Section: .. / groups / shadowpenguin / unix-tools /
| /// File Name: |
amloger.c |
Description:
|
This is a auto logger for Amuser-net BBS which is used in the many Japanese underground sites
| | File Size: | 18376 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 3c6e56c55f2e9063aaf349c9872da680 |
|
| /// File Name: |
cgiexp.c |
Description:
|
This utility lists the servers which have the security vulnerabilities of CGI program. This utility supports the pht, test-cgi, nph-test-cgi, campas, htmlscritp, servce, pwd. The addition of new vulnerabilities is very easy.
| | File Size: | 5934 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 3b0def202f08648fc9881d638df01085 |
|
| /// File Name: |
easyscan.c |
Description:
|
The simple full-connection TCP port scanner. This utility lists the servers that open the specified port.
| | File Size: | 3838 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 1434dbaba3484bca0063b32ae1df9b67 |
|
| /// File Name: |
ftpt.c |
Description:
|
ftp trojan logs the hostname, username, and password when the local users use the ftp.
| | File Size: | 3169 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 70bcffc5049b48f4415c054831017ed5 |
|
| /// File Name: |
gdd13.c |
Description:
|
This program is one of the ethernet packet sniffer for LINUX, FreeBSD, SunOS4.1, Solaris2, and IRIX that can log the all packets in each session of telnet, rlogin, pop3, ftp. If you install this program in the cracked server, you can also know the cracking process and the location of rootshell by the crackers. The logs of this tool is the evidence of the cracking, this tool is also useful for admin.
| | File Size: | 20552 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 4cb4d20c3304601c747194722ab256df |
|
| /// File Name: |
gscan.c |
Description:
|
A generic banner scanner. eg scan for qpop 110, wuftpd 21, wingates 23, telnet banners 23, etc etc
| | File Size: | 5293 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | ce09b86504ce12e42f80a4627d2abfc3 |
|
| /// File Name: |
hrs100.c |
Description:
|
This is one of the rootshell program. This program will be rootshell if you specify the special argment. If the special argment is not specified, this program calls a specified program. So, you name this program as well known suid program, it's very difficult for admins to find.
| | File Size: | 905 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 972284fa40fbd79e74121a98ef5f226d |
|
| /// File Name: |
hrs110.sh |
Description:
|
Improved version of hrs. You can easy install hrs by this shell script.
| | File Size: | 2591 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | a0569055929d84836e4601c5a454d01e |
|
| /// File Name: |
irixaa.tar.gz |
Description:
|
This program checks many IRIX security holes automatically. If you are admin, can check easily the security vulnerabilities of each IRIX. Don't use for the auto attack. This scanner contains the ttdbserver attack, this function is based on the script which is developped by the rootshell. thanks.
| | File Size: | 7868 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 6ed72c2b003024ef4818b460371143d3 |
|
| /// File Name: |
logchk.c |
Description:
|
If the access log is wiped by using the log wiper, the logs are not displayed by the last command. However, the general log wipers such as "zap" write the null on the specified entry of logfile, so you can check the log files whether the logs are wiped. This utility shows the all entries, you can analyze the logfile.
| | File Size: | 4649 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | a85be3f58485ed34d9b3f9c71463f0b8 |
|
| /// File Name: |
ltelnet.tar.gz |
Description:
|
This is the telnet trojan based on GNU telnet. The all operation which is included the server name, username, and password can be logged. This trojan can be installed with non-root user, if the user account is used by many crackers, you can also know the cracking process and the location of rootshell.
| | File Size: | 31065 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 305307abab5a2c82e3093c7c8c9f5251 |
|
| /// File Name: |
passwd_freebsd.c |
Description:
|
Passwd trojan for freeBSD.
| | File Size: | 3658 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 1088d2457aaef2a963eda828221d98d6 |
|
| /// File Name: |
passwd_irix.c |
Description:
|
Passwd trojan for IRIX. This trojan logs the username and password, and mails such information to you.
| | File Size: | 5565 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | b05539d77005385a59715659f34968e1 |
|
| /// File Name: |
passwd_linux.c |
Description:
|
Passwd trojan for LINUX.
| | File Size: | 3533 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | e1bb4a2e20e5323d14cff07b9a10ef20 |
|
| /// File Name: |
passwd_solaris.c |
Description:
|
Passwd trojan for Solaris2.x.
| | File Size: | 4652 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 2a6ff083ab921fb71aa1a1f50f52babd |
|
| /// File Name: |
passwd_sunos4.c |
Description:
|
Passwd trojan for SunOS4.
| | File Size: | 3107 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | d4c7492e1ac5f0ad9c6ceb71e3ffef6f |
|
| /// File Name: |
rbackdoor.c |
Description:
|
This is a backdoor program which can be accessed remotely as telnetd. TDM can not use telnet, rlogin, and ftp command, but this backdoor can use such command. However, you have to specify the correctry return code in the telnet client. If you can not change the return code, the "CR" code will be added and sent, so you type";" at the tail of your command.
| | File Size: | 2361 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | ada51ed685b7e6fefb3f851412c97226 |
|
| /// File Name: |
sendexp.c |
Description:
|
In the Penguin Toolbox, I published the exploit code that can send and execute a trojan program which is prepared in the attacker host, this is server program which is used by such exploits. This program sends the "*.exe" program to the victim host, and the exploit code executes it.
| | File Size: | 2178 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 7e1e90081114f7b0dc7b85adc49b2840 |
|
| /// File Name: |
simplestealth.c |
Description:
|
This is the simple half-open and stealth TCP port scanner. In the half-open mode, this program can recognize the OS type of target host.
| | File Size: | 10570 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | eb38415f021553359c7c167e66cad2cd |
|
| /// File Name: |
sizer.c |
Description:
|
If you install the ps faker, ifconfig faker, and HRS, the size of such programs will be smaller than original commands. This program adjusts the size of executable program, avoids the size check.
| | File Size: | 1144 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 02538901268fd7ff4247fc92bb051163 |
|
| /// File Name: |
sut.c |
Description:
|
SU Trojan Ver2.00
| | File Size: | 5091 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | ccfdf2b6c2f13ffa42df7c5a8a201728 |
|
| /// File Name: |
sut_digital.c |
Description:
|
SU trojan for Digital.
| | File Size: | 1284 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 3e74452aa0e80456e7e2ee22b3bc25f3 |
|
| /// File Name: |
sut_irix.c |
Description:
|
SU trojan for IRIX. This trojan logs the passwords. If you install the su trojan correctry, local users or admin fails the first "su", and the password which is inputed to su trojan has been logged to the specified file.
| | File Size: | 3202 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | eed0677f1799609c5205e1dd1d4a0a5d |
|
| /// File Name: |
sut_sol24.c |
Description:
|
SU trojan for Solaris2.4
| | File Size: | 1295 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 625af8c325b186764a35a61de6972d1a |
|
| /// File Name: |
sut_sol25j.c |
Description:
|
SU trojan for Solaris2.5
| | File Size: | 1338 | | Last Modified: | Nov 5 23:24:09 1999 |
| MD5 Checksum: | 26d22bee6c19251f19d19444e22da58b |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
