.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / groups / s0ftpj  /

Disclaimers:

s0ftpr0ject 99 is a security team founded in the summer of 1997. Its research team is fully dedicated to study, describe and resolve security problems related to the network and digital worlds. Tools and documentation available on this site are meant to be used only in order to improve your security and privacy, and not as a way to harm anybody. Any use of the available material that goes against the laws of any state is not condoned by s0ftpr0ject 99, which also cannot be held responsible for any misuse. s0ftpr0ject 99 absolutely dissociates itself from any cracking/hacking/phreaking group that may claim to be in any way collaborating with us. If YOU are going against the law, WE will never have any relation with you. Any remark should be addressed to staff@s0ftpj.org, and abuses reported immediately, with all the necessary informations, to abuse@s0ftpj.org. Also, due to recent facts happened in our country, we point out that we strictly dissociate from any terroristic or eversive groups and their destabilizing and highly deprecable actions. If you, the visitor, are somehow offended by the contents of the site, we ask you to leave this site immediately, and don't go on accessing, reading or downloading anything here. On the other hand, by accessing the main page, you agree with this disclaimer and must consider yourself responsible for any use you make of the informations contained inside. Also, who is currently hosting our page and our mirrors cannot be legally sued for its content.

Page 1 of 4
<< 1 2 3 4 >> Files 1 - 25 of 95
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: CVE-2007-3896.txt
Description:
 ShellExecuteFisaco - This is a temporary, third-party patch to help mitigate the URL handling issue discovered in Windows XP and Windows Server 2003.
Author:KJK
Homepage:http://spacebunny.xepher.net/hack/shellexecutefiasco/
File Size:3824
Related CVE(s):CVE-2007-3896
Last Modified:Oct 15 18:50:54 2007
MD5 Checksum:f1e965dcecdba44322c94fabd9b9ac62

 ///  File Name: sniffjoke-0.2.tar.gz
Description:
 SniffJoke implements sniffer/IDS evasion techniques. SniffJoke runs on a network connected box by selectively applying evasion techniques to sessions involving it. Evasion application is governed by user rules and implemented with a netfilter/ulogd module.
Author:vecna
Homepage:http://www.s0ftpj.org/
File Size:219148
Last Modified:May 23 00:58:04 2007
MD5 Checksum:dbc8a3ad5fe1a0c2b56e1d82ffca25bc

 ///  File Name: sniffjoke-0.1.tar.gz
Description:
 SniffJoke implements sniffer/IDS evasion techniques. SniffJoke runs on a network connected box by selectively applying evasion techniques to sessions involving it. Evasion application is governed by user rules and implemented with a netfilter/ulogd module.
Author:vecna
Homepage:http://www.s0ftpj.org/
File Size:17426
Last Modified:Mar 5 20:15:17 2007
MD5 Checksum:3197b8ba5c32b72df0aaa5632ee21e2c

 ///  File Name: iam-1.0.2.1.zip
Description:
 Sandboxing tool for Windows.
Author:KJK
Homepage:http://www.s0ftpj.org/
File Size:197076
Last Modified:Mar 5 20:13:10 2007
MD5 Checksum:fd23bff06be3802420033d4bfe13a45e

 ///  File Name: apmislay-0.0.1.tar.gz
Description:
 Apmislay (avoid+privacy+mislay) is a library to make anonymous connections without performance loss. It implements a simple technique based on IP spoofing and suits well for file sharing systems or anonymous transfers of large amount of data.
Author:vecna
Homepage:http://www.s0ftpj.org/
File Size:11575
Last Modified:Mar 5 20:11:45 2007
MD5 Checksum:47ff6423957a002a9659007df4312623

 ///  File Name: bigboo.tar.gz
Description:
 BigBoo is a YABASST, Yet Another Block And Superblock Subversion Tool. It swallows, encrypts and hides your files in a ext2/ext3 or swap partition.
Author:FuSyS
Homepage:http://www.s0ftpj.org/
File Size:29190
Last Modified:Mar 5 20:10:38 2007
MD5 Checksum:92a311d976af3b5d128519c2bf912806

 ///  File Name: SABBIAex-0.0.1.tar.gz
Description:
 SABBIA protocol anonymizes low latency connections by making a continuous and constant padding over the net. This is an example of implementation on a trusted core.
Author:vecna
Homepage:http://www.s0ftpj.org/
File Size:5929
Last Modified:Mar 5 20:09:47 2007
MD5 Checksum:f8f1c2c8dc92c5ff3b9ebe199ddb235f

