Section: .. / web /
| /// File Name: |
mod_dosevasive.1.7.1.tar.gz |
Description:
|
The Apache DoS Evasive Maneuvers Module is a module for Apache 1.3 and 2.0 that detects and fights off DoS attacks and brute force attempts by adding addresses to a 10-second '403 List' and rejecting rapidly repeated requests for the same URL from the same addresses. This module can be configured to talk to ipchains, ipfilter, or any other tool designed to push the attack out to the network layer, and provides email notification in the event of an attack.
| | Author: | Jonathan A. Zdziarski. | | Homepage: | http://www.nuclearelephant.com/projects/dosevasive | | File Size: | 79081 | | Last Modified: | Aug 27 01:57:04 2003 |
| MD5 Checksum: | db59ce8070c3b954c4ea101e17e4a4a0 |
|
| /// File Name: |
nncookct.zip |
Description:
|
Netscape Navigator Cookie Cutter - Let you choose which cookies to use under Windows Netscape.
| | Homepage: | http://www.roninsg.com/nncookct.htm | | File Size: | 77496 | | Last Modified: | Jan 1 00:35:31 2001 |
| MD5 Checksum: | 86e6e99134299a355ec53ba16ceab2d4 |
|
| /// File Name: |
cgiaudit-1.0.tar.gz |
Description:
|
CGIAudit is a black-box debugging tool which automatically audits CGI entities with only an interface specification, the HTML form. Attack types that a CGI script or program become subject to are configurable, as well as server replies that denote a possible penetration success. Other features include a built-in spider, proxy support, and hexadecimal encoding of requests.
| | Author: | S | | File Size: | 69018 | | Last Modified: | Jan 11 13:09:36 2002 |
| MD5 Checksum: | 8a5e585d220f86b1b68363490dbefde2 |
|
| /// File Name: |
AttackAPI.zip |
Description:
|
AttackAPI provides simple and intuitive web programmable interface for composing attack vectors with JavaScript and other client (and server) related technologies. The current release supports several browser based attacking techniques, simple but powerful JavaScript console and powerful attack channel and associated API for controlling zombies.
| | Author: | pdp | | Homepage: | http://www.gnucitizen.org/projects/attackapi/ | | File Size: | 66859 | | Last Modified: | Oct 20 18:12:30 2006 |
| MD5 Checksum: | a3b5bf02dada5efadfcde71310e5503f |
|
| /// File Name: |
NatACL.20050311.tar.gz |
Description:
|
NatACL is an authentication daemon for NAT and transparent proxying that man in the middles outbound HTTP requests and forces the user to a login/password page requesting credentials to allow the outbound connection. After proper credentials are received, NAT rules are automatically generated.
| | Author: | Fabio Yasusi Yamamoto | | Changes: | Various additions and fixes. | | File Size: | 62350 | | Last Modified: | Mar 17 01:21:38 2005 |
| MD5 Checksum: | 10a8a90b2521de703e432223b157f580 |
|
| /// File Name: |
corkscrew-2.0.tar.gz |
Description:
|
corkscrew is a small program for tunneling SSH through HTTP proxies. It features easy configuration and support for several Unix variants.
| | Homepage: | http://www.agroman.net/corkscrew/ | | Changes: | Added support for basic HTTP authentication. | | File Size: | 56749 | | Last Modified: | Aug 28 03:11:11 2001 |
| MD5 Checksum: | 35df77e7f0e59c0ec4f80313be52c10a |
|
| /// File Name: |
corkscrew-1.4.tar.gz |
Description:
|
corkscrew is a small program for tunneling SSH through HTTP proxies. It features easy configuration and support for several Unix variants.
| | Homepage: | http://www.agroman.net/corkscrew/ | | Changes: | Fixed bug causing corkscrew not to run on Solaris and HPUX. | | File Size: | 55610 | | Last Modified: | Apr 22 15:56:24 2001 |
| MD5 Checksum: | 948d1c97029011f78e034a55feef9a58 |
|
| /// File Name: |
corkscrew-1.3.tar.gz |
Description:
|
corkscrew is a small program for tunneling SSH through HTTP proxies. It features easy configuration and support for several Unix variants.
| | Homepage: | http://www.agroman.net/corkscrew/ | | File Size: | 55361 | | Last Modified: | Apr 15 15:04:17 2001 |
| MD5 Checksum: | c61f469224ac97ed231e355ea671afd8 |
|
| /// File Name: |
spkproxy1.1.tar.gz |
Description:
|
SPIKE proxy is a proxy which uses the SPIKE API to help reverse engineer new and unknown network protocols. Provides security analysis features for Web applications, a multi-threaded design, man in the middle SSL proxying, handles Connection: keep-alive properly (it is possible to log in to Hotmail with it), and rewrites User-Agent to pretend to be running IE. Requires pyOpenSSL pre 0.5 from the SPIKE Web page. Several working examples are included. Screenshot available here.
| | Author: | Dave Aitel | | Homepage: | http://www.immunitysec.com/spike.html | | Changes: | A HTML based GUI is now included, allowing the user to quickly look for SQL injection bugs/overflows on an entire site or rewrite individual requests. | | File Size: | 52021 | | Last Modified: | Jul 23 23:39:26 2002 |
| MD5 Checksum: | 931c52d01f7fed1abf47c46fc8320cae |
|
| /// File Name: |
cgiproxy.1.4.1.tar.gz |
Description:
|
CGIProxy is a Perl CGI script that acts as an Internet proxy. Through it, you can retrieve resources that may be inaccessible from your own machine. No user info is transmitted, so it can be used as an anonymous proxy. HTTP and FTP are supported. Options include text-only browsing (to save bandwidth), selective cookie and script removal, simple ad filtering, encoded target URLs, configuration by end user, and more.
| | Homepage: | http://www.jmarshall.com/tools/cgiproxy/ | | Changes: | This release runs 15% faster, fixes a bug with meta "refresh" tags causing duplicate entry forms, and fixes another entry form bug. | | File Size: | 49038 | | Last Modified: | Mar 9 21:37:08 2001 |
| MD5 Checksum: | 4269d23d3796f14654fb19983a90fd8a |
|
| /// File Name: |
WebRoot.txt |
Description:
|
WebRoot is a bruteforce directory/file scanner, which looks for files and directories on a website which might contain interesting data, but which are not referenced anywhere on the site (for example, include-files and database files located under the webroot).
| | Author: | CIRT.DK | | Homepage: | http://www.cirt.dk/tools | | File Size: | 48446 | | Last Modified: | Aug 14 18:27:22 2005 |
| MD5 Checksum: | 432a8f74011576549714305613cd5a3b |
|
| /// File Name: |
mod_rootme-0.1.tgz |
Description:
|
mod_rootme is a very cool module for the Apache 1.3 series that sets up a backdoor inside of Apache where a simple GET request will allow a remote administrator the ability to grab a root shell on the system without any logging.
| | Author: | Christophe Devine | | File Size: | 47410 | | Last Modified: | Jun 22 04:11:01 2004 |
| MD5 Checksum: | 54e895013b25378a00bd8e93c46e32ad |
|
| /// File Name: |
lsa_v1.1.zip |
Description:
|
LSA v1.1 for unix, linux, and windows is a tool written in PHP for testing PHP and system security settings, virtual hosts, and local accounts. You can write own plugins for LSA.
| | Author: | eaS7 | | Homepage: | http://lbyte.void.ru | | File Size: | 47117 | | Last Modified: | Dec 17 22:11:16 2002 |
| MD5 Checksum: | 5071c695149010f466390dc81c86606d |
|
| /// File Name: |
comclear-1.2.tar.gz |
Description:
|
ComClear is a history cleaner for Netscape Navigator and Communicator which allows a user to choose from deleting the cache, cookies, history, and drop-down list. Comclear has both a command-line version and a GTK+ version, the latter of which is run automatically when ComClear is run from an X session.
| | Homepage: | http://www.neuro-tech.net/comclearu.xml | | Changes: | This release has better RPM packaging, and a GNOME application link. | | File Size: | 43157 | | Last Modified: | Apr 15 14:42:11 2001 |
| MD5 Checksum: | ace74974ceef363fb895815ea7b2fd83 |
|
| /// File Name: |
elza-1.4.3.zip |
Description:
|
The ELZA is a scripting language aimed at automating requests on web pages. Scripts written in ELZA are capable of mimicring browser behavoir almost perfectly, making it extremely difficult for remote servers to distinguish their activity from the activity generated by ordinary users and browsers. This gives those scripts the opportunity to act upon servers that will not respond to requests generated using netcat, rebol, telnet or similar tool. As a result, one can hijack heavily protected HTML forms, perform dictionary attacks on login forms, and do sophisticated CGI scanning.
| | Author: | Phillip Stoev | | Homepage: | http://phiphi.hypermart.net/elza-entry.html | | File Size: | 41330 | | Last Modified: | Jan 4 03:48:35 2000 |
| MD5 Checksum: | b6e8d6a733c07a4081837b70f88c6c08 |
|
| /// File Name: |
insider.zip |
Description:
|
Insider v1.0 is a utility to set up a reverse backdoor for Win32 platforms that simply connects out to a server over HTTP and has the server tunnel commands back over the inbound connection.
| | Author: | Nick Snickers | | Homepage: | http://www15.brinkster.com/nick102799/insider/ | | File Size: | 40003 | | Last Modified: | Jul 22 16:27:29 2003 |
| MD5 Checksum: | fcb667a91f7f0be4ebe53db28e325844 |
|
| /// File Name: |
wpc-0_2b.tar.gz |
Description:
|
WPC is a simple application that tries to guess usernames and passwords for password-protected web pages. This security tool is intended for webmasters.
| | Author: | g1soft | | Homepage: | http://members.xoom.com/g1soft/ | | Changes: | Filters for specific http responses, improved http code, "configure" script tweaks. | | File Size: | 37620 | | Last Modified: | May 12 19:47:27 2000 |
| MD5 Checksum: | c9a05f7f489304b58188f88bbb5212b0 |
|
| /// File Name: |
cookietools-0.3.tgz |
Description:
|
cookietools is comprised of three pieces. First, the cookiesniffer, which is a simple and powerful cookie sniffer that recognizes (through heuristics) and reconstructs (through libnids) new and existing HTTP connections, parsing any valid or partially valid HTTP message. The output is a set of files containing the gathered information with time-stamps in a format that can be trivially searched and parsed with standard UNIX tools such as grep, awk, cut and sed. It supports wireless (AP_DLT_IEEE802_11) networks. Second, there is a set of bash scripts that are used to quickly analyze the logs of cookiesniffer. In addition to this, there is the cookieserver that allows you to impersonate the cookies of someone else in your browser using the logs of cookiesniffer. This attack is also called "side-jacking", "cookie replay attack" and "HTTP session hijacking".
| | Author: | Michele Dallachiesa | | Homepage: | http://xenion.antifork.org/cookietools/index.html | | File Size: | 36592 | | Last Modified: | Dec 11 22:33:48 2007 |
| MD5 Checksum: | 4cbb1095b1f842daa12d0e0ba7ddbfd4 |
|
| /// File Name: |
wpc-0_2.tar.gz |
Description:
|
Unavailable.
| | File Size: | 34165 | | Last Modified: | Apr 23 03:46:48 2000 |
| MD5 Checksum: | da78f9f89001044a36e9d6011bcc3350 |
|
| /// File Name: |
WebRoot.pl |
Description:
|
WebRoot is a bruteforce directory/file scanner, which looks for files and directories on a website which might contain interesting data, but which are not referenced anywhere on the site (for example, include-files and database files located under the webroot).
| | Author: | CIRT.DK | | Homepage: | http://www.cirt.dk/tools | | File Size: | 33274 | | Last Modified: | May 2 17:29:34 2005 |
| MD5 Checksum: | 732f06410340490735aede5191f5c270 |
|
| /// File Name: |
wpc-0_1b.tar.gz |
Description:
|
WPC is a simple application that tries to guess usernames and passwords for password-protected web pages. This security tool is intended for webmasters.
| | Author: | g1soft | | Homepage: | http://members.xoom.com/g1soft/ | | Changes: | Better command line options handling, and some additional small features. | | File Size: | 31897 | | Last Modified: | Nov 29 19:32:57 1999 |
| MD5 Checksum: | 6833ec8c7582fdd5f2516b498a1735df |
|
| /// File Name: |
mod_id_1.0.tar.gz |
Description:
|
Mod_Id is an interesting Apache Module which is an IDS system watching for suspicious URL's.
| | Author: | Burak | | Homepage: | http://www.hacettepe.edu.tr/~burak | | File Size: | 31774 | | Last Modified: | Feb 27 02:19:40 2001 |
| MD5 Checksum: | 695e16ef65ffaf086eaca589a1f92212 |
|
| /// File Name: |
htmlcodes.shtml |
Description:
|
Full table of HTML ASCII characters and Symbols.
| | File Size: | 29172 | | Last Modified: | Jun 10 12:33:34 2004 |
| MD5 Checksum: | 3dd8daa5e072eef2140dcbbd5d9947d9 |
|
| /// File Name: |
elza-1.3.1.zip |
Description:
|
The ELZA is a scripting language written in PERL aimed at automating HTTP requests, while maintaining fill browser-like behavoir, which enables it to go to places within web sites unaccessible to netcat, telnet, or similar tools. Features: Extraction of _dynamic_ URLs from from HTML;Handling of forms, passing custom form fields and field values, collecting hidden form fields; Following redirects and refreshes; Handling of cookies, honoring their Path and Domain attributes; HTTP Referer, User-Agent, and other HTTP headers for perfect mimicry; HTTP basic authorization including dictionary attacks; Looping for repeated requesting or dictionary attacks; Conditional execution; HTTPS communication via a SSL tunnel; Forms hijacking. Scripts written in ELZA can be executed remotely via POST or forked for load generation.
| | Author: | Philip Stoev | | Homepage: | http://phiphi.hypermart.net | | File Size: | 28873 | | Last Modified: | Nov 26 16:40:19 1999 |
| MD5 Checksum: | 029eb167341c19143de29397c18857f1 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
