Section: .. / UNIX / scanners /
| /// File Name: |
onesixtyone-0.3.tar.gz |
Description:
|
onesixtyone 0.3 is an efficient SNMP scanner which utilizes a sweep technique to achieve good performance. It finds SNMP devices on your network and brute-forces the community strings using a dictionary. It is possible to scan a class B network (65536 ip addresses) in under 13 minutes with a high degree of accuracy. Tested on Linux, FreeBSD, OpenBSD and Solaris.
| | Author: | Solar Eclipse | | Homepage: | http://www.phreedom.org/article.php?id=29 | | Changes: | This release includes portability enhancements. | | File Size: | 7101 | | Last Modified: | Mar 20 02:38:57 2002 |
| MD5 Checksum: | 25b5366a68ff3dd777e99ddc230dc890 |
|
| /// File Name: |
iisscan-1.0.tar.gz |
Description:
|
IISscan v1.0 scans networks for IIS servers vulnerable to the unicode bug.
| | Author: | Daniel | | Homepage: | http://www.bastardo.de | | File Size: | 1078 | | Last Modified: | Mar 19 22:35:55 2002 |
| MD5 Checksum: | 97a665483c75779f2b718371a01af696 |
|
| /// File Name: |
onesixtyone-0.2.tar.gz |
Description:
|
Onesixtyone 0.2 is an efficient SNMP scanner which utilizes a sweep technique to achieve good performance. It finds SNMP devices on your network and brute-forces the community strings using a dictionary. It is possible to scan a class B network (65536 ip addresses) in under 13 seconds with a high degree of accuracy.
| | Author: | Solar Eclipse | | Homepage: | http://www.phreedom.org/article.php?id=29 | | File Size: | 6573 | | Last Modified: | Mar 6 01:50:11 2002 |
| MD5 Checksum: | b3fd79076e22298a60d62230c0e5d57f |
|
| /// File Name: |
mothra-v1.c |
Description:
|
Mothra is a monstrous yet graceful banner grabber for OpenBSD, NetBSD, Freebsd, and Linux.
| | Author: | Dmuz | | Homepage: | http://sec.angrypacket.com | | File Size: | 13819 | | Last Modified: | Mar 6 01:28:03 2002 |
| MD5 Checksum: | 8da021a106fac3fa5d3729547f349ab5 |
|
| /// File Name: |
amap-0.95.tar.gz |
Description:
|
Amap is a scanning tool that allows you to identify the applications that are running on (a) specific port(s). It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org | | File Size: | 26821 | | Last Modified: | Mar 6 01:15:03 2002 |
| MD5 Checksum: | e0fd9e1491a1db50663473ab47fe7824 |
|
| /// File Name: |
lscan3.c |
Description:
|
Lscan3 is a re-write of Mixters' lscan02.c to include ssh, smtp, http, https, snmp and a few other small additions.
| | Author: | TheFinn | | Homepage: | http://thefinn.homeip.net | | File Size: | 7050 | | Last Modified: | Mar 6 01:09:02 2002 |
| MD5 Checksum: | 42a582438b17fd61adad998ff7115178 |
|
| /// File Name: |
snmp-audit-0.1.tar.gz |
Description:
|
Perl SNMP scanner - This small collection of scripts can be used to scan an arbitrary set of networks, presumably networks which you administer, and identify any nodes which are running an snmp service on a specified udp port (default 161) with a specified community string (default public). The results of the scan can be saved in a text file and/or in a formatted html report.
| | Homepage: | http://www.musc.edu/~gadsden/tools/snmp-audit | | File Size: | 3188 | | Last Modified: | Feb 26 23:37:37 2002 |
| MD5 Checksum: | 88400d3493c7f4e710db454e7cede941 |
|
| /// File Name: |
nsat-1.41.tar.gz |
Description:
|
NSAT (Network Security Analysis Tool) is a fast, stable bulk security scanner designed to audit remote network services and check for versions, security problems, gather information about the servers and the machine and much more. Unlike many other auditing tools, it can collect information about services independently of vulnerabilities, which makes it "timeless", meaning it doesn't depend on frequent updates as new vulnerabilities are found.
| | Author: | Mixter | | Homepage: | http://1337.tsx.org | | Changes: | Added better remote OS detection (xprobe), added support for separate directory logging, greatly enhanced reliability when scanning firewalled or unresponsive hosts. | | File Size: | 421811 | | Last Modified: | Feb 19 01:36:45 2002 |
| MD5 Checksum: | 755829bbb0427fdbc134d225577b6a17 |
|
| /// File Name: |
gps-0.9.0.tar.gz |
Description:
|
Ghost Port Scan is an advanced port scanner and a firewall rule disclosure tool. Uses IP & ARP spoofing, sniffing, stealth scanning, arp poisoning, IP fragmentation, and other techniques to perform stealth and untrackable information collection. GPS is especially efficient in LAN pen-testing, due to its ability to disclose the firewall settings of a host.
| | Author: | Whitehat | | Homepage: | http://gps.sourceforge.net | | Changes: | New improved architecture, support for UDP scans, lots of optimizations, faster scan speed, and is more portable. | | File Size: | 77389 | | Last Modified: | Feb 5 01:02:37 2002 |
| MD5 Checksum: | 3888e8071ccd6f5404aa8fbc6bc1eef8 |
|
| /// File Name: |
raccess-0.6.tar.gz |
Description:
|
"Remote Access Session" is a security tool to analyze the integrity of systems. The program tries to gain access to a system using the most advanced techniques of remote intrusion. It can either work in normal mode (which is fast) or hard mode (which is more intensive). There is a big difference between "Remote Access Session" and other remote security audit tools as "Nessus" or "Internet Scanner" - If "Remote Access Session" finds a remote vulnerability that gives a user account or root, it will try to exploit it and it will return a shell. In my honest opinion, this is the only way to discard false positives of remote vulnerabilities, and the only way to demonstrate that the danger is real to upper management. "Remote Access Session" is not a hacker tool. It has been designed for system administrators and security engineers, and does not attempt any kind of stealth.
| | Author: | Angel Ramos | | Homepage: | http://www.salix.org/raccess | | File Size: | 225270 | | Last Modified: | Jan 11 22:52:42 2002 |
| MD5 Checksum: | 8d045a0b336f0cd635c4ab788d2872da |
|
| /// File Name: |
sockscan.tgz |
Description:
|
Syn sock scanner - A very fast scanner for socks proxies.
| | Author: | Krusader | | Homepage: | http://www.twlc.net | | File Size: | 1772 | | Last Modified: | Jan 11 00:02:42 2002 |
| MD5 Checksum: | 29399e1f6ea480968bdf63d6b592a903 |
|
| /// File Name: |
sshscan-211.c |
Description:
|
Scans for rh7 boxes running ssh-2.1.1 that can be exploited using the TESO sshd exploit.
| | Author: | Smurf | | File Size: | 8758 | | Last Modified: | Jan 8 01:46:11 2002 |
| MD5 Checksum: | 75bd0be46c3695503c0d43a0441176ba |
|
| /// File Name: |
knocker-0.5.0.tar.gz |
Description:
|
Knocker is a simple and easy-to-use TCP security port scanner written in C. It is able to analyze hosts and the network services which are running on them. Knocker it is available for Linux and Unix platforms. Both a console version and a GTK+ version are available.
| | Homepage: | http://knocker.sourceforge.net | | Changes: | The --quiet-mode option was added to suppress output to the console, instead directing such output to a log file. The --enable-logfile option causes scan results to be written to a file, but does not disable console output. The --no-threads option disables the use of threads. A bug that prevented compilation under HP-UX was fixed. | | File Size: | 70288 | | Last Modified: | Jan 7 21:19:08 2002 |
| MD5 Checksum: | def9cc849054c476dca3d04d05fb2dab |
|
| /// File Name: |
nutsaq.pl |
Description:
|
Nutsaq.pl scans for the WU-Ftpd v2.6.1 glob vulnerability via anonymous login.
| | Author: | Dioad | | File Size: | 1290 | | Last Modified: | Dec 14 00:35:02 2001 |
| MD5 Checksum: | 4e9070327b38d8f341494275ffe7bab3 |
|
| /// File Name: |
isnprober-1.02.tgz |
Description:
|
ISNprober is a tool that samples TCP Initial Sequence Numbers (or IP ID's) and can use that information to determine if a set of IP addresses belong to the same TCP/IP stack (machine) or not.
| | Author: | Tom Vandepoel | | Homepage: | http://www.ubizen.com | | Changes: | IPID probing, better reporting of no response, added case for constant IPID=0 (or TCPISN=0), and added a README with new findings. | | File Size: | 10604 | | Last Modified: | Dec 14 00:18:23 2001 |
| MD5 Checksum: | 25d3db5751d0b83116bd5f7fc64778b5 |
|
| /// File Name: |
vulcan.tar.gz |
Description:
|
Vulcan is a simple tool to identify vulnerabilities in several network services. This is done by comparing initial information from a server (its banners) against a database of vulnerable versions. Databases are included for ssh, http, and ftp versions. Includes NT/2000 executable and unix .c source.
