.com
    DOS for Windows
    Winzapper
    http://ntsecurity.nu/toolbox/winzapper
    NT log editing tool
    World Wide Web Security FAQ http://www.w3.org/Security/Faq/www-security-faq.html
    World Wide Web security FAQ
    Xavier
    http://www.btinternet.com/~lithiumsoft
    Guesses application passwords
    Zombie Zapper http://razor.bindview.com/tools/ZombieZapper_form.shtml
    Puts DDOS zombies to sleep

  2. #2
    Senior Member
    Join Date
    Sep 2003
    Posts
    279
    damn, good find. very usefullt. thanks
    AntiOnline Quick Forum Version 2b Click Here
    10010101000000110010001100111

  3. #3
    Great man!
    Very useful.

  4. #4
    Senior Member
    Join Date
    Aug 2003
    Posts
    1,018
    Except there's a few dead links there..

    EDIT: Appreciate the effort though

  5. #5
    Senior Member
    Join Date
    Jan 2003
    Posts
    220
    Amazing....great work!
    [gloworange]And then it happened... a door opened to a world... rushing through the phone line like heroin through an addict\'s veins, an electronic pulse is sent out, a refuge from the day-to-day incompetencies is sought... a board is found. \"This is it... this is where I belong...\" I know everyone here... even if I\'ve never met them, never talked to them, may never hear from them again... I know you all...[/gloworange]

  6. #6
    Junior Member
    Join Date
    Sep 2003
    Posts
    1
    Excellent, thanks a lot.

  7. #7
    Vip3r,

    Good job, It's nice to have lists like this that puts a bunch of stuff in one place.

    For a web site that does the same thing take a look at Cyber Sniper Research Labs @

    http://www.cybersnipers.com/

    And I can add the follwong site for web based recon @

    http://www.canufly.net/~georgegg/dns/

    The who is url tool you can add to your favorites list. WHen you are on a web site and want to do a quick web based whois lookup you select it from your favorites list and it opens a new window with the results. Only problem is that it is a pop-up so it won't work if you have them blocked. I use the google tol bar so it is pretty easy to disable and re-enable for this.

    Also does good RDNS under the nameserver host utility, with HEAD requests.

    Not earth shattering but pretty useful all around web based utilities.
    \"If you take a starving dog in off the street and make him prosperous he will not bite you, this is the principle difference between a dog and a man\" - Mark Twain

  8. #8
    Senior Member Maestr0's Avatar
    Join Date
    May 2003
    Posts
    604
    Eric Cole's Hakers Beware is a good read as well.


    -Maestr0
    \"If computers are to become smart enough to design their own successors, initiating a process that will lead to God-like omniscience after a number of ever swifter passages from one generation of computers to the next, someone is going to have to write the software that gets the process going, and humans have given absolutely no evidence of being able to write such software.\" -Jaron Lanier

  9. #9
    Senior Member
    Join Date
    Feb 2003
    Posts
    193
    oh really, I haven't read it. I was thinking to get one. Is it better than ed skoudis?

  10. #10

    Thumbs up Cool

    Kee it up . very usefull stuf.

    Cheers
    antisecurityboy

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •