Section: .. / NT /
| /// Directory: |
/ audit / |
Description:
|
NT Auditing Tools
| | Total Files: | 76 | | Last Modified: | Apr 3 01:00:54 2007 |
|
| /// File Name: |
efilter.c |
Description:
|
Efilter is an automatic exception reporting utility. It is very useful and handy while doing vulnerability research on any software designed to work under Windows NT platforms. Due to that it hooks KiUserExceptionDispatcher function, it acts BEFORE any of program's active SEH frames take over the exception. In short words it reports programs exceptions even if they are handled by original program.
| | Author: | Piotr Bania | | Homepage: | http://pb.specialised.info/ | | File Size: | 7278 | | Last Modified: | Aug 17 07:08:33 2005 |
| MD5 Checksum: | 057d4656ce42a226d496129793e5afbb |
|
| /// File Name: |
XP_fake_loginscreen.zip |
Description:
|
Fake login screen emulating the normal Windows login screen. Logs username / password to a file. Requires the capability to install binaries on the affected system in the first place, and messages are apparently based on those in the Australian edition of Windows XP (so it would need to be modified if you plan on running this elsewhere without immediate detection).
| | Author: | ProgramOS32 | | File Size: | 141428 | | Last Modified: | Apr 18 22:20:49 2005 |
| MD5 Checksum: | a16a82eca96afc21fcf4685d8d9e7afc |
|
| /// Directory: |
/ IDS / |
Description:
|
NT Intrusion Detection Tools
| | Total Files: | 20 | | Last Modified: | Feb 24 12:18:57 2005 |
|
| /// Directory: |
/ scanners / |
Description:
|
NT Scanners
| | Total Files: | 18 | | Last Modified: | Nov 12 21:33:52 2004 |
|
| /// Directory: |
/ hack / |
Description:
|
NT Hacking Utilities
| | Total Files: | 36 | | Last Modified: | Sep 14 08:47:00 2004 |
|
| /// Directory: |
/ docs / |
Description:
|
NT Documentation
| | Total Files: | 15 | | Last Modified: | Sep 14 08:46:58 2004 |
|
| /// File Name: |
strace-0.3.zip |
Description:
|
Strace for NT is a debugging/investigation utility for examining the NT system calls made by a process. It is meant to be used like the strace (or truss) on linux and other unix OSes. What make strace different is that is hooks every system call instead of just selected ones, giving you an excellent idea of what the process is really doing.
| | Author: | Bindview Security Research | | Homepage: | http://razor.bindview.com/tools/ | | File Size: | 318184 | | Last Modified: | Oct 21 04:58:10 2003 |
| MD5 Checksum: | 03ff03479048b9c82bdf8ddff7f88c5a |
|
| /// File Name: |
SilentLog.zip |
Description:
|
SilentLog is a keystroke logging tool that runs under several Windows 32 versions (it should also run under NT). The best of it's features is it's small size: only 7 KB compiled. (But it's NOT a DOS program, it uses 32Bit-Windows). The source code (FASM assembly syntax) is included. The executable also contains a DLL which it recreates when loaded. (So the real sizes are 3 KByte executable and 4 KByte for the DLL). The program logs all standard keys (the return key is also processed correctly). See Readme.txt included.
| | File Size: | 7126 | | Last Modified: | Feb 12 07:48:19 2002 |
| MD5 Checksum: | 7626973501e3f345e04beae4a70ee4f3 |
|
| /// File Name: |
rcf11.zip |
Description:
|
RemoteCompFind (previously known as RemoteHit) searches for a computer on a remote network, in a given IP Range, using NetBIOS protocol. The program is fully multi-threaded. RemoteHit has MS "Find: Computer" like interface.
| | Author: | Serge Birj | | Changes: | The program doesn't use WinNT network libraries anymore. All NetBIOS related code is now part of the project. This significantly improves performance and adds compatibility with Win9x/Me. | | File Size: | 139176 | | Last Modified: | Nov 27 00:02:28 2001 |
| MD5 Checksum: | 9fa7dfcaf4d1c818e9bf56f2a21b68f6 |
|
| /// File Name: |
rh10_nt.zip |
Description:
|
RemoteHit searches for a computer on a remote network, in a given IP Range, using NetBIOS protocol. The program is fully multi-threaded. RemoteHit has MS "Find: Computer" like interface.
| | Author: | Serge Birj | | File Size: | 92015 | | Last Modified: | Nov 22 09:59:21 2001 |
| MD5 Checksum: | e75bd23090674caa29fe058d5e51aa2b |
|
| /// File Name: |
regbrws001.zip |
Description:
|
RegistryBrowser is a utility which demonstrates problems associated with stolen windows passwords by remotely browsing remote system registries using a specified user account. Tested on Windows NT and 2000.
| | Author: | Urity | | Homepage: | http://www.securityfriday.com/Topics/win_reg.html | | File Size: | 261582 | | Last Modified: | Nov 22 07:55:13 2001 |
| MD5 Checksum: | 6c66b0fab36597e00164f63bb3e179fc |
|
| /// File Name: |
irs12.exe |
Description:
|
IP Restrictions Scanner (IRS) is a Windows NT/2k tool which finds out which network restrictions have been set for a particular service on a host. It combines "ARP Poisoning" and "Half-Scan" techniques and tries totally spoofed TCP connections to the selected port of the target.
