|
(Page 7 of 12) < Prev 2 3 4 5 6 7 8 9 10 11 12 Next > Platform: BSDI GCC Bounds Checking Extensions Added 2001-10-22 Chrootuid Added 2001-10-22 Chrootuid is a wrapper program designed to protect hosts from network compromise. By running a daemon under the chrootuid wrapper, if the daemon results in a remote compromise, the access acquired will be severely limited. Chrootuid utilizes the chroot() mechanism to allow the daemon to run in its own, contained sand box. If an attacker gains access to a host via a chroot'ed daemon, they will only have access to a specific subset of tools and capabilities, as provided in the chroot directory set by the wrapper. CU Sudo Added 2001-10-22 Sudo is a utility that allows administrators to give limited access to root privileges to users, and log activity associated with the use of sudo. This allows for giving people the access they need, without the need to give full root access. cgiscan Added 2001-10-22 cgiscan.c is another simple program which facilitates the scanning of hosts on a network for known cgi vulnerabilities. It let's the user know whether or not a given cgi was found on the host. Checker Added 2001-10-22 Checker will scan a set of IP addresses for a configurable set of ports, and generate a report detailing what is and is not running properly. The output is highly configurable, and allows for the mailing of the results to a specifiable address. findomains.c Added 2001-10-22 findomains.c is a simple program to find the names associated with a class C worth of IP's. fts-rvscan Added 2001-10-22 rvscan is a remote vulnerability scanner. It checks for a number of recent remote vulnerabilities in a variety of Unixes. Unlike most commercial scanners, it uses real exploits to check for the vulnerabilities. Subinfo Added 2001-10-22 Subinfo is a shell script which utilizes nslookup to dump all information about a domain, and its subdomains. Courtney Added 2001-10-22 Courtney is a "ids" system, which monitors for SATAN probes and attacks. It receives its input from tcpdump, counting the number of new services a machine originates within a time window. If the threshold is exceeded by a host, it is flagged as a potential SATAN host. scan-detector Added 2001-10-22 Scan-detector is a simple detector for automated scans of TCP/ UDP ports on a host. It works by opening a socket on specified ports, and watches for a connection. When a connection is established, the host name, source port, destination host, destination port, and a number of other pieces of information are logged. Browse by category |
|
|
Privacy Statement |