 ///  File Name: innova-0.0.1.tar.gz
Description:
 Innova is a framework that permits to manipulate network sessions starting at layer 3 and is transparent to the application. It runs entirely in userspace on Linux and supports plugins.
Author:vecna
Homepage:http://www.s0ftpj.org/projects/innova/index.htm
File Size:43375
Last Modified:Mar 5 20:08:58 2007
MD5 Checksum:be2a3e42f36511feabe5bc650d4418ce

 ///  File Name: blastersteg.tar.gz
Description:
 This code shows how to send hidden data steganographed into a simulation of common (worm) traffic.
Author:vecna
Homepage:http://www.s0ftpj.org/
File Size:4419
Last Modified:Mar 5 20:07:38 2007
MD5 Checksum:556f37cbd09cef7aaa5b1ac44a48cf4e

 ///  File Name: sud-1.3.tar.gz
Description:
 sud (superuser daemon) permits a user to switch to root privileges and to use a suid program in a nosuid environment. It is based on a client/server model and on the ability to pass file descriptors between processes. sud permits you to choose your authentication method, and your effective credentials will be checked by using a Unix domain socket.
Author:mm_
Homepage:http://www.s0ftpj.org/projects/sud/index.htm
File Size:117542
Last Modified:Mar 5 20:06:56 2007
MD5 Checksum:f44ca2810ff72b84ad8a10cd62752098

 ///  File Name: gtpa-0.12c.tar.gz
Description:
 Generic time path analysis via ttysnoop-0.12c patching.
Author:vecna
Homepage:http://www.s0ftpj.org/
File Size:15474
Last Modified:Mar 5 20:06:07 2007
MD5 Checksum:a2ebde4a8972189d7958d50c990d873f

 ///  File Name: kstat24_v1.1-2.tgz
Description:
 Kernel Security Therapy Anti-Trolls (KSTAT) is a very powerful security tool to detect many kinds of rogue kernel rootkits. It analyzes the kernel through /dev/kmem and detects modified syscalls as well as various other problems. This version runs on 2.4.x only, and can assist in finding and removing trojan LKMs. It supports network socket dumps, sys_call fingerprinting, stealth module scanning, and more.
Author:FuSyS
Homepage:http://www.s0ftpj.org/en/site.html
File Size:24472
Last Modified:Nov 30 22:53:12 2003
MD5 Checksum:96954a3d4b4dd623480b5ed05a7b7523

 ///  File Name: kstat24.tgz
Description:
 Kstat is a powerful tool for Linux v2.4.x which displays information taken directly from kernel structures taken from /dev/kmem. This is especially useful when we can't trust output from usual sources and applications, for example after an unauthorized access to our systems. Effective if something like ps, ifconfig, lsmod, or system calls are patched.
Author:Fusys
Homepage:http://www.s0ftpj.org
Changes:This is a major update of kstat, since its release for the 2.2.x kernels. This runs on 2.4.x only, and can better assist in finding and removing trojan LKMs. It sports network socket dumps, sys_call fingerprinting, stealth modules scanning and more.
File Size:20741
Last Modified:Jun 5 12:34:42 2002
MD5 Checksum:01bdbde57c74a4e9a0c01c7eaf5b9794

 ///  File Name: tcc.tar.gz
Description:
 TCP Congestion paper and proof of concept code - A vulnerability in the TCP protocol affects several OS's, allowing remote denial of service attacks. Includes a netfilter module which implements a new method of blocking the attack. More information on TCP congestion vulnerabilities available here
Author:Vecna
Homepage:http://www.s0ftpj.org
File Size:16191
Last Modified:Jun 5 00:27:07 2002
MD5 Checksum:2a15af964e5f1cb85f3ee252a0a64826

 ///  File Name: umpf.tar.gz
Description:
 Umpf is a system for managing encrypted files without using encrypted filesystems such as cfs/tcfs loop-aes/kerneli. Does not require root to run, is lightweight, and transparent.
Author:Vecna
Homepage:http://www.s0ftpj.org
File Size:20145
Last Modified:Jun 3 01:28:45 2002
MD5 Checksum:13c17a159341c5fc25c40199d9d78af5

 ///  File Name: spapem.tar.gz
Description:
 The Spapem project aims to how how to elude securelevel under *BSD systems by hiding the fact that the system has been rebooted. Includes code to restore the PID, a LKM to change the uptime, a generic rootkit example, a module to remove startup messages, and instructions for patching init(8).
Author:Vecna
Homepage:http://www.s0ftpj.org
File Size:9833
Last Modified:Apr 16 22:56:25 2001
MD5 Checksum:ff292eb12a32ff7f232049be335cb144

