.:[ packet storm ]:. - http://packetstormsecurity.org/

Section: .. / advisories / b0f /

Page 2 of 3
<< 1 2 3 >> Files 25 - 50 of 64

Currently sorted by: File Name Sort By: Last Modified, File Size

/// File Name:	how.defaced.apache.org.txt
Description:	How www.apache.org was defaced. This paper does _not_ uncover any new vulnerabilities. It points out common (and slightly less common) configuration errors, which even the people at apache.org made. This is a general warning. Learn from it.Authored By {} and Hardbeat.
File Size:	6220
Last Modified:	May 4 23:03:52 2000
MD5 Checksum:	6fcb5e9296d4d2412c8cd9e03a7ac4d4

/// File Name:	htaccess-admin.tar.gz
Description:	htaccess.tar - Perl script for adding users to the .htaccess file. Includes information on how to set up password protected web pages.
Author:	Slash
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	4591
Last Modified:	Jul 5 23:55:30 2000
MD5 Checksum:	27de7a057fe0c6373a9ad4390699239f

/// File Name:	IRIX.Login.Security.txt
Description:	IRIX Login Security - In this paper you will learn a bit about logins, and the seriousness of what could happen if you don't take certain precautions. You will have found out some options you can take with your logins, certain restrictions, and a lot more.
Author:	Prizm
File Size:	18157
Last Modified:	Apr 10 04:41:31 2000
MD5 Checksum:	e63b7ee974a2cce3da3eabb47ebfaf7e

/// File Name:	lpset.pl
Description:	Perl port of the /usr/bin/lpset local root vulnerability in Solaris/SPARC 2.7. Based on lpset.sh.
Author:	Slash
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	1416
Last Modified:	Sep 13 06:06:48 2000
MD5 Checksum:	273a18bea943ed29e39af2008e2f53e1

/// File Name:	majordomeX.sh
Description:	Majordomo v1.94.5 local linux exploit - run commands as the UID that majordomo runs under.
Author:	Slash
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	3665
Last Modified:	Jul 5 23:51:36 2000
MD5 Checksum:	5ce22449e2db60174798412395e28845

/// File Name:	mars.c
Description:	mars_nwe 0.99pl14 root exploit (linux).
Author:	Venglin
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	2099
Last Modified:	Apr 4 03:04:12 2000
MD5 Checksum:	5b6fce38150f1e31d683c4dd22ff898e

/// File Name:	mod_backdoor.c
Description:	Apache DSO backdoor - A get request to a "special" url allows remote command execution.
Author:	Slash
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	8809
Last Modified:	Jun 5 20:52:24 2000
MD5 Checksum:	84e2f164eca988c6647d0dc512f4536c

/// File Name:	namedscan.c
Description:	Namedscan.c finds the version of a remote nameserver.
Author:	eth0 of buffer0verfl0w
File Size:	8084
Last Modified:	Jan 1 21:02:00 2000
MD5 Checksum:	0f142db9343f27f226412e74c61eaa7b

/// File Name:	Neon_beta4.c
Description:	-(- Neon beta4 -)- Simple Host or Iplist Cgi Scanner ( 356 ) Checks
Author:	axess
Homepage:	http://www.b0f.com
File Size:	23908
Last Modified:	May 9 23:23:30 2000
MD5 Checksum:	fcbbe41e4081d6f3ffc4902b86c685c9

/// File Name:	Neon_beta5.c
Description:	Neon beta5 - Simple Host or Iplist cgi Scanner which does 358 checks.
Author:	Axess
Homepage:	http://b0f.freebsd.lublin.pl
Changes:	Added more cgi, fixed better output.
File Size:	37156
Last Modified:	May 12 04:48:01 2000
MD5 Checksum:	0f51bd2e126eb23a4b2bb5ea4e549ad8

/// File Name:	nschecker.sh
Description:	nschecker.sh NS Security Scanner - Uses dig to query the bind version from a list of ips.
Author:	Axess
Homepage:	http://www.b0f.com
File Size:	1982
Last Modified:	Apr 21 22:04:00 2000
MD5 Checksum:	62f4b7a9625cf389e7e581a0e97e8536

/// File Name:	nt.security.check.part1.txt
Description:	Evaluating the security of a NT system. Includes security tips, logging options, and more.
Author:	Slash
Homepage:	http://www.b0f.com
File Size:	4558
Last Modified:	Feb 29 09:05:23 2000
MD5 Checksum:	2fccd0d055213b6efa238ac1ccfadaf7

/// File Name:	nt.security.check.part2.txt
Description:	Evaluating the Security of a NT System Part II - In depth information on NT security. Includes discussion of Groups and User rights, The Administrator Account and Administrators Group, The Guest Account and Everyone Group, Files Folders Permissions and Shares, Virus and Trojan Horse Controls, Auditing and Event Logs, and backup.
Author:	Slash
Homepage:	http://www.b0f.com
File Size:	15326
Last Modified:	Apr 19 02:47:32 2000
MD5 Checksum:	fe7e11cad54e919bd29cead6d72f68af

/// File Name:	OMNI.SH
Description:	Exploit/DoS for OmniHTTPd pro v.2.06 Win98 (NT not tested). The result is crash of remote server.
Author:	sirius
Homepage:	http://www.b0f.com
File Size:	1850
Last Modified:	May 9 23:21:08 2000
MD5 Checksum:	bcacbf9c5c4468cc5daa396b467a2b3e

