Section: .. / UNIX / scanners /
| /// File Name: |
sqlninja-0.1.3.tgz |
Description:
|
sqlninja is a small tool to exploit SQL injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable database server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a database Server when a SQL injection vulnerability has been discovered. It is written in perl and runs on Unix-like boxes.
| | Author: | icesurfer | | Homepage: | http://sqlninja.sourceforge.net | | Changes: | A faster bruteforce engine plus a bunch of small fixes and improvements. | | File Size: | 116340 | | Last Modified: | Aug 30 04:00:30 2007 |
| MD5 Checksum: | 14fe8f89f7d86230311e0b71c194b886 |
|
| /// File Name: |
synscan-5.0b8.tar.gz |
Description:
|
SynScan is a fast half-open port scanner. This tool will send TCP packets with the SYN flag to any block of destination addresses at very high speed. SynScan endeavors to send traffic as fast as the host network interface can support.
| | Author: | John Anderson,mu-b | | Homepage: | http://www.digit-labs.org/files/tools/synscan/ | | File Size: | 54499 | | Last Modified: | Aug 27 11:34:07 2007 |
| MD5 Checksum: | 87468a1403d84c08d685615eaafc2128 |
|
| /// File Name: |
XSSscan.py.txt |
Description:
|
XSSscan is a cross site scripting scanner that can take output from google or can search one site. It is written in Python.
| | Author: | d3hydr8 | | Homepage: | http://darkcode.h1x.com/ | | File Size: | 10418 | | Last Modified: | Aug 27 11:21:15 2007 |
| MD5 Checksum: | 0942141932f5941ff35ace8f4070be4f |
|
| /// File Name: |
squeeza-0.21.tar.gz |
Description:
|
squeeza is a tool helps exploits SQL injection vulnerabilities in broken web applications. Its functionality is split into creating data on the database (by executing commands, copying in files, issuing new SQL queries) and extracting that data through various channels (dns, timing, http error messages).
| | Author: | Haroon Meer,Marco Slaviero | | Homepage: | http://www.sensepost.com/ | | Related File: | dc-15-meer_and_slaviero-WP.pdf | | File Size: | 30941 | | Last Modified: | Aug 11 18:19:09 2007 |
| MD5 Checksum: | 9e7e713bad29eb8ba4bbf1568225ffed |
|
| /// File Name: |
ndisc6-0.9.3.tar.bz2 |
Description:
|
ndisc consists or two small command line tools (ndisc and rdisc) that perform ICMPv6 Neighbor Discovery and ICMPv6 Router Discovery respectively. It is primarily meant for IPv6 networking diagnostics or to detect rogue IPv6 nodes or routers on an Ethernet segment.
| | Author: | Remi Denis-Courmont | | Homepage: | http://people.via.ecp.fr/~rem/ndisc/ | | Changes: | Updated gettext. Some other minor changes. | | File Size: | 183916 | | Last Modified: | Aug 8 21:18:23 2007 |
| MD5 Checksum: | 5524ea45f371ff7d40638ad3e15d80a8 |
|
| /// File Name: |
SQLPowerInjectorSourceCodev1.2.rar |
Description:
|
SQL Power Injector is a graphical application created in C# .Net 1.1 that helps the penetration tester to inject SQL commands on a web page. Its main strength is its capacity to automate tedious blind SQL injection with several threads. Released under the Clarified Artistic License.
| | Author: | Francois Larouche | | Homepage: | http://www.sqlinjector.com/ | | File Size: | 2334557 | | Last Modified: | Jul 17 03:40:11 2007 |
| MD5 Checksum: | 58abb0581d20fdfdb496ddf0e66eb0ca |
|
| /// File Name: |
proxyScan-0.2.tgz |
Description:
|
proxyScan.pl is a security penetration testing tool to scan for hosts and ports through a Web proxy server. Features include various HTTP methods such as GET, CONNECT, HEAD as well as host and port ranges.
| | Author: | Ed Blanchfield | | Homepage: | http://www.e-things.org/ | | File Size: | 3849 | | Last Modified: | Jul 11 21:59:03 2007 |
| MD5 Checksum: | 8bfa5e39fa502b98dde95206b5b9bfc8 |
|
| /// File Name: |
proxyScan-0.1.txt |
Description:
|
proxyScan.pl is a security penetration testing tool to scan for hosts and ports through a Web proxy server. Features include various HTTP methods such as GET, CONNECT, HEAD as well as host and port ranges.
