|
(Page 3 of 5) < Prev 1 2 3 4 5 Next > Platform: Unixware Traceroute Added 2001-10-22 Traceroute is a system administrators utility to trace the route ip packets from the current system take in getting to some destination system. See the comments at the front of the program for a description of its use. This program a) can only be run by root (it uses raw ip sockets). b) REQUIRES A KERNEL MOD to the raw ip output code to run. dig Added 2001-10-22 Dig (domain information groper) is a flexible command line tool which can be used to gather information from the Domain Name System servers. Dig has two modes: simple interactive mode which makes a single query, and batch which executes a query for each in a list of several query lines. All query options are accessible from the command line. ViperDB Added 2001-10-22 ViperDB was created as a smaller & faster option to Tripwire. Tripwire while being a great product leaves something to be desired in the speed department and also, by default tripwire generates a report everytime it runs and directs that report to an email address. This hinders most people from running Tripwire every few minutes to do a system check. ViperDB however is the answer to this problem. ViperDB uses a fast plaintext db and is written in perl. Imapd Vulnerability Scanner Added 2001-10-22 This Imapd scanner searches for and exploits hosts which are vulnerable to the imapd buffer overflow vulnerability. In particular the imapd vulnerability which was posted to the Bugtraq mailing list on July 17, 1998 by Anonymous (nobody@REPLAY.COM). A vulnerability exists in certain imapd implementations that allow an attacker to execute arbitrary code remotely. In certain instances, the code to be executed will be run with root privilege. Imap supports a command 'AUTHENTICATE' which specifies the type of authentication mechanism to be used to open a mailbox. The value passed to the authenticate command is copied into a buffer of size 1024. The maximum size of this value, however, it 8192 characters. A failure to bound the read value to 1024 results in a buffer overflow. This particular tool is built to exploit Linux X86 platforms. Cfdecrypt Added 2001-10-22 CFDECRYPT: Decrypt Cold Fusion templates encrypted with CFCRYPT GCC Bounds Checking Extensions Added 2001-10-22 Chrootuid Added 2001-10-22 Chrootuid is a wrapper program designed to protect hosts from network compromise. By running a daemon under the chrootuid wrapper, if the daemon results in a remote compromise, the access acquired will be severely limited. Chrootuid utilizes the chroot() mechanism to allow the daemon to run in its own, contained sand box. If an attacker gains access to a host via a chroot'ed daemon, they will only have access to a specific subset of tools and capabilities, as provided in the chroot directory set by the wrapper. CU Sudo Added 2001-10-22 Sudo is a utility that allows administrators to give limited access to root privileges to users, and log activity associated with the use of sudo. This allows for giving people the access they need, without the need to give full root access. Checker Added 2001-10-22 Checker will scan a set of IP addresses for a configurable set of ports, and generate a report detailing what is and is not running properly. The output is highly configurable, and allows for the mailing of the results to a specifiable address. findomains.c Added 2001-10-22 findomains.c is a simple program to find the names associated with a class C worth of IP's. Browse by category |
|
|
Privacy Statement |
