|
(Page 8 of 18) < Prev 3 4 5 6 7 8 9 10 11 12 13 Next > Category: Auditing » Network » General Hping - Solaris Added 2001-10-22 A packet filter and latency tester, somewhat like Firewalk but not as advanced. Imapd Vulnerability Scanner Added 2001-10-22 This Imapd scanner searches for and exploits hosts which are vulnerable to the imapd buffer overflow vulnerability. In particular the imapd vulnerability which was posted to the Bugtraq mailing list on July 17, 1998 by Anonymous (nobody@REPLAY.COM). A vulnerability exists in certain imapd implementations that allow an attacker to execute arbitrary code remotely. In certain instances, the code to be executed will be run with root privilege. Imap supports a command 'AUTHENTICATE' which specifies the type of authentication mechanism to be used to open a mailbox. The value passed to the authenticate command is copied into a buffer of size 1024. The maximum size of this value, however, it 8192 characters. A failure to bound the read value to 1024 results in a buffer overflow. This particular tool is built to exploit Linux X86 platforms. Mscan Added 2001-10-22 Mscan is a collection of programs hacked together to form a fairly broad network auditing tool (scanner). It searches for a variety of problems (and in some cases exploits them) such as a named(8) overflow for Linux X86 hosts, one of the rpc.statd overflows, open Xterms, exported NFS shares, default accounts and several other items. Phobia Security Scanner Added 2001-10-22 This utility does a scan of an Internet host looking for various vulnerabilities. This scanner is different from most other scanners as rather than check for the absence of some security feature Phobia checks for the presence of the bugs - this stops you from getting false positives. This means that this program is VERY DANGEROUS on a network if used by irresponsible person(s); while it does not touch any system files in any way it does, however try to obtain system privileges. As it stands, the privileges this program gains cannot be used for any purpose other than for reporting. SNMP Scan Added 2001-10-22 Scan snmp services for commonly known snmp communities. This script can automate the scanning of your network to check for possible "vulnerabilities" regarding your snmp community "passwords" for access to your routers and/or snmp services. Even though you may be running a unix snmp daemon that does not allow control of any services, access to the snmp service provides alot of information about the machine it is running on. Hoppa Analyzer Added 2001-10-22 The analyzer is at the moment only suitable for Windows NT. You have to be administrator to install the packet driver which comes along with it. If you're not a administrator, don't bother to download, it won't work. The packetdriver was based on the raw example Microsoft provided in the Device Driver Kit. It was modified by a guy from the Canberra University, Australia, named Christopher Chlap. So credit goes to him, he did the hard work, like debugging the Microsoft code :). Anyway, the orginal packet32 driver he wrote is downloadable from our links page. The scanner itselfs works by taking snapshots of the ethernet traffic. It's, I think, impossible to write a software packet analyzer under WindowsNT which can analyze in realtime without losing a lot of traffic. The buffer it uses can be adjusted, depending of course on how much memory your system has. The filter set now consists of two sets of filters, you can filter on ip address, mac and type of traffic. Output is automaticaly written to a file and screen. FtpCheck Added 2001-10-22 Ftpcheck scans hosts and networks for FTP and anonymous FTP archives. It was written as a security analysis tool in perl. RelayCheck Added 2001-10-22 Relaycheck the parent of ftpcheck, relaycheck scans a network for SMTP hosts that permit "relaying" of email. These servers are vulnerable because a 3rd party could come in and use the mail server to relay mail through the server for the purpose of spamming folks. NTInfoScan Added 2001-10-22 NTInfoScan is a security scanner designed specifically for the Windows NT 4.0 operating system. It's simple to use - you run it from a command line - and when the scan is finished it produces an HTML based report of security issues found with hyper-text links to vendor patches and further information. NTInfoScan is currently at version 4.2.2. It tests a number of services such as ftp, telnet, web service, for security problems. Added to this NTInfoScan will check NetBIOS share security and User account security. Extusr Win32 Added 2001-10-22 This utility extracts usernames from ISP homepages and creates a userlist for auditing purposes or for inclusion in a password grinder tool. Browse by category |
|
|
Privacy Statement |