| | Author: | Nelson Murilo | | Homepage: | ftp://ftp.pangeia.com.br/pub | | File Size: | 32592 | | Last Modified: | Dec 12 21:03:55 2001 |
| MD5 Checksum: | 33f8cfbec4a6999ee3f9a1568dc5abc2 |
|
| /// File Name: |
scanssh-1.6b.tar.gz |
Description:
|
scanssh scans a list of addresses and networks for running SSH servers and their version numbers. scanssh supports random selection of IP addresses from large network ranges and is useful for gathering statistics on the deployment of SSH servers in a company or the Internet as whole.
| | Author: | Provos | | Homepage: | http://www.monkey.org/~provos/scanssh | | Changes: | Bug fixes and minor improvements. | | File Size: | 51064 | | Last Modified: | Dec 8 23:25:19 2001 |
| MD5 Checksum: | b0b7a4e6953a878b188156449ae0750f |
|
| /// File Name: |
msmbs.sh |
Description:
|
Shell script to scan a domain for open windows shares using samba. Tested on slackware, red hat, SuSE. Requires smb client.
| | Author: | Zinc_Sh | | File Size: | 3842 | | Last Modified: | Nov 22 04:36:46 2001 |
| MD5 Checksum: | 2cb45da8934e1a609da45af3e4205c1f |
|
| /// File Name: |
ios-w3-vul.c |
Description:
|
Cisco IOS HTTP Server Vulnerability Scanner - This code scans a Cisco router/switch for vulnerability, and as an option fetching the configuration, without any authentication as described here. Cisco bug ID CSCdt93862. Tested on Linux and OpenBSD.
| | Author: | Bashis | | File Size: | 4987 | | Last Modified: | Nov 5 01:18:25 2001 |
| MD5 Checksum: | 876d41412190e66e4a720813673d4201 |
|
| /// File Name: |
GnoScan-0.1.2.tar.gz |
Description:
|
GnoScan is a multi-threaded network scan and security utility with an intuitive graphical user interface. It runs under GNOME. This is not the world's first port scanner, but certainly one of the most easy ones to use.
| | Homepage: | http://gnoscan.berlios.de | | Changes: | Small Bug Fixes. | | File Size: | 73519 | | Last Modified: | Oct 20 04:19:49 2001 |
| MD5 Checksum: | 80556909071a1d888b73efb0a83fb41e |
|
| /// File Name: |
dcetest-1.2.tar.gz |
Description:
|
Dcetest is a tool which probes a windows machine over TCP port 135, MSRPC endpoint information. It can be though of as the equivalent of rpcinfo -p against a Windows box. Dcetest can also be very useful once inside a DMZ to fingerprint Windows machines on the network.
| | Homepage: | http://www.atstake.com/research/tools/index.html#info_gathering | | File Size: | 23366 | | Last Modified: | Oct 18 01:16:57 2001 |
| MD5 Checksum: | 5413d6338d8d06ac19703717b4116cb1 |
|
| /// File Name: |
horus-0.1.tar.gz |
Description:
|
Horus is a tool for "third host" or "dumbhost" scanning. It can provide very stealth-ed portscans by using another source address in the SYN-packets of the portscan. This method will be almost invisible to the target host, since no direct connection is made from your computer to the target system. Tested on Linux.
| | Author: | Incubus | | Homepage: | http://www.coders.be/security/ | | File Size: | 13616 | | Last Modified: | Oct 17 02:57:32 2001 |
| MD5 Checksum: | fa762d30f219214de53bf66f0dfba34e |
|
| /// File Name: |
crscan.c |
Description:
|
Code red scanner which checks for root.exe.
| | Author: | Xero-,Tinfreeze | | File Size: | 5100 | | Last Modified: | Oct 4 02:41:02 2001 |
| MD5 Checksum: | b447963244c7215b278153ca97e2eda6 |
|
| /// File Name: |
gps-0.8.0.tar.gz |
Description:
|
Ghost Port Scan is an advanced port scanner and a firewall rule disclosure tool. Uses IP & ARP spoofing, sniffing, stealth scanning, arp poisoning, IP fragmentation, and other techniques to perform stealth and untrackable information collection. GPS is especially efficient in LAN pen-testing, due to its ability to disclose the firewall settings of a host.
| | Author: | Whitehat | | Homepage: | http://gps.sourceforge.net | | File Size: | 72774 | | Last Modified: | Sep 21 00:28:47 2001 |
| MD5 Checksum: | 308588021de66b58522b06307151fb15 |
|
| /// File Name: |
resolv-0.9.9a.tar.gz |
Description:
|
Resolv-0.9.c is a program which resolves a range of IP addresses. Includes logging, search patterns, and displays aliases.
| | Author: | s23a | | Changes: | More features. | | File Size: | 10267 | | Last Modified: | Sep 12 12:23:35 2001 |
| MD5 Checksum: | b186bfcd7dc80df21d8f8f4f16c4bfe2 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
