Specifications
SAFER – Vol. 3, Issue 6 47 © 2000 The Relay Group
UNDERGROUND TOOLS
Here are the new tools that hackers/crackers will soon use against your systems. We do not
recommend that you use such tools against any resources without prior authorization. We only list new
tools published since the last issue of SAFER.
SCANNERS
nmap-2.54BETA1.tar.gz
New, very cool, option –sO has been added (scan for protocols).
magdalena.pl
Small utility written in perl that will scan a list of hostnames for a certain CGI.
twwwscan.exe
Windows based WWW vulnerability scanner.
sara-3.0.5.tar.gz
Security audit tool based on SATAN.
ucgi240.c
CGI vulnerability scanner.
EXPLOITS
sniffit.c
Exploit for Sniffit '-L mail' Remote Buffer Overflow Vulnerability
5niffi7.c
Exploit for Sniffit '-L mail' Remote Buffer Overflow Vulnerability
RFParalyze.c
Exploit for Microsoft Windows 9x NetBIOS NULL Name Vulnerability
listservbo.c
Exploit for L-Soft Listserv 1.8 Web Archives Buffer Overflow Vulnerability
pam_console.c
Exploit for Multiple Linux Vendor pam_console Vulnerability
heimlich.zip
Exploit for Aladdin Knowledge Systems eToken PIN Extraction Vulnerability
ADMDNews.zip
Exploit for Netwin DNews News Server Buffer Overflow Vulnerability
ipivot.tar.gz
Exploit for NetStructure 7110 Undocumented Password Vulnerability
gnapster-exp.pl
Exploit for Gnapster and Knapster File Access Vulnerability
bugzilla-exp.pl
Exploit for Bugzilla 2.8 Unchecked Existing Bug Report Vulnerability
netprex-sparc.c
Exploit for Solaris netpr Buffer Overflow Vulnerability
netprex-x86.c
Exploit for Solaris netpr Buffer Overflow Vulnerability
dnslong.c
Exploit for AntiSniff DNS Overflow Vulnerability