| | Author: | Ed Blanchfield | | Homepage: | http://www.e-things.org/ | | File Size: | 8516 | | Last Modified: | Jul 6 23:43:33 2007 |
| MD5 Checksum: | db9451d3fae8cc6c831acdaba82e22d5 |
|
| /// File Name: |
ISR-sqlget-1.0.0.tar.gz |
Description:
|
ISR-sqlget is a blind SQL injection tool developed in Perl. It supports 20 databases, has various evasions features, SSL and proxy support, and more.
| | Author: | Francisco Amato | | Homepage: | http://www.infobyte.com.ar/ | | File Size: | 377955 | | Last Modified: | Jun 26 18:17:13 2007 |
| MD5 Checksum: | a1a319ae430c48d8e051b78587bf6550 |
|
| /// File Name: |
sqlninja-0.1.2.tgz |
Description:
|
sqlninja is a small tool to exploit SQL injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable database server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a database Server when a SQL injection vulnerability has been discovered. It is written in perl and runs on Unix-like boxes.
| | Author: | icesurfer | | Homepage: | http://sqlninja.sourceforge.net | | Changes: | Test mode added. Debug option added. Other minor changes. | | File Size: | 115337 | | Last Modified: | Jun 21 15:12:10 2007 |
| MD5 Checksum: | 70e8b71f7501c177afcd213077e68c23 |
|
| /// File Name: |
pixy_3_01.zip |
Description:
|
Pixy is an open source vulnerability scanner that audits PHP applications for SQL injection and cross site scripting vulnerabilities. It is written in Java and also performs automatic resolution of file inclusions.
| | Homepage: | http://www.seclab.tuwien.ac.at/ | | File Size: | 2006858 | | Last Modified: | Jun 21 15:02:52 2007 |
| MD5 Checksum: | 8c51e382de00a28c654cd8b76187eddb |
|
| /// File Name: |
p0f-2.0.8-win32.zip |
Description:
|
p0f performs passive OS detection by watching SYN packets with tcpdump. Additionally, it is able to determine distance to the remote host, and can be used to determine the structure of a foreign or local network. When running on the gateway of a network it is able to gather huge amounts of data and provide useful statistics. On a user-end computer it could be used to track which operating systems are making each connection. p0f supports full tcpdump-style filtering expressions, and has an easily modified fingerprinting database. Note that this version is the win32 compiled version. Original code by Michal Zalewski, compiling by David Coomber.
| | Author: | Michal Zalewski,David Coomber | | Homepage: | http://lcamtuf.coredump.cx/p0f.shtml | | File Size: | 79334 | | Last Modified: | Jun 19 16:31:06 2007 |
| MD5 Checksum: | dacece154deb4a4c4a28b21176ba3308 |
|
| /// File Name: |
Samotny_pi3.c |
Description:
|
Port scanner that can perform SYN, FIN, NULL, and XMAS scans with options to perform them very slowly and in decoy mode.
| | Author: | Adam Zabrocki | | Homepage: | http://www.pi3.int.pl | | File Size: | 36692 | | Last Modified: | Jun 6 19:05:00 2007 |
| MD5 Checksum: | 75dac2e1d8779e76e98820be54354de5 |
|
| /// File Name: |
fwknop-1.8.1.tar.gz |
Description:
|
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
| | Author: | Michael Rash | | Homepage: | http://www.cipherdyne.org/fwknop/ | | Changes: | Added support for ipfw firewalls. Added init script for FreeBSD systems. Various other additions and updates. | | File Size: | 457093 | | Last Modified: | Jun 6 18:33:35 2007 |
| MD5 Checksum: | f5f3fb0c51d46c306ee9a94525f3b015 |
|
| /// File Name: |
webrute.pl.txt |
Description:
|
Script that will perform test queries to check for the existence of files in a webroot.
| | Author: | matrix killer | | File Size: | 17229 | | Last Modified: | May 30 15:50:52 2007 |
| MD5 Checksum: | 16b615c1a867a2855503f87fc4d0fd8a |
|
| /// File Name: |
skype.pl.txt |
Description:
|
Simple Skype password cracker written in Perl.
| | Author: | matrix killer | | File Size: | 2666 | | Last Modified: | May 30 15:50:03 2007 |
| MD5 Checksum: | d67a0ce636aaaabfa6f1e99be5a175d0 |
|
| /// File Name: |
g00gle_advanced.txt |
Description:
|
Simple tool to grab results from Google and stick them in a file. Has a feature to restrict by domain.
