Hijacking
|
BU-2012.HTM
1963 bytes. by Michal Zalewski
(2010)
|
...because you can't get enough of clickjacking
Exploit
World Wide Web
|
Net Scanning
|
PBS.C
3009 bytes. (1998)
|
Proxy Bounce Scanner
Net Scanning
Bounce a portscan off a web proxy server, a la 'FTP bounce attack'
|
BT814.TXT
7428 bytes. (2003)
|
Unix command line RPC/DCOM Vulnerability Scanner
Net Scanning
Unix
Windows
|
PORTCHK.C
4072 bytes. by Missnglnk
|
portchk.c
Audit Tool
Net Scanning
Linux
Solaris
Takes either command line input or file input and checks if
a given port on a remote host is accesible.
|
PSCAN.C
14382 bytes. by Pluvius
|
pscan
Audit Tool
BSD/FreeBSD
Net Scanning
Linux
TCP/UDP/NIS/RPC scanner.
|
FINDOMS.C
2030 bytes. by P. McGinnis
(1996)
|
findomains.c
Audit Tool
Net Scanning
Source Code
Unix
findomains.c is a simple program to find the names
associated with a class C worth of IP's.
|
PROPECIA.C
1540 bytes. by bind
(1999)
|
Propecia Port Scanner
Audit Tool
Net Scanning
Unix
|
SOUPSCAN.C
4992 bytes. by Ambient Empire
(1999)
|
Soup Port Scanner
Audit Tool
Net Scanning
Unix
|
PSCAN1.C
8318 bytes. by jay
|
PScan Port Scanner
Audit Tool
Net Scanning
Unix
|
SPS.PL
2107 bytes. by MB
|
Simple Ping Sweep 1.0b
Net Scanning
Unix
sps is a basic ping sweep utility you can ping a single host, hosts from a file, or
a range of ip addresses.
|
SIMPSLTH.C
10521 bytes. by Unyun
|
Simple Stealth 1.10
Net Scanning
Unix
This is the simple half-open and stealth TCP port scanner. In the half-open
mode, this program can recognize the OS type of target host.
|
SLOWSCAN.PL
11869 bytes. by Miff
(1999)
|
Sl0scan
Net Scanning
Unix
This port scanner is designed to spoof a port scan from multiple hosts making it
difficult for an IDS to discover which was real and which is not.
|
STATDSCN.C
2405 bytes. by BiT
(1997)
|
Statd Overflow Scanner
Audit Tool
Net Scanning
Linux
This is a simple scanner written in C for quickly finding UNIX machines with a vulnerable rpc.statd. Statd is a
program commonly associated within the conext of file locking for NFS (Networked File System). In particular it
keeps 'state' for locked files in use on the shared filesystems. Statd has had a history of security issues, one of
which being a buffer overrun in the portion of Statd which takes information from rpc.lockd (the program which
handles the actual file locking). Rpc.lockd is supposed to pass information to the status daemon (statd) in order to
notify it for which files it should be keeping state on, the problem is initiated by the fact that statd does not do any
authentication on wether this information is actually coming from the lock daemon itself. Because there is improper
bounds checking in the status daemon a user can then send data to the status daemon (as if it were from the lock
daemon) and execute the buffer overflow in question.
|
DEFPSD.TXT
7202 bytes. by Wyzewun
(1999)
|
Defeating Portscan Detection
Net Scanning
|
Wardialing
|
WARDIAL.PDF
839108 bytes. by Kingpin
(2000)
|
Wardialing Brief SCN:
Hacking
|
WARDETCT.PDF
43188 bytes. by AT&T
|
Local Area Detection of Incoming War Dial Activity [AT&T] SCN:
Hacking
|
Sniffing
|
READSMB2.C
9728 bytes. (2001)
|
SMB Sniffer SNF:
|
SNIFFING.HTM
142768 bytes. (2000)
|
Sniffing FAQ SNF:
Frequently Asked Questions
|
RECONS.TXT
10459 bytes. by afx
(2001)
|
Reconstructing Serialized Java Objects from Sniffer logs SNF:
Log Analysis
|
KRNSNIFF.C
12819 bytes. by Kossak
|
krnsniff 0.1a SNF:
Linux
A Linux kernel based sniffer module whose purpose is to
expose the dangers of a compromised system. It is virtually
impossible to detect, if used with a module hider.
|
Fingerprinting
|
ADDRELAY.TXT
8655 bytes. (2003)
|
Address Relay Fingerprinting
|
FOOTPRNT.TXT
11983 bytes. (2002)
|
Footprinting - How and why hackers gather information about systems
Hacking
|
Spoofing and Phishing
|
EBAYISAP.HTM
17633 bytes. by dm
(2003)
|
Typical fake login page used by Phishers (identity thieves) operating on eBay users
Privacy
World Wide Web
The "real" version of this page from eBay is normally not secure (https://) so eBay's admonishments to
look for a secure connection to assure that an eBay page is the real thing is rather pointless with this
page. Also, although this example doesn't use the technique, it is possible in Javascript to place a fake
address in the address bar of the user's browser, hiding the real URL of this file, and making eBay's
advice to look for "https://cgi6.ebay/com....." likewise ineffective.
|
VERIFY.HTM
29684 bytes. by dm
(2003)
|
Typical fake "information update" page used by Phishers to gain credit card and password information
Privacy
World Wide Web
This page differs from a "real" eBay user verification page only in that the ACTION clause of the main form
has been changed to the (fictitious) "www.myphishingsite.com" and calls a PHP file which presumably would process and log
the victim's response and then give the user a "thanks for updating your information" page.
|
Backdooring/Rootkitting
|
TROJANS.TXT
15930 bytes. (2002)
|
The latest Trojan Portlist
Backdoor
|
COMP_TRJ.TXT
34677 bytes. (2000)
|
The Complete Trojans Text
Backdoor
|
DESTRU~1.DOC
36352 bytes. by jockstrap
(2002)
|
How to make a destructive trojan
Backdoor
Local: Sweden
|
TUXKIT.TXT
13827 bytes. (2002)
|
Tuxkit Rootkit Analysis RKT:
Linux
|
ALLABT.TXT
16053 bytes. (2001)
|
All About Trojans
Backdoor
|
ABIIT.TXT
37551 bytes. (2001)
|
A Beginners Intro Into Trojaning
Backdoor
|
HDDTR.DOC
103424 bytes. (2002)
|
PC On Time Bomb Trojan Virus info
Block Diagram
|
ROOTKITS.HTM
28555 bytes. (2001)
|
"Root Kits" and hiding files/directories/processes after a break-in RKT:
|
TROJANHK.DOC
3046912 bytes. (2001)
|
Trojan Hacking
Backdoor
|
0066.HTM
23041 bytes. (2002)
|
Analysis of Litmus Backdoor Trojan
Block Diagram
|
FAKEBO.HTM
5597 bytes. by Groovy Pants Gus
(1999)
|
FakeBO - Stack buffer overflow, execute arbitrary code, etc. BKI:
Advisory
Exploit
Windows
|
BOPROTO.HTM
22165 bytes. (1999)
|
The Back Orifice Protocol! BKI:
|
BLACKIBO.HTM
7174 bytes. by M. DeMaria
(2000)
|
BlackICE Defender 1.2 can fail to block Back Orifice traffic BKI:
Advisory
Windows
|
FIXBO13.TXT
4687 bytes. (2000)
|
How to remove Back Orifice 1.3 from your system BKI:
|
FIXBO20.TXT
4001 bytes. (1999)
|
How to remove Back Orifice 2.0 from your system BKI:
|
FIXBO2K.TXT
4259 bytes. (2000)
|
How to remove Back Orifice 2000 (BO2K) from your system BKI:
|
LMBO.TXT
1847 bytes. (1999)
|
About LmBO, a modified Back Orifice server BKI:
|
SUBSEV-1.HTM
1014 bytes. by A. Griffiths
(2000)
|
SubSeven 2.1a Buffer Overflow BKI:
Advisory
Denial of Service
|
S7GENFAQ.TXT
15320 bytes. |
SubSeven General FAQ BKI:
Frequently Asked Questions
|
S7CLIFAQ.TXT
5607 bytes. |
SubSeven Client FAQ BKI:
Frequently Asked Questions
|
S7SRVFAQ.TXT
5656 bytes. |
SubSeven Server FAQ BKI:
Frequently Asked Questions
|
S7EDSFAQ.TXT
7302 bytes. |
SubSeven EditServer FAQ BKI:
Frequently Asked Questions
|
FIX22.TXT
1818 bytes. (2000)
|
Fixing SubSeven 2.2b1 BKI:
|
FIX21.TXT
4408 bytes. (2000)
|
Fixing SubSeven 2.1 - 2,1 Gold + SubStealth - 2.1.3 MUIE + 2.1 Bonus BKI:
|
FIX20.TXT
1220 bytes. (2000)
|
Fixing SubSeven 2.0 BKI:
|
FIX19.TXT
1469 bytes. (2000)
|
Fixing SubSeven 1.9 - 1.9b BKI:
|
FIX18.TXT
2776 bytes. (2000)
|
Fixing SubSeven 1.8 BKI:
|
FIX17.TXT
1122 bytes. (2000)
|
Fixing SubSeven 1.7 BKI:
|
FIX16.TXT
1363 bytes. (2000)
|
Fixing SubSeven 1.6 BKI:
|
FIX13.TXT
1072 bytes. (2000)
|
Fixing SubSeven 1.3 - 1.4 - 1.5 BKI:
|
FIX10.TXT
1144 bytes. (2000)
|
Fixing SubSeven 1.0 - 1.1 BKI:
|
PORTSTRJ.TXT
15593 bytes. by von Braun Consulting, Simovits Consulting
(2001)
|
Ports used by Trojans (the BEST list!) BKI:
|
TROJLIST.TXT
7444 bytes. (2000)
|
A lengthy list of Trojans/Backdoors/RATs and the ports they open
Backdoor
|
TRJNPORT.TXT
3660 bytes. (2000)
|
Another list of Trojans/Backdoors/RATs and the ports they open
Backdoor
|
BACKDORS.TXT
19623 bytes. by Christopher Klaus
(1997)
|
Backdoors BKI:
|
BO2K_DOX.DOC
207872 bytes. (1999)
|
Back Orifice 2000 Documentation - MS Word format
Backdoor
Windows
|
BO2K.PDF
149429 bytes. (1999)
|
White Paper on Back Orifice 2000
Backdoor
Hacking
|
NAIEMA~1.HTM
2415 bytes. (2000)
|
McAfee dropped NetBus from its scanner!
Backdoor
Hacking
|
TROJAN~1.TXT
22540 bytes. (2000)
|
Information on detecting various trojans
Backdoor
Hacking
|
TROJAN~2.TXT
7870 bytes. (2000)
|
Everything about Trojans and How to use their options
Backdoor
Hacking
|
VAS016.TXT
4336 bytes. (1992)
|
A WORKING Turbo Pascal 6.0 Trojan
Hacking
|
PORTS.TXT
3301 bytes. (1999)
|
A list of the ports used by many backdoors
Backdoor
Hacking
|
VAS074.TXT
4926 bytes. (1992)
|
About the corrupted FAT scrambler trojan
Backdoor
Hacking
|
CIACH047.TXT
11119 bytes. (1997)
|
AOL4FREE COM Trojan Horse Program
Hacking
|
CIACG003.TXT
14898 bytes. (1996)
|
AOLGOLD Trojan
Hacking
|
VAS066.TXT
6940 bytes. |
About Santa's Logic Bomb
Hacking
|
STEROID.TXT
2394 bytes. (1990)
|
About the Macintosh "Steroid" Trojan
Hacking
|
BACKDO~1.TXT
19623 bytes. (1997)
|
Backdoors A discussion of many common backdoors and ways to check for them.
Backdoor
Hacking
|
BO-BPFAQ.TXT
8715 bytes. |
Back Orifice Buttplugs FAQ
Backdoor Acc.
Hacking
Frequently Asked Questions
|
TROJANB.TXT
4283 bytes. |
Beginners Guide to Trojans (no, not condoms)
Hacking
|
CA-9901.TXT
20679 bytes. (1999)
|
CERT Advisory 99-01 Trojan TCP Wrappers Tool
Hacking
|
CA-9902.TXT
20308 bytes. (1999)
|
CERT Advisory 99-02 Trojan Horses
Hacking
|
ANSIBOM2.TXT
14567 bytes. |
Creating ANSI bombs
Hacking
MS-DOS
|
ANTI-BO.TXT
7157 bytes. |
Detecting and Removing Back Orifice from your system
Hacking
|
BO-TUT.TXT
6478 bytes. (1999)
|
Harmless Back Orifice Tutorial
Hacking
|
AVINDU~1.TXT
12819 bytes. (1999)
|
How the A/V Industry works - Renderman's efforts to get an explanation why BO2K is "Bad" while PCAnywhere is "Good"
Hacking
|
VAS035.TXT
7064 bytes. (1992)
|
How to make ANSI bombs
Hacking
|
CIACA6.TXT
3840 bytes. (1989)
|
Information about a trojan horse in Norton Utilities for IBM PCs and clones
Hacking
|
CIACA10.TXT
2812 bytes. (1989)
|
Information about the PC Cyborg (AIDS) Trojan Horse
Hacking
|
BOINFO.TXT
6063 bytes. (1998)
|
Information about the cDc BackOrifice including how to detect if it is installed, how to remove it, and how to
Backdoor
break the weak encryption that it uses.
|
CIACI085.TXT
12175 bytes. (1998)
|
MSIE Upgrade Trojan Horse Program
Hacking
|
SCAN78TJ.TXT
6146 bytes. (1991)
|
McAfee Scan 78 is a trojan!
Hacking
|
CYBORG.TXT
3378 bytes. (1989)
|
PC Cyborg Trojan
Hacking
|
12TRICKS.TXT
13287 bytes. (1990)
|
The "12 Tricks" Trojan
Hacking
|
CIAC-A1.TXT
4786 bytes. (1989)
|
The Telnet Trojan
Hacking
|
NUKENA~1.TXT
351 bytes. |
Turn Nukenabber into protection against Back Orifice and NetBus
Backdoor
Hacking
|
ANTI-N~1.TXT
695 bytes. |
What to do if you accidentally click on the Netbus patch.
Backdoor
Hacking
|
BODEFEAT.TXT
4570 bytes. (1999)
|
Definitively defeat Back Orifice
Backdoor
Hacking
|
DIFFER~1.TXT
4678 bytes. |
About different kinds of Trojans
Backdoor
Hacking
|
UNIXTR~1.TXT
11610 bytes. |
Unix Trojan Horses
Backdoor
Hacking
Unix
|
SHSTROJ.TXT
3892 bytes. by indieboy
(2002)
|
The possibility of hiding trojans in Shell Scraps - files with extensions that Windowz tries very hard to hide HAK
Windows
|
CIACL077.TXT
14467 bytes. by CIAC
(2001)
|
CIAC L-077 - Glacier Backdoor
Advisory
Block Diagram
|
TROJPGPD.TXT
3202 bytes. by Wyze1
(1999)
|
Creating Trojan PGPDisks
Backdoor
|
TJWINGAT.TXT
2838 bytes. by Wyzewun
(2000)
|
Fun with "Trojan" Wingates
Backdoor
Windows
Proxy
|
