|
Tara v3.0.3
|
|
Hits: 16 |
|
Date added: 12/25/2005 |
|
Tiger Analytical Research Assistant (TARA) is an upgrade to the TAMU 'tiger' program. Since 'tiger' has not been updated since 1994 (and again in 1999), there were numerous changes made to the 'systems' directories. Output was streamlined to provide a more readable report file. Also, bugs in the 'scripts' directory were corrected. TARA was tested under Red Hat Version 5.x, 6.x, 7x; SGI IRIX 5.3, 6.x, and SunOS 5.x. We are currently working on a Mac OSX interface. This upgrade was performed by the Advanced Research Corporation under a contract from the the United States Government.
From the original Tiger README:
..tiger is a set of scripts that scan a Un*x system looking for security problems, in the same fashion as Dan Farmer's COPS. 'tiger' was originally developed to provide a check of UNIX systems on the A M campus that want to be accessed from off campus (clearance through the packet filter). As such, we needed something that *anyone* could run if they could figure out how to get it down to their machine. |
|
|
|
|
|
TCPDUMP 3.9
|
|
Hits: 17 |
|
Date added: 07/02/2005 |
|
TCPDUMP version 3.9.0 is in alpha as of April 6, 2005
Tcpdump prints out the headers of packets on a network
interface that match the boolean expression. It can also
be run with the -w flag, which causes it to save the
packet data to a file for later analysis, and/or with the
-b flag, which causes it to read from a saved packet file
rather than to read packets from a network interface. In
all cases, only packets that match expression will be pro­
cessed by tcpdump.
Manual:
http://www.hackerscenter.com/library/search.asp?id=742 |
|
|
|
|
|
TcpView
|
|
Hits: 28 |
|
Date added: 10/01/2005 |
|
Very useful tool that associates to each running process the internet ports it works on |
|
|
|
|
|
|
THC-Amap v5.2
|
|
Hits: 47 |
|
Date added: 01/11/2006 |
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233! |
|
|
|
|
|
|
THC-CUPASS v1.0
hot!
|
|
Hits: 68 |
|
Date added: 04/12/2007 |
|
CUPASS uses techniques to guess the password of ANY user on a WindowsNT/W2K server or domain. CUPASS uses a flaw in the implementation of Microsofts NetUserChangePassword API to guess/change the users password. This release is the proof of concept code for the THC paper CUPASS and the NetUserChangePassword Problem |
|
|
|
