Section: .. / groups / thc /
| /// File Name: |
amap-0.95.tar.gz |
Description:
|
Amap is a scanning tool that allows you to identify the applications that are running on (a) specific port(s). It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Houser, DJ Revmoon | | Homepage: | http://www.thc.org | | File Size: | 26821 | | Last Modified: | Mar 6 01:15:03 2002 |
| MD5 Checksum: | e0fd9e1491a1db50663473ab47fe7824 |
|
| /// File Name: |
amap-1.2.1.tgz |
Description:
|
Amap is a scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Houser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | More application fingerprints, less bugs and SSL support! | | File Size: | 27314 | | Last Modified: | Dec 28 22:31:48 2002 |
| MD5 Checksum: | c84cdd211628573fc516575829629896 |
|
| /// File Name: |
amap-2.1.tar.gz |
Description:
|
Amap V2.1 is a scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Houser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | More application fingerprints, better identification, speed enhancements, amapcrap added, new features and bugfixes. | | File Size: | 34465 | | Last Modified: | May 8 17:07:56 2003 |
| MD5 Checksum: | 465f118051158b2a5c6760b39ac88436 |
|
| /// File Name: |
amap-2.5.tar.gz |
Description:
|
Amap is a scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | Bug fix in the -o output and RPC scanning. | | File Size: | 40897 | | Last Modified: | May 30 23:36:49 2003 |
| MD5 Checksum: | 61ac4d3ebf00d0239927e0fc41918032 |
|
| /// File Name: |
amap-2.7.tar.gz |
Description:
|
Amap is a scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | Added the ability to compile under Cygwin, Added some triggers and responses, and various bug fixes. | | File Size: | 41567 | | Last Modified: | Jun 17 00:06:07 2003 |
| MD5 Checksum: | 742448f85d6abf0897a7d0a703b66328 |
|
| /// File Name: |
amap-4.0.tar.gz |
Description:
|
Amap Version 4.0 is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | Rewritten from scratch to enhance speed and reliability. There are also new features, better documentation, and various other bug fixes. | | File Size: | 250753 | | Last Modified: | Jul 22 16:43:48 2003 |
| MD5 Checksum: | c92a0f159c1ccd34f63e932b81a5b660 |
|
| /// File Name: |
amap-4.2.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | Various bug fixes, added 28 new response ids and triggers, and more. | | File Size: | 252003 | | Last Modified: | Aug 10 17:43:12 2003 |
| MD5 Checksum: | ec781fe4ed97d8d3fcccf64951aefa3e |
|
| /// File Name: |
amap-4.3.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | More identifications added and various bug fixes. | | File Size: | 252744 | | Last Modified: | Sep 21 17:14:34 2003 |
| MD5 Checksum: | 36e59ff9dfc60effde6dab6235d2029f |
|
| /// File Name: |
amap-4.5.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | Added portability fixes for OpenBSD and Cygwin. | | File Size: | 253075 | | Last Modified: | Nov 20 19:05:28 2003 |
| MD5 Checksum: | 3c58c31a0e8e264baa06f13e068d3f91 |
|
| /// File Name: |
amap-4.6.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org | | Changes: | Added 9 new responses. Fixed a small string termination bug. | | File Size: | 252938 | | Last Modified: | Jul 20 10:03:00 2004 |
| MD5 Checksum: | 5af4b9342eb78c5d5db2492aab9a37a7 |
|
| /// File Name: |
amap-4.7.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org/releases.php | | Changes: | more identifications, SSL bugfixes. | | File Size: | 253217 | | Last Modified: | Oct 23 11:09:03 2004 |
| MD5 Checksum: | c2ce244321b0b7b5eb28fdc785452b9a |
|
| /// File Name: |
amap-4.8.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org/releases.php | | Changes: | Online web update of fingerprints is available. New identifications have been added. A windows binary is included, and more. | | File Size: | 258019 | | Last Modified: | Feb 5 15:55:07 2005 |
| MD5 Checksum: | db6f6aa06afc6aeea7c7e0c594c73b69 |
|
| /// File Name: |
amap-5.0.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org/releases.php | | Changes: | Updated application fingerprints, IPv6 support, better installation routines and minor bugfixes. | | File Size: | 261784 | | Last Modified: | Apr 18 02:50:37 2005 |
| MD5 Checksum: | 4f43cbaeac859523ee2d1af9a3bd39a9 |
|
| /// File Name: |
amap-5.1.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org/releases.php | | Changes: | Big appdefs.resp update. Fixed the web update function for bad inet_pton implementations. Couple other bug fixes and some nmap support has been added. | | File Size: | 261983 | | Last Modified: | Jun 18 15:19:16 2005 |
| MD5 Checksum: | 6d0a1c54d07967dfc10768a5ca6ee16b |
|
| /// File Name: |
amap-5.2.tar.gz |
Description:
|
Application Mapper is a next-generation scanning tool that allows you to identify the applications that are running on a specific port. It does this by connecting to the port(s) and sending trigger packets. These trigger packets will typically be an application protocol handshake (i.e. SSL). Amap then looks up the response in a list and prints out any match it finds. Adding new response identifications can be done just by adding them to an easy-to-read text file. With amap, you will be able to identify that SSL server running on port 3445 and some oracle listener on port 233!