/// File Name:	p0f.tgz
Description:	P0f performs passive OS detection by watching SYN packets with tcpdump. Additionally, it is able to determine distance to remote host, and can be used to determine the structure of a foreign or local network. When running on the gateway of a network it is able to gather huge amounts of data and provide useful statistics. On a user-end computer it could be used to track which operating systems are making each connection. p0f supports full tcpdump-style filtering expressions, and has an easily modified fingerprinting database. Tested on Linux 2.0/2.2, FreeBSD, OpenBSD, NetBSD, SunOS, and Solaris.
Author:	Michal Zalewski
Homepage:	http://lcamtuf.na.export.pl
File Size:	14685
Last Modified:	Jun 13 20:31:01 2000
MD5 Checksum:	d461b6d2c9103f7fe52a387570ff87bc

/// File Name:	pirchslap.c
Description:	Pirch98 irc client ident/fserve daemon DoS overflow attack.
Author:	eth0
Homepage:	http://www.b0f.com
File Size:	2270
Last Modified:	Feb 29 04:38:16 2000
MD5 Checksum:	80c6bf41e87af57d411685af3ab1c5f3

/// File Name:	plogd2.c
Description:	Plogd v2 (Revision 1.5) is a syn/udp/icmp packet logger for freebsd.
Author:	Przemyslaw Frasunek
Homepage:	http://freebsd.lublin.pl/
Changes:	Fixed fd leak, misc bugfixes.
File Size:	10613
Last Modified:	Apr 26 02:49:08 2000
MD5 Checksum:	eef674504b75af8c3aa2b70b04a1ae7d

/// File Name:	proftpd.c
Description:	Your ultimate proftpd pre0-3 exploiting toolkit based on adm-wuftpd by duke and kombajn do czere^vni by Lam3rZ.
Author:	Venglin
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	11530
Last Modified:	Mar 25 22:04:00 2000
MD5 Checksum:	980e949baa7fff05ee7b182a7eff1270

/// File Name:	rip.c
Description:	rip.c is a local exploit for the dump package version 0.3-14 and 0.4b13 (restore binary). Tested against linux, gives a UID=0 shell on 2.2.16, GID=0 on 2.2.15 and below.
Author:	Scrippie
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	7097
Last Modified:	Jun 14 18:53:14 2000
MD5 Checksum:	72ac3db000356b4d9dbb3ddbe8d83541

/// File Name:	safe-exec.c
Description:	safe_exec.c - execute programs in a secure environment with a specific uid/gid/user and you can specify a program to be executed before the chroot.
Author:	Lamagra
Homepage:	http://lamagra.seKure.de
File Size:	4127
Last Modified:	Apr 5 22:04:00 2000
MD5 Checksum:	d10a6bf320a6d8d7c9c62955e6a0b2a2

/// File Name:	sc.tgz
Description:	sc.tgz is a bunch of linux shellcodes. x86: shellexecuting, portbinding, encrypted (to avoid IDS detection), cdrom ejecting, writing (append "lamagra was here" to /etc/motd) , reading (read 255 chars and execute). tools: a tool that "creates" shellcode from the _start of a program, a list of useful syscalls + arguments. m68k: reading, shellexecuting.
Author:	Lamagra
Homepage:	http://lamagra.seKure.de
File Size:	4644
Last Modified:	Apr 5 22:04:00 2000
MD5 Checksum:	a8c3ed7bd209e48aa86b7e725075d9eb

/// File Name:	shellhit.c
Description:	shellhit.c - TESO Hellkit contains a buffer overflow - exploit is just meant to be funny. To all scriptkiddies: You won't get root from this, go and find something more useful.
Author:	scrippie
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	1758
Last Modified:	May 22 19:47:15 2000
MD5 Checksum:	6d6584ebc64b16234ea4a4c96a84f24a

/// File Name:	slirp_bof.c
Description:	Slirp v1.0.10(RELEASE) local buffer overflow exploit for Linux which gives you a SGID shell if /usr/local/bin/slirp is mode 2755. Tested against Slackware 3.6. Includes perl script to find the offset.
Author:	Vade79
Homepage:	http://www.realhalo.org
File Size:	2368
Last Modified:	Jun 1 01:16:23 2000
MD5 Checksum:	9ddd6bd76e029236ad287810c937b7b6

/// File Name:	smegma_v0.2.tgz
Description:	SMEGMA is an engine for generating garbled shellcode using several encryption mechanisms and making it self-decryptable by putting an Intel x86 machine-code decryptor in front of it. It uses a hand-written C lexer to grab the shellcode from sourcefiles and try and identify it. Use SMEGMA to modify shellcode in which characters get ruined by regular expressions (often seen in CGI binaries, web applications and webservers).
Author:	Scrippie
Homepage:	http://b0f.freebsd.lublin.pl
File Size:	11102
Last Modified:	Jul 8 07:56:51 2000
MD5 Checksum:	42981bfacdfe3138a8734be57bbed972

/// File Name:	smegma_v0.4.tgz
Description:	SMEGMA is an engine for generating garbled shellcode using several encryption mechanisms and making it self-decryptable by putting an Intel x86 machine-code decryptor in front of it. It uses a hand-written C lexer to grab the shellcode from sourcefiles and try and identify it. Use SMEGMA to modify shellcode in which characters get ruined by regular expressions (often seen in CGI binaries, web applications and webservers).
Author:	Scrippie
Homepage:	http://b0f.freebsd.lublin.pl
Changes:	Fixed all NULL byte problems - you can now use smegma to rid shellcode of NULL characters, more garbling algorithms, more efficient garbling algorithms, fixed the size problem.
File Size:	20173
Last Modified:	Jul 24 18:24:06 2000
MD5 Checksum:	651b6173fc24873f8ad4e5f846fba666

/// Last 10 Files

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Advisories

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Exploits

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Tools

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Misc

[ Last 20 | Last 50 | Last 100 ]