InícioLeitor de feedsFontes

Ferramentas

Divulgar conteúdo Packet Storm
Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers
URL: http://packetstormsecurity.org/
Atualizado: 31 minutos 15 segundos atrás

IP-Link 0.2

seg, 02/06/2012 - 08:11
The goal of IP-Link is to show the relationships between different IP addresses from network traffic capture, thus quickly determining for a given address the IP address with which it communicates the most.

Viper Network Sniffer Script

sab, 02/04/2012 - 21:44
This is a bash script to use in conjunction with Backtrack that simplifies the spawning of various sniffers.

Port Tester 0.1

sex, 02/03/2012 - 20:37
This is a simple little port scanning script written in python.

Dradis Information Sharing Tool 2.9.0

qui, 02/02/2012 - 23:53
dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of information is essential to avoid duplication of efforts.

WeBaCoo (Web Backdoor Cookie) 0.2.2

qua, 02/01/2012 - 23:03
WeBaCoo (Web Backdoor Cookie) is a web backdoor script-kit, aiming to provide a stealth terminal-like connection over HTTP between client and web server. It is a post exploitation tool capable to maintain access to a compromised web server. WeBaCoo was designed to operate under the radar of modern up-to-dated AV, NIDS, IPS, Network Firewalls and Application Firewalls, proving a stealth mechanism to execute system commands to the compromised server. The obfuscated communication is accomplished using HTTP header's Cookie fields under valid client HTTP requests and relative web server's responses.

Bluelog Bluetooth Scanner/Logger 1.0.1

qua, 02/01/2012 - 00:49
Bluelog is a Bluetooth scanner/logger written with speed in mind. It is intended to be used as a site survey tool, concerned more about accurately detecting the number of discoverable Bluetooth devices than individual device specifics. Bluelog also includes the unique "Bluelog Live" mode, which puts discovered devices into a constantly updating live webpage which you can serve up with your HTTP daemon of choice.

GNU Privacy Guard 1.4.12

qua, 02/01/2012 - 00:23
GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.

PgSql Brute Force

ter, 01/31/2012 - 09:13
This is a small application built to demo the weakness in pgsql and networking. It is capable of running login attempts from multiple threads in parallel and can run up to 1024 concurrent connections.

HTTP Brute Force

ter, 01/31/2012 - 09:12
This is a small application built to test the performance of a http authentication system using a lot of concurrent connections. It can also be used to try lots of password against a http server. It is capable of using up to 1024 (or more using multiple processes). However with this amount it is capable or reducing internet connections to a crawl and also greatly increasing the load on the server.

Lightidra IRC Router Scanner

seg, 01/30/2012 - 02:44
Lightaidra is an IRC commanded tool that allows for scanning and exploiting routers. It also performs flooding.

Zorp Proxy Firewall Suite 3.9.3

dom, 01/29/2012 - 15:11
Zorp is a proxy firewall suite with its core architecture built around today's security demands. It uses application level proxies, is modular and component based, uses a script language to describe policy decisions, makes it possible to monitor encrypted traffic, lets you override client actions, and lets you protect your servers with its built in IDS capabilities.

FatCat SQL Injector

sab, 01/28/2012 - 10:22
This is an automatic SQL Injection tool called FatCat. It has features that help you to extract the database information, table information, and column information from a web application.

Dark D0rk3r 0.5

sex, 01/27/2012 - 21:39
Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors.

p0f 3.03b Windows Port

qua, 01/25/2012 - 20:50
P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP).

Mobius Forensic Toolkit 0.5.11

qua, 01/25/2012 - 20:24
Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.

Dark D0rk3r 0.4

ter, 01/24/2012 - 14:12
Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors.

OpenDNSSEC 1.3.5

ter, 01/24/2012 - 02:03
OpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.

MagicHash Collision Testing Tool

ter, 01/24/2012 - 01:30
PostTest is a jar file that will send POST requests to servers in order to test for the hash collision vulnerability discussed at the Chaos Communication Congress in Berlin.

IPT_PKD Iptables Port Knocking Detection 1.10

dom, 01/22/2012 - 21:43
ipt_pkd is an iptables extension implementing port knock detection with SPA (single packet authorization). This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent.

Dark D0rk3r 0.3

dom, 01/22/2012 - 21:24
Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors.