O O Ø O O O O
Downloads
The following are a collection of files and tools we consider useful (for various reasons). Many of the packages here harken back to the days when we made a living as information security professionals. This means that they are incredibly old, and probably horribly out ot date.
Please note that we are not the original authors of these packages. We merely make them available for your perusal.
Some other tools that may be of interest:
Unix Tools
The following tools are ones we find useful for the Unix platform. In a pinch, most of these tools should be available at: ftp://coast.cs.purdue.edu/pub/tools/unix
|
Tool |
Version |
Description |
|
2.08 |
by fyodor. This is the most complete port scanner that we know of. It has the capability to perform standard TCP and UDP scans, SYN and FIN stealth scans, FTP bounce scans, ICMP sweeps, and a variety of other scanning types. This version also incorporates 25% more fingerprints for TCP Fingerprinting for platform identification. NMap Home Page. |
|
|
1.03 |
by Julian Assange. Strobe is another port scanner. It is limited in the options it presents, but for fast TCP scanning, it can't be beat. |
|
|
1.1 |
Netcat, by Hobbit, is a sort of swiss-army knife utility for reading and writing data across TCP and UDP connections. Netcat has both client (sent to port) and server (bind to port) functions, making it useful in a variety of applications. Highly recommended. What's left of the Netcat Home Page. |
|
|
1.6 |
by Solar Designer. John the Ripper is a powerful Unix password cracking tool, featuring modes for all major unix crypt formats, including OpenBSD's Blowfish, FreeBSD's MD5, BSDI's extended-DES, and the venerable Unix crypt(). John the Ripper Homepage. |
|
|
3.4 0.4 |
tcpdump (and its supporting library, libpcap) is an indispensible tool for analyzing TCP/IP traffic. tcpdump places your ethernet card in promiscuous mode and reports all traffic seen on the local ethernet. It also has a powerful syntax for restricting the traffic that is reported. |
|
|
1.4a5, |
Traceroute is this standard tool for analysing the hops traversed between hosts on the Internet. |
Windows Tools
The following are tools we have found useful for the Windows platform.
|
Tool |
Version |
Description |
|
2.51 |
The L0pht's NT Password cracking tool. This new improved version boats a 450% performance increase, a new hybrid dictionary/brute force method, built in SMB password sniffer, and a bugfix for temporary file creation. This version now works with Windows NT, 95 and 98. Source is available. Also see the PPTP sniffer for Solaris 2.4+, and Jose Chung's readsmb.c |
|
|
1.1 |
This is the Windows port of Hobbit's Netcat. See the Unix section above for details. |
|
|
1.6 |
This is the Windows port of Solar Designer's John the Ripper. See the Unix section above for details. A DOS version is also available. |
|
|
5.0a |
The original Crack password cracker, ported to Windows. |
|
|
2.0 |
Secure Network's entry into the world of Windows password crackers. This tool requires PWDUMP to function. SAMDUMP may also be useful. |
|
enum is a console-based Win32 information enumeration utility. Using null sessions, enum can retrieve userlists, machine lists, sharelists, namelists, group and member lists, password and LSA policy information. enum is also capable of a rudimentary brute force dictionary attack on individual accounts. |
Dictionaries
Dictionaries are always useful for password cracking. The following are dictionary sites and files we have found useful in our line of work.
|
File/Site |
Description |
|
<ftp://ftp.cso.uiuc.edu/pub/security/wordlists/> UIUC Dictionary Archive |
This archive featured an assortment of English, specialized and foreign dictionaries, useful for password cracking. It's since disappeared. |