| | Author: | Van Hauser, DJ Revmoon | | Homepage: | http://www.thc.org/releases.php | | Changes: | THIS IS A THC TAX ANNIVERSARY SPECIAL RELEASE. Some improvements and fingerprint additions. | | File Size: | 262875 | | Last Modified: | Oct 6 00:24:56 2005 |
| MD5 Checksum: | e3b1f5ebd24aac03aacb38ec183eb426 |
|
| /// File Name: |
anonymous-unix-0.7.tar.gz |
Description:
|
Anonymous UNIX v0.7 tools, including scripts, example configuration files, and the Anonymizing UNIX Systems v0.7" whitepaper. An excellent package of tools that can be used as the basis for an "Anonymous UNIX" system.
| | Author: | van Hauser / THC. | | File Size: | 21613 | | Last Modified: | Aug 16 20:15:01 1999 |
| MD5 Checksum: | 926f3593287a8435116e96fd23775bf0 |
|
| /// File Name: |
anonymous-unix.html |
Description:
|
"Anonymizing UNIX Systems v0.7" - Excellent whitepaper detailing methods and tools that can and should be used to secure your UNIX systems(s), keeping your data and actions as private as possible. This is the "must read whitepaper of the month", and is included in the anonymous-unix-0.7.tar.gz package.
| | Author: | van Hauser / THC. | | File Size: | 34625 | | Last Modified: | Aug 16 20:15:01 1999 |
| MD5 Checksum: | a5fcb8c6e0b79e90415710af627b8771 |
|
| /// File Name: |
bluemaho_v080422_beta.tar.gz |
Description:
|
BlueMaho is a graphical user interface for a suite of tools used to test the security of bluetooth devices. It is freeware, open source, written in python, and uses wxPyhon.
| | Homepage: | http://wiki.thc.org/BlueMaho | | File Size: | 787754 | | Last Modified: | Apr 28 11:18:43 2008 |
| MD5 Checksum: | 1e86b38c0efb3a520188eb5acbe507fd |
|
| /// File Name: |
bsdkern.htm |
Description:
|
Attacking FreeBSD with Kernel Modules - The System Call Approach. System calls can be backdoored on FreeBSD much like they can on linux, and most linux kernel modules can easily be ported to FreeBSD. Includes information on intercepting system calls, filesystem related hacks, hiding files and contests, process related hacks, file execution redirection, tty hijacking, and module hiding.
| | Author: | pragmatic | | Homepage: | http://www.pimmel.com/articles/ | | File Size: | 146950 | | Last Modified: | Dec 22 19:11:48 1999 |
| MD5 Checksum: | 6fa8de63f4d5e1d3600b411782a2ff6a |
|
| /// File Name: |
cupass.txt |
Description:
|
The NetUserChangePassword function in Windows NT 4 enables an attacker to change the password of any user under special/default circumstances.
| | Author: | Doc Holiday | | Homepage: | http://www.thc.org/ | | File Size: | 20466 | | Last Modified: | Jun 4 03:23:51 2002 |
| MD5 Checksum: | 2ef7ee655957439be20c8f98d06415a8 |
|
| /// File Name: |
dma-hydra-5.4-src_plus.txt |
Description:
|
Patch for THC's Hydra that adds a dependency checks for openssl needed for the SIP module, modifies checks for libpq.so for Postgresql module, adds a new module for Netware NCP and for Firebird database.
| | Author: | David Maciejak | | File Size: | 27586 | | Last Modified: | Sep 5 00:55:18 2007 |
| MD5 Checksum: | b7ca798d510365fb31d77bb846a0f1f8 |
|
| /// File Name: |
ffp-0.0.8.tar.gz |
Description:
|
THC-FuzzyFingerprint is a tool that generates fuzzy fingerprints as described in the corresponding paper, available here.. It generates very similar-looking fingerprints, an ideal extension to man-in-the-middle attacks against the SSH service. The current version supports RSA and DSA key generation and MD5 and SHA1 fingerprints. Due to the fact that fuzzy fingerprinting doesn't try to collide the fingerprints, good results can be achieved in reasonable time.
| | Author: | Plasmoid | | Homepage: | http://www.thc.org | | File Size: | 200372 | | Last Modified: | Oct 30 00:07:08 2003 |
| MD5 Checksum: | ddcb6acaaf579c4219268812e49b285a |
|
| /// File Name: |
ffp.pdf |
Description:
|
Fuzzy Fingerprinting is a new technique to attack cryptographic key authentication protocols that rely on human verification of key fingerprints. This document covers the theoretical background and the generation of fuzzy fingerprints and also details on the implementation ffp [FFP] and its usage. Includes practical part with details on the implementation and the provided sample session using SSHarp.
| | Author: | Konrad Rieck | | Homepage: | http://www.thc.org | | File Size: | 157288 | | Last Modified: | Sep 3 20:11:54 2004 |
| MD5 Checksum: | 2d5be2dc53c2d4ef329a5de8f2eea05a |
|
| /// File Name: |
flood-connect-1.5.tar.gz |
Description:
|
THC Flood Connect is a connection flooding tool which supports SSL, sending + dumping data, closing or keeping sessions etc. Just a small release.
| | Homepage: | http://www.thc.org/releases.php | | File Size: | 3862 | | Last Modified: | Aug 8 02:26:09 2002 |
| MD5 Checksum: | 83a7dc7a6143af01fb2de8023188f4c8 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