| | Author: | Mao | | Homepage: | http://www.oxid.it | | Changes: | Several bugs fixed. | | File Size: | 978284 | | Last Modified: | Sep 11 19:38:33 2001 |
| MD5 Checksum: | c0fc717489cadc3baa7d04db7cf3ec31 |
|
| /// File Name: |
_root_040.zip |
Description:
|
Windows NT Rootkit v0.04 alpha - Hides processes, files, directories, has k-mode shell using TCP/IP - you can telnet into rootkit from remote. Hides registry keys - (keyboard patch disabled in this build.) Includes execution redirection.
| | Homepage: | http://www.rootkit.com | | File Size: | 107713 | | Last Modified: | Jul 29 11:16:28 2001 |
| MD5 Checksum: | 12487fc88e78176f582cbbdbd45f2575 |
|
| /// File Name: |
getacct003.zip |
Description:
|
GetAcct sidesteps "RestrictAnonymous=1" and acquires account information on Windows NT/2000 machines.
| | Author: | Urity | | Homepage: | http://www.securityfriday.com/getacct_002.html | | Changes: | Bug fixes and enhancements. | | File Size: | 256534 | | Last Modified: | Jul 24 06:21:21 2001 |
| MD5 Checksum: | d75750d0afdf7c45585707f7aad9be7e |
|
| /// File Name: |
logs2intrusions.zip |
Description:
|
Logs2Intrusions v1.0 parses IIS or Apache web server logfiles then create possible intrusions report.
| | Homepage: | http://www.trsecurity.net | | File Size: | 886500 | | Last Modified: | Jul 11 10:31:42 2001 |
| MD5 Checksum: | 92c5caeb695da32c29a46c96b18800a6 |
|
| /// File Name: |
antexp.zip |
Description:
|
Advanced NT Security Explorer (ANTExp) is an application for Microsoft Windows NT, Windows 2000 and Windows XP system administrators for finding holes in system security. It analyses user password hashes, and tries to recover plain-text passwords. If it's possible to recover the password in a reasonable time, the password should be considered to be insecure. ANTExp is very fast - tries about 900,000 passwords per second on a Pentium-III/450 CPU. Tested on Windows 95, Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP.
| | Homepage: | http://www.elcomsoft.com/antexp.html | | File Size: | 1450746 | | Last Modified: | Jul 11 10:09:19 2001 |
| MD5 Checksum: | 28db94bc1ec684ea6fad4d54bf6f676d |
|
| /// File Name: |
EZPass.zip |
Description:
|
EZPass.zip is an executable and a Perl script that uses the net command to automate password attempts on an NT Server. Allows easy Username=Password and other easily guessed combination attempts using a list of accounts such as those from Grinder.
| | Author: | B-Root | | File Size: | 261148 | | Last Modified: | Apr 25 02:00:04 2001 |
| MD5 Checksum: | c7d64d9457980d35cc6ad971022548bf |
|
| /// File Name: |
Grinder.zip |
Description:
|
Grinder.zip is an executable and perl script which uses the SID tools to enumerate usernames from an NT Server.
| | Author: | B-Root | | File Size: | 312487 | | Last Modified: | Apr 25 01:57:17 2001 |
| MD5 Checksum: | d92d07a4c2f090b34692c87252c68d45 |
|
| /// File Name: |
beatlm002.zip |
Description:
|
BeatLm searches out the password from LM/NTLM authentication information (LanManager and Windows NT challenge/response). Tested on Windows NT and 2000.
| | Author: | Urity | | Homepage: | http://www.securityfriday.com/tools.html | | Changes: | This is version 2! | | File Size: | 296036 | | Last Modified: | Apr 17 03:08:22 2001 |
| MD5 Checksum: | b633ea5f46fd0d29c06b9d6cadbace1c |
|
| /// File Name: |
lc3setup.exe |
Description:
|
L0phtCrack 3 15 day trial - L0phtCrack is an NT password auditing tool. It will compute NT user passwords from the cryptographic hashes that are stored by the NT operation system. L0phtCrack computes the password from a variety of sources using a variety of methods. Uses include recovering a forgotten password, ensuring that users use strong passwords, retrieving the password of a user in order to impersonate them, or migrating NT users to another platform such as Unix. Tested on Windows 98SE, Windows ME, Windows NT, and Windows 2000.
| | Homepage: | http://www.securitysoftwaretech.com/lc3 | | Changes: | Windows 2000 support, international character set support, distributed cracking, an option to hide cracked passwords, and more. | | File Size: | 4657755 | | Last Modified: | Apr 12 22:47:26 2001 |
| MD5 Checksum: | 573256e2406b36aa47da9af7bd99cd98 |
|
| /// File Name: |
snarp.zip |
Description:
|
Snarp is a tool for NT 4.0 which uses an ARP poison attack to relay traffic between two hosts, allowing sniffing of the data on switched networks.
| | Author: | Frank Knobbe | | File Size: | 101777 | | Last Modified: | Mar 27 01:32:03 2001 |
| MD5 Checksum: | 5ae709c002342a4d564fb9dc7ac6ed1d |
|
| /// File Name: |
getacct002.zip |
Description:
|
GetAcct sidesteps "RestrictAnonymous=1" and acquires account information on Windows NT/2000 machines.
| | Author: | Urity | | Homepage: | http://www.securityfriday.com/getacct_002.html | | Changes: | Adds the saving function. | | File Size: | 256475 | | Last Modified: | Mar 27 01:26:44 2001 |
| MD5 Checksum: | 7838aedbc2bc770b19a8aa4e62631f3d |
|
| /// File Name: |
FPortNG.zip |
Description:
|
Unavailable.
| | File Size: | 66299 | | Last Modified: | Mar 8 00:37:36 2001 |
| MD5 Checksum: | 83da6a9386c78be5ab5008dc6ce431bb |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