 ///  File Name: kstat.tgz
Description:
 Kstat is a tool for Linux which is designed to find an attacker in your system by a direct analysis of the kernel through /dev/kmem and bypassing the hiding techniques of the intruder (kernel static recompilation/use of LKMs). Kstat can find the syscalls which were modified by a LKM, list the linked LKMs, query one or all the network interfaces of the system, list all the processes and much more.
Author:Fusys
Homepage:http://www.s0ftpj.org
File Size:14523
Last Modified:Apr 16 22:38:16 2001
MD5 Checksum:f6314c81beecea2df666f5c49f166c38

 ///  File Name: ksec.tgz
Description:
 Ksec is a tool useful for finding an attacker in your BSD system by a direct analysis of the kernel through /dev/kmem, bypassing the hiding techniques of the intruder (kernel static recompilation/use of LKMs). KSec can find the modified syscalls from userspace, detect the promisc interfaces, find the modifications applied to a protocol and much more. Tested on FreeBSD and OpenBSD. For more information see Detecting Loadable Kernel Modules (LKM) by Toby Miller.
Author:Pigpen
Homepage:http://www.s0ftpj.org
File Size:18238
Last Modified:Apr 16 22:32:16 2001
MD5 Checksum:d084d77610110ba6fa0784418443629b

 ///  File Name: ucp.c
Description:
 SMS Spoofing Tool - Spoof your SMS by using this code with smsclient.
Author:Jack McKrak
Homepage:http://www.s0ftpj.org
File Size:8394
Last Modified:Jan 4 19:42:03 2001
MD5 Checksum:4893e2044a30ac7a59927d15e527537e

 ///  File Name: seekh_01a3.zip
Description:
 L.L.H.M. - Low Level Header Manipulation is a tool hides pieces of information in your files. Works on Win32.
Author:Valvo.
Homepage:http://www.s0ftpj.org
File Size:18152
Last Modified:Jan 4 19:40:46 2001
MD5 Checksum:ac5284de6f39df9f50c9dda36949630a

 ///  File Name: thclinbd.tar.gz
Description:
 THC Backdoor for Linux - This is a simple but useful backdoor for Linux based on a FreeBSD lkm by pragmatic/THC.
Author:bELFaghor
Homepage:http://www.s0ftpj.org
File Size:997
Last Modified:Jan 4 19:39:14 2001
MD5 Checksum:7855b79979217cd5813788e01a0e1b83

 ///  File Name: thcobsdbd.tar.gz
Description:
 THC Backdoor ported to OpenBSD - This is a simple but useful backdoor for OpenBSD based on a FreeBSD lkm by pragmatic/THC.
Author:Pigpen
Homepage:http://www.s0ftpj.org
File Size:1582
Last Modified:Jan 4 19:37:46 2001
MD5 Checksum:11ada1cc8831dc0a793e5b9c3a2c9b78

 ///  File Name: obsd4-sock.tar.gz
Description:
 SRaw for OpenBSD is a kld which makes all users able to open raw sockets. Supported protocols are IPPROTO_RAW, IPPROTO_ICMP, IPPROTO_IPIP, IPPROTO_IPV4, IPPROTO_IGMP.
Author:Pigpen
Homepage:http://www.s0ftpj.org
File Size:2464
Last Modified:Jan 4 18:17:15 2001
MD5 Checksum:f5b4d4b2eec79664d724e25cee06d8b2

 ///  File Name: fbsd4-sock.tar.gz
Description:
 SRaw is a kld for FreeBSD which disables EPERM in socket() and permits to allocate inpcb even if the socket is raw and users haven't root permissions bypassing suser() in pru_attach() functions.
Author:Pigpen
Homepage:http://www.s0ftpj.org
File Size:1606
Last Modified:Jan 4 18:15:04 2001
MD5 Checksum:eb7720cc8aef3dc091d05c01307c65d8

 ///  File Name: piove.tar.gz
Description:
 This FreeBSD module shows how to intercept getpass(3) function and print anything that is typed without terminal echo.
Author:Vecna
Homepage:http://www.s0ftpj.org
File Size:1145
Last Modified:Jan 4 18:12:55 2001
MD5 Checksum:545ecc2024316a312ab036592b8e802a
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice