13 projects tagged "hacking"
Updated 12 Jan 2013
ARP Neighbor Cache Fingerprinter
| Pop | 21.91 |
|---|---|
| Vit | 11.49 |
ARP Neighbor Cache Fingerprinter is a tool that provides a mechanism for remote operating system detection by extrapolating characteristics of the target system's underlying neighbor cache and general ARP behavior. Given the non-existence of any standard specification for how the neighbor cache should behave, several differences in network stack implementations can be used for unique identification. The main disadvantage of this tool versus traditional fingerprinting is that because it's based on a Layer 2 protocol instead of a Layer 3 protocol, the target machine that is being tested must reside on the same Ethernet broadcast domain (usually the same physical network).
Updated 08 Oct 2011
Ani-Shell
| Pop | 44.94 |
|---|---|
| Vit | 1.00 |
Ani-Shell is a simple PHP shell with some unique features like Mass Mailer, a simple Web server Fuzzer, DDoser, Back Connect, Bind Shell, etc. It has been written with some coding standards in mind for better editing and customization.
Updated 08 Feb 2011
Bluepot
| Pop | 36.37 |
|---|---|
| Vit | 1.00 |
Bluepot is a Bluetooth honeypot. It is designed to accept and store any malware sent to it and to interact with common Bluetooth attacks such as “BlueBugging” and “BlueSnarfing”. Bluetooth connectivity is provided via hardware Bluetooth dongles. The system also allows monitoring of attacks via a graphical user interface that provides graphs, lists, a dashboard, and further detailed analysis from log files. The system is also highly configurable through said interface.
Updated 21 Feb 2010
PRADS
| Pop | 48.89 |
|---|---|
| Vit | 34.46 |
PRADS is a "Passive Real-time Asset Detection System". It passively listens to network traffic and gathers information on hosts and services it sees. This information can be used to map your network, letting you know what services and hosts are alive and used. It can also be used together with your favorite IDS/IPS setup for "event to host/service" correlation. It can help you make sure that your inventory database is up to date. PRADS commes in two versions. One written in Perl, and one written in C. Some features might only be found in one of the versions.
Updated 02 Apr 2013
RubyDNS
| Pop | 38.63 |
|---|---|
| Vit | 4.69 |
RubyDNS is a high-performance DNS server that can be easily integrated into other projects or used as a stand-alone daemon (via RExec). By default, it uses rule-based pattern matching. Results can be hard-coded, computed, fetched from a remote DNS server, or fetched from a local cache, depending on requirements. In addition, RubyDNS includes a high-performance asynchronous DNS resolver built on top of EventMachine. This module can be used by itself in client applications without using the full RubyDNS server stack.
Updated 05 Mar 2012
StopHack
| Pop | 37.75 |
|---|---|
| Vit | 21.19 |
StopHack is a simple to use and easy to install intrusion prevention system. It is fully adaptable and easily customized to your environment. It is built on top of proven bandwidth arbitration technology so the traffic passing through it won't be slowed down. Every packet is analyzed with regular expression-based behavior anomaly detection, and hackers are blocked immediately. It prevents reflected cross-site scripting, SQL injection, directory traversal, reflected URL redirects, login brute forcing, remote shell execution, and more.
Updated 23 Dec 2012
Username-Anarchy
| Pop | 19.47 |
|---|---|
| Vit | 12.36 |
Username-Anarchy is a commandline tool for the generation of usernames based on the users' real names. This is useful for user account/password brute force guessing and username enumeration when usernames are based on the users’ names. By attempting a few weak passwords across a large set of user accounts, user account lockout thresholds can be avoided. Common aliases (or self-chosen usernames) from forums are also included. Features include a plugin architecture, format string-style username formats, and substitutions. When only a first initial and lastname is known (LinkedIn lists users like this), it will attempt all possible first names, common first and last names from various countries (from Familypedia and PublicProfiler), and an exhaustive list of first and lastnames from Facebook. This also includes usernames scraped from forums, ordered by popularity.
Updated 05 Apr 2011
WhatWeb
| Pop | 115.37 |
|---|---|
| Vit | 3.23 |
WhatWeb identifies Websites. Its goal is to answer the question, “What is that Website?”. WhatWeb recognizes Web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, Web servers, and embedded devices. WhatWeb has over 900 plugins, each to recognize something different. It also identifies version numbers, email addresses, account IDs, Web framework modules, SQL errors, and more. It can be stealthy and fast, or thorough but slow. It supports an aggression level to control the trade off between speed and reliability.
Updated 16 Jan 2011
ipredirectd
| Pop | 23.19 |
|---|---|
| Vit | 30.44 |
ipredirectd has functionality similar to netcat but with some extra features. Multiple clients and full logging of network traffic are supported. It can also manipulate incoming and outgoing text traffic. Manipulation is based on pattern files that support regular expressions. This feature is probably most useful with HTTP. The software is smart enough not to apply regular expressions on non-HTML data by reading the content-type header. One possible usage is redistribution of pre-authenticated Web pages in foreign domains by replicating authentication and session cookies.
Updated 21 Jul 2010
irccgi
| Pop | 28.32 |
|---|---|
| Vit | 35.05 |
irccgi is a very simple IRC client that supports input from stdin and which converts IRC server messages into fake HTTP requests for its built-in CGI server.
