Crypto-gram for March 15, 2001. In this issue: The Security Patch Treadmill, Harvard's "Uncrackable" Crypto, TCP/IP Initial Sequence Number Flaw, The Doghouse: iBallot.com, The "Death" of IDS?, and 802.11 Security.
15d5a54d2bf20c20aaa2f201d2cd3da75827f22c25859732288b038f6c69f784OpenBSD 2.7/2.8 patch which causes the timestamp to start at 0 for each connection, confusing nmap's remote uptime guess.
9f8d780d338bfcf9705e50d5403172b5cecfa21ac94b2d592238d13110f33a83ICQr Information v1.3b reads out ICQ Database (DAT) files including personal data such as passwords.
91d83cd9ab4c8edade7b3a57e3a28aab4eafb03200097a7b8bab5bffec6eded8This guide intends to teach the basics of buffer overflow to the average C programmer without the need for complex knowledge of assembly. Written with FreeBSD 4.2-Release in mind, but written for x86 *nix.
cb58a5e28f825f34f22a59c92b55d25701b5d23ebf652a924fb49ea2eaa8a82btcpspy is a linux administrator's tool that logs information about incoming and outgoing TCP/IP connections: local address, remote address and, probably the most useful feature, the user name. The current version allows you to include and exclude certain users from logging - this may be useful if you suspect one of the users on your system is up to no good but do not want to violate the privacy of the other users.
c7f4e6320da70c87700b46fd93d309f30f3422d7a7a862c35e8e1fcfc277b5b2Zorp is a new-generation modular proxy firewall suite to fine tune proxy decisions with its built in script language, fully analyze complex protocols (like SSH with several forwarded TCP connections), and utilize out of band authentication techniques (unlike common practices where proxy authentication had to be hacked into the protocol).
e2254f775099eb55ab808331c393b0eea7ab526d7ebdc902e096457995ce54e3ViperDB is a file checker. It is meant to be run from cron on a regular basis in order to monitor strange activity on a system. It supports checking of size, mtime, privileges, UID/GID, added/deleted files, and (as of 0.9.3) MD5 checksums. Data isn't stored in a single archive as in tripwire, but is split among all the monitored directories. This ViperDB is in fact a fork of the original, as the original authors seem unreachable.
f729531a492d04be06ca697599161e6844352023230474180464d8d06a3c189fSniffer is a packet sniffer with a ncurses user interface. Shows network statistics, active TCP connections, UDP and ICMP packets. Features the ability to view and log the 48bit arp protocol. Multithreaded so that the user interface does not interfere with any of the packet capturing methods. View and log the following user space protocols FTP, POP3, HTTP, and more.
bd0fa0c14919b2b589b7677ef4e3e8700cc2b7010cbe8e042769c1c37e53960d
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed