Section: .. / Win /
|
Windows tools - This directory contains hundreds of assorted Windows security tools. Try them out first on a test machine first unless you are sure you know what you are doing.
|
| /// File Name: |
WNMSB-LAN.zip |
Description:
|
WNMSB-LAN is a Windows Messenger Service Bomber. Includes C++ source and a windows executable.
| | Author: | PAgVac | | File Size: | 41464 | | Last Modified: | Dec 2 22:47:47 2003 |
| MD5 Checksum: | 2ff196a71f4cbd1ed6aa0e7ce296b5a8 |
|
| /// File Name: |
userinfo.zip |
Description:
|
The purpose of this app is to illustrate inconsistencies in the MS implementation of the RestrictAnonymous registry setting.
| | File Size: | 41287 | | Last Modified: | Feb 20 18:10:43 2001 |
| MD5 Checksum: | b64028748e2d20a353f8c4ec3aab15aa |
|
| /// File Name: |
nbtdump.exe |
Description:
|
This utility dumps NetBIOS information from Windows NT, Windows 2000 and *NIX Samba servers such as shares, user accounts with comments etc and the password policy. Runs on Windows NT 4 and Windows 2000.
| | Author: | Cerberus Information Security | | Homepage: | http://www.cerberus-infosec.co.uk/ | | File Size: | 40960 | | Last Modified: | Dec 3 19:34:46 1999 |
| MD5 Checksum: | 25f8e68d1f37ba224eea83cb4465dffa |
|
| /// File Name: |
lbrute.zip |
Description:
|
lbture is a local Windows account password brute forcer. It supports dictionary attacks and resume. Works on Windows NT/2K/XP/2K3.
| | Homepage: | http://warl0ck.metaeye.org/ | | File Size: | 40640 | | Last Modified: | Apr 12 00:22:52 2006 |
| MD5 Checksum: | 7b9101ddddd40f32e3d74eda14219e54 |
|
| /// File Name: |
Snadboys.Revelation.2.0.zip |
Description:
|
Snadboy's Revelation enables you to retrieve long-forgotten passwords that Windows presents as a mysterious row of asterisks. Drag and drop the Snadboy's Revelation marker to the masked password field to retrieve the information.
| | Homepage: | http://www.snadboy.com | | File Size: | 40244 | | Last Modified: | Feb 27 02:40:42 2001 |
| MD5 Checksum: | a9bc008e13347aa5231824b5a6bfa9f2 |
|
| /// File Name: |
regfind.zip |
Description:
|
NT RegFind - Win32 registry search utility for use with NT.
| | File Size: | 39317 | | Last Modified: | Aug 16 20:04:15 1999 |
| MD5 Checksum: | 26b2867ee601af817d216ff9824b072a |
|
| /// File Name: |
nzdial.zip |
Description:
|
NZdial uses the windows API to connect to netzero, using the algorithm from net0.c to obtain the correct username and password.
| | Author: | the plug-0-matic 3.ooo | | File Size: | 39306 | | Last Modified: | Apr 8 16:04:00 2000 |
| MD5 Checksum: | ad8f7cc88b225af6f643dc7992f9a588 |
|
| /// File Name: |
portnumbers2.html |
Description:
|
Registered port numbers from 1024-47557, with descriptions.
| | File Size: | 38818 | | Last Modified: | Aug 16 20:04:10 1999 |
| MD5 Checksum: | afb0d37dfee737e35b4ce7577783c7c0 |
|
| /// File Name: |
pshtoolkit_v1.3-src.tgz |
Description:
|
The Pass-The-Hash Toolkit contains utilities to manipulate the Windows Logon Sessions maintained by the LSA (Local Security Authority) component. These tools allow you to list the current logon sessions with its corresponding NTLM credentials (e.g.: users remotely logged in thru Remote Desktop/Terminal Services), and also change in runtime the current username, domain name, and NTLM hashes (YES, PASS-THE-HASH on Windows!).
| | Author: | Hernan Ochoa | | Homepage: | http://oss.coresecurity.com/ | | Changes: | Various updates. | | File Size: | 38281 | | Last Modified: | Mar 3 14:35:45 2008 |
| MD5 Checksum: | 548e936b9b17ab10fa8032b0ecb61283 |
|
| /// File Name: |
WinDial100.zip |
Description:
|
WinDial 1.0 -- a Windows War Dialer (modeled after PhoneTag and improved for my needs).
| | Homepage: | http://www.twistedinternet.com/impaler/ | | File Size: | 37827 | | Last Modified: | Nov 29 22:10:35 1999 |
| MD5 Checksum: | 26d9edea8596aacc8ebc133ce3c0dff4 |
|
| /// File Name: |
KNOCK-0-81.ZIP |
Description:
|
The Doorman is a port-knocking listener daemon which helps users secure private servers. It allows a server to run invisibly, with all TCP ports closed. This version is the Microsoft Windows binary executable release.
| | Author: | Bruce Ward | | Homepage: | http://doorman.sourceforge.net/ | | Changes: | Fixed the silent doorman problem. | | File Size: | 36738 | | Last Modified: | Sep 7 04:36:53 2005 |
| MD5 Checksum: | c299f069aded9f65d74c37de0c93e031 |
|
| /// File Name: |
IRCRv2.3.zip |
Description:
|
The Incident Response Collection Report is a script to call a collection of tools that gathers and/or analyzes data on a Microsoft Windows system. You can think of this as a snapshot of the system in the past. Most of the tools are oriented towards data collection rather than analysis.
| | Author: | John McLeod | | Homepage: | http://tools.phantombyte.com/ | | Changes: | Fixed all path and command locations to meet Helix version 1.8 areas. | | File Size: | 35580 | | Last Modified: | Nov 20 11:56:52 2006 |
| MD5 Checksum: | 98d72034d5d39c40a39cc6fb8b2c53ea |
|
| /// File Name: |
ChkLock.zip |
Description:
|
A Win32 networking API called NetUserModalsGet() requires no authentication, just the establishment of a NULL NetBIOS session. This API function can be used to get the system-wide password policy information (intruder lockout, the depth of the password history, minimum password length requirements, the name of the PDC, and so forth) from Windows NT and Windows 2000 machines. Because it's RPC-based, like all the net functions, it can be executed remotely (providing the relevant ports are not blocked by an intermediate router or firewall). A tool called ChkLock is available to use this function and retrieve sensitive information from remote computers.
| | Homepage: | http://www.berbee.com/security/chklock.html | | File Size: | 35305 | | Last Modified: | Nov 15 22:18:03 2000 |
| MD5 Checksum: | 1632c9cfefc3243ae0f091543352c650 |
|
| /// File Name: |
WebScan.zip |
Description:
|
Simple WWW scanner.
| | File Size: | 35269 | | Last Modified: | Apr 1 16:04:00 2000 |
| MD5 Checksum: | 7c956e4e486bb73a555673ccb1b0365e |
|
| /// File Name: |
rpcdump.exe |
Description:
|
This little utility dumps SUN RPC information from *NIX systems (does the same job as running rcpinfo -p remote_host from a *NIX shell prompt.) Runs on Windows 95, 98, NT 4 and 2000.
| | Author: | Cerberus Information Security | | Homepage: | http://www.cerberus-infosec.co.uk/ | | File Size: | 32768 | | Last Modified: | Dec 3 19:32:13 1999 |
| MD5 Checksum: | dd10c9c5e636dac6f35fc78c85a0ada3 |
|
| /// File Name: |
hwing.zip |
Description:
|
hwing is a win32 version of the ever favorite utility hping. It allows an administrator the ability to send customized pings, gather raw fingerprinting data, and more. Original Linux version is available here. Original Solaris version is available here.
| | Author: | snooq | | Homepage: | http://www.angelfire.com/linux/snooq | | File Size: | 32392 | | Last Modified: | Nov 30 21:44:51 2003 |
| MD5 Checksum: | 3d1590eecaf0a8d36ec6c1119e6f24f0 |
|
| /// File Name: |
IRCRv2.1.zip |
Description:
|
The Incident Response Collection Report is a script to call a collection of tools that gathers and/or analyzes data on a Microsoft Windows system. You can think of this as a snapshot of the system in the past. Most of the tools are oriented towards data collection rather than analysis.
| | Author: | John McLeod | | Homepage: | http://tools.phantombyte.com/ | | Changes: | IRCR version 2 is a complete code change from Perl to DOS batch file. Anyone should be able to modify the batch file to suite their needs. Requires the HELIX (www.e-fense.com/helix) IR folder to run. | | File Size: | 32300 | | Last Modified: | Aug 13 03:06:23 2005 |
| MD5 Checksum: | 7061fd54ada29878c7b513b9cff1bc39 |
|
| /// File Name: |
optout.exe |
Description:
|
OptOut - A clean and simple Spyware Detection and Removal tool for Windows. Many software now contains the Aureate (Radiate) "Spyware" software that sends some statistics on your computer use into a central server, to be used for "Marketing".
| | Author: | Steve Gibson | | Homepage: | http://grc.com/optout.htm | | File Size: | 32256 | | Last Modified: | Jan 24 17:24:23 2001 |
| MD5 Checksum: | 820134fb57554cfe4b794cc0e42053c5 |
|
| /// File Name: |
winject.zip |
Description:
|
Winject is a low-level packet builder/injector for win9x dialup users. It allows you to create custom packets with real or spoofed IP addresses.
| | Author: | Moofz | | Homepage: | http://big.badlink.net | | File Size: | 31881 | | Last Modified: | Feb 16 17:17:54 2001 |
| MD5 Checksum: | 1080620a17a024797819ed18cea3adcc |
|
| /// File Name: |
tcpspeed.zip |
Description:
|
Check your tcp speeds with this tool.
| | File Size: | 31672 | | Last Modified: | Aug 16 20:04:10 1999 |
| MD5 Checksum: | e31b45e64a9083d442ea2bff831dfac1 |
|
| /// File Name: |
weakness.zip |
Description:
|
Weakness is a useful little dos/win command line utlity that will scan a target host for 94 known www (CGI) vulnerabilities.
| | Author: | John Bissel | | Homepage: | http://yohaku.dhs.org/~hightimes | | File Size: | 30635 | | Last Modified: | Dec 6 22:25:20 1999 |
| MD5 Checksum: | f2086035246e101cfd17deb7938ca15b |
|
| /// File Name: |
smbbf-0.9.1.tar.gz |
Description:
|
The SMB Auditing Tool is a password auditing tool for the Windows and the SMB platform. It makes it possible to exploit the timeout architecture bug in Windows 2000/XP, making it extremely fast to guess passwords on these platforms. Running a large password file against Windows 2000/XP, shows statistics up to 1200 logins/sec. This means that you could run a commonly used English dictionary with 53 000 words against a server under a minute. Supports SMB over Netbios and native SMB over tcp port 445. Compiles on Linux, BSD, and Cygwin.
| | Author: | Patrik Karlsson | | File Size: | 30528 | | Last Modified: | Oct 23 22:50:52 2001 |
| MD5 Checksum: | ddee38c0194ecef0bc0fe41aa6429ceb |
|
| /// File Name: |
rulezcgi.zip |
Description:
|
Rulezcgi is a Windows based CGI scanner. Includes executable and nothing else.
| | Author: | Mtec | | File Size: | 30516 | | Last Modified: | Oct 9 20:51:44 2000 |
| MD5 Checksum: | c79e9c891eb9d7573c4ccf57b12d097f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