| | Author: | matrix killer | | File Size: | 2429 | | Last Modified: | May 30 15:49:33 2007 |
| MD5 Checksum: | 9181ffe37b74f28bb1575ed055c311ee |
|
| /// File Name: |
g00gle.txt |
Description:
|
Simple tool to grab results from Google and stick the links in a file.
| | Author: | matrix killer | | File Size: | 964 | | Last Modified: | May 30 15:48:20 2007 |
| MD5 Checksum: | e47a359b2f83b30ffc0e543af97b80a3 |
|
| /// File Name: |
sambascan2-0.4.0.tar.gz |
Description:
|
Sambascan2 allows you to search an entire network or a number of hosts for SMB shares. It will also list the contents of all public shares that it finds. The difference between sambascan2 and other SMB viewers and scanners is that it will search everything using TCP/IP, and it will not send a lot of broadcast messages, so it can be used over LAN boundaries. It only uses SMB to list the shares and their contents.
| | Author: | Claudio Clemens | | Homepage: | http://asturio.gmxhome.de/sambascan.html | | Changes: | This version adds the ability to scan password protected shares, using known logins and passwords for the host being scanned. | | File Size: | 10985 | | Last Modified: | May 20 22:50:23 2007 |
| MD5 Checksum: | a675c2a17f216bfd15abd855c6c8090b |
|
| /// File Name: |
abyss.tar.gz |
Description:
|
Abyss is a port scanner with OS detection and passive sniffing. It is fairly lightweight yet versatile.
| | Author: | Ryan O'Neill | | File Size: | 57102 | | Last Modified: | May 4 12:18:21 2007 |
| MD5 Checksum: | e1133a7f90156fd9409f8663b550a28f |
|
| /// File Name: |
synscan-5.0b4.tar.gz |
Description:
|
SynScan is a fast half-open port scanner. This tool will send TCP packets with the SYN flag to any block of destination addresses at very high speed. SynScan endeavors to send traffic as fast as the host network interface can support.
| | Author: | John Anderson,mu-b | | Homepage: | http://www.digit-labs.org/files/tools/synscan/ | | File Size: | 54388 | | Last Modified: | Apr 24 23:23:08 2007 |
| MD5 Checksum: | 9c6d6fb9b2af9e0aed1290d6434ef3dc |
|
| /// File Name: |
synscan-5.0b2.tar.gz |
Description:
|
SynScan is a fast half-open port scanner. This tool will send TCP packets with the SYN flag to any block of destination addresses at very high speed. SynScan endeavors to send traffic as fast as the host network interface can support.
| | Author: | John Anderson,mu-b | | Homepage: | http://www.digit-labs.org/files/tools/synscan/ | | File Size: | 17019 | | Last Modified: | Apr 23 00:16:21 2007 |
| MD5 Checksum: | 73bd91491026d71d2f89f7296bc0ff26 |
|
| /// File Name: |
propecia2.c |
Description:
|
A hack of propecia.c to include class A domain scanning and banner grabbing.
| | Author: | John Martinelli | | Homepage: | http://john-martinelli.com | | File Size: | 1945 | | Last Modified: | Apr 17 13:16:04 2007 |
| MD5 Checksum: | 3097ef1a5c7f4319fe9efcdabb1263e1 |
|
| /// File Name: |
scapy-1.1.1.tar.gz |
Description:
|
Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions). Report modules are possible and easy to make. It is intended to do the same things as ttlscan, nmap, hping, queso, p0f, xprobe, arping, arp-sk, arpspoof, firewalk, irpas, tethereal, tcpdump, etc.
| | Author: | Philippe Biondi | | Homepage: | http://www.secdev.org/projects/scapy | | Changes: | Various bug fixes and enhancements. | | File Size: | 147401 | | Last Modified: | Apr 10 01:47:14 2007 |
| MD5 Checksum: | 8ac720a1bea4304797c713ef1ed063f1 |
|
| /// File Name: |
lotophagi.rar |
Description:
|
Lotophagi is a relatively compact Perl script designed to scan remote hosts for default (or common) Lotus NSF and BOX databases. It currently checks for 100+ and there are plans afoot to implement additions in the future. Please note, this is a beta release, and as such your feedback / practical contributions are welcomed and encouraged.
| | Author: | Michael Kemp | | File Size: | 11601 | | Last Modified: | Mar 20 11:40:27 2007 |
| MD5 Checksum: | 8cf4d1fe9b83f19423197edb7a0c3767 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
