|
(Page 4 of 7) < Prev 1 2 3 4 5 6 7 Next > Platform: Digital UNIX/Alpha ViperDB Added 2001-10-22 ViperDB was created as a smaller & faster option to Tripwire. Tripwire while being a great product leaves something to be desired in the speed department and also, by default tripwire generates a report everytime it runs and directs that report to an email address. This hinders most people from running Tripwire every few minutes to do a system check. ViperDB however is the answer to this problem. ViperDB uses a fast plaintext db and is written in perl. Domain Walking Tool Added 2001-10-22 This simple utility is an sh(1) shell script which allows you to walk first level domains and down. Imapd Vulnerability Scanner Added 2001-10-22 This Imapd scanner searches for and exploits hosts which are vulnerable to the imapd buffer overflow vulnerability. In particular the imapd vulnerability which was posted to the Bugtraq mailing list on July 17, 1998 by Anonymous (nobody@REPLAY.COM). A vulnerability exists in certain imapd implementations that allow an attacker to execute arbitrary code remotely. In certain instances, the code to be executed will be run with root privilege. Imap supports a command 'AUTHENTICATE' which specifies the type of authentication mechanism to be used to open a mailbox. The value passed to the authenticate command is copied into a buffer of size 1024. The maximum size of this value, however, it 8192 characters. A failure to bound the read value to 1024 results in a buffer overflow. This particular tool is built to exploit Linux X86 platforms. SRP - Secure Remote Password Protocol Added 2001-10-22 SRP stands for the Secure Remote Password protocol, and it represents a new mechanism for performing secure password-based authentication and key exchange over any type of network. SRP offers both security and convenience improvements over authentication techniques currently in use. exscan Added 2001-10-22 exscan is a network/Internet port scanner, that uses the strobe-scan technique of only scanning certain ports, instead of a full blown port scan. The ports which exscan scans can be viewed in the file SERVICES which is distributed with exscan. Cfdecrypt Added 2001-10-22 CFDECRYPT: Decrypt Cold Fusion templates encrypted with CFCRYPT fping Added 2001-10-22 fping is a ping(1) like program which uses the Internet Control Message Protocol (ICMP) echo request to determine if a host is up. fping is different from ping in that you can specify any number of hosts on the command line, or specify a file containing the lists of hosts to ping. Instead of trying one host until it timeouts or replies, fping will send out a ping packet and move on to the next host in a round-robin fashion. If a host replies, it is noted and removed from the list of hosts to check. If a host does not respond within a certain time limit and/or retry limit it will be considered unreachable. GCC Bounds Checking Extensions Added 2001-10-22 Chrootuid Added 2001-10-22 Chrootuid is a wrapper program designed to protect hosts from network compromise. By running a daemon under the chrootuid wrapper, if the daemon results in a remote compromise, the access acquired will be severely limited. Chrootuid utilizes the chroot() mechanism to allow the daemon to run in its own, contained sand box. If an attacker gains access to a host via a chroot'ed daemon, they will only have access to a specific subset of tools and capabilities, as provided in the chroot directory set by the wrapper. CU Sudo Added 2001-10-22 Sudo is a utility that allows administrators to give limited access to root privileges to users, and log activity associated with the use of sudo. This allows for giving people the access they need, without the need to give full root access. Browse by category |
|
|
Privacy Statement |
