Section: .. / cisco /
| /// File Name: |
pla-1.01.tar.gz |
Description:
|
PIX Logging Architecture is a project allowing for correlation of Cisco PIX Firewall traffic, IDS, and informational logs. It parses Cisco PIX logs from syslog files, then pushes the parsed data to a database. It contains a Web-based front end for displaying and searching the Cisco PIX Firewall logs.
| | Author: | Kris Philipsen | | Homepage: | http://pixla.sourceforge.net/ | | File Size: | 24697 | | Last Modified: | Jul 1 19:58:10 2005 |
| MD5 Checksum: | 05544e760c175441ffa10714dfbd8f5a |
|
| /// File Name: |
cisco-torch-0.4b.tar.bz2 |
Description:
|
Cisco Torch mass scanning, fingerprinting, and exploitation tool was written while working on the next edition of the "Hacking Exposed Cisco Networks", since the tools availalbe on the market could not meet our needs. The main feature that makes Cisco-torch different from similar tools is the extensive use of forking to launch multiple scanning processes on the background for maximum scanning efficiency. Also, it uses several methods of application layer fingerprinting simultaneously, if needed.
| | Author: | Arhont Team | | Homepage: | http://www.arhont.com/ | | File Size: | 25340 | | Last Modified: | Mar 24 02:47:57 2005 |
| MD5 Checksum: | 18abd02ebeacf6514b752c54813e6a0a |
|
| /// File Name: |
cisco-torch-0.3b.tar.bz2 |
Description:
|
Cisco Torch mass scanning, fingerprinting, and exploitation tool.
| | Author: | Arhont Team | | Homepage: | http://www.arhont.com/ | | Changes: | Significant code optimizations and improvements, CIDR notations now taken in as input properly, more telnet fingerprints added. | | File Size: | 19386 | | Last Modified: | Feb 25 18:12:50 2005 |
| MD5 Checksum: | 9260fe0f901cf84ce934d0dee8e413d0 |
|
| /// File Name: |
brute_cisco.exp |
Description:
|
Brute force utility for Cisco password authentication.
| | Author: | Mr. Parinya Jutasen | | File Size: | 3493 | | Last Modified: | Feb 25 03:05:14 2005 |
| MD5 Checksum: | eeb80f005ab5a1b5e8a116f897802833 |
|
| /// File Name: |
ocs.c |
Description:
|
Compact mass scanner for Cisco routers with default telnet/enable passwords.
| | Author: | OverIP | | Homepage: | http://www.hacklab.tk | | File Size: | 6829 | | Last Modified: | Jan 30 17:55:14 2005 |
| MD5 Checksum: | 5ee92e30989dae45e18bf56d7d61ffc9 |
|
| /// File Name: |
cisco-torch.tar.bz2 |
Description:
|
Cisco Torch mass scanning, fingerprinting, and exploitation tool. First alpha release.
| | Author: | Arhont Team | | Homepage: | http://www.arhont.com/ | | File Size: | 15853 | | Last Modified: | Jan 26 23:43:21 2005 |
| MD5 Checksum: | 10de93d7f6267f3ae9fc39a9a5f28ebc |
|
| /// File Name: |
ciscos.c |
Description:
|
Ciscos.c v1.3 scans class A, B, and C networks for cisco routers which have telnet open and have not changed the default password from cisco.
| | Author: | Okiwan | | File Size: | 5512 | | Last Modified: | Dec 31 15:14:22 2004 |
| MD5 Checksum: | c8d0bd0b1965c7973a76097d542488d6 |
|
| /// File Name: |
glFlow-0.1.1.tar.gz |
Description:
|
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links. The detection algorithm is based on realtime NetFlow traffic aggregation and analysis. The code is portable across platforms, it should work on every system with working md4/md5 and pcap implementations, with very little modifications.
| | Author: | Vlad GALU | | Homepage: | http://night.rdslink.ro/dudu/glflow/ | | Changes: | The DSCP is printed out when there's an event. The IPs are printed in dotted notation rather than as unsigned long integers. | | File Size: | 108654 | | Last Modified: | Dec 11 17:09:19 2004 |
| MD5 Checksum: | 0294963a9fdda460d06a9980f5ab8e8b |
|
| /// File Name: |
Cisco6509_Reverse.tar.bz2 |
Description:
|
Simple C tool and binutils patch with step by step description (HowTo_Reverse_engineering_Cisco_image.html) how to convert cisco image to MIPSIV file for reverse engineering. Allows you to dump and disassemble the text section, tested on a Cisco Catalyst 6509.
| | Author: | Milos Koprla | | File Size: | 5617 | | Last Modified: | Nov 21 17:31:06 2004 |
| MD5 Checksum: | 69b035d8d5ac135be7f12daf7e8c93d6 |
|
| /// File Name: |
glFlow-0.0.4.tar.gz |
Description:
|
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links. The detection algorithm is based on realtime NetFlow traffic aggregation and analysis. The code is portable across platforms, it should work on every system with working md4/md5 and pcap implementations, with very little modifications.
| | Author: | Vlad GALU | | Homepage: | http://night.rdslink.ro/dudu/glflow/ | | Changes: | Fixed building with GCC 3.4. | | File Size: | 16874 | | Last Modified: | Aug 13 10:20:45 2004 |
| MD5 Checksum: | 03f438f432d325440b17cb2dae94060c |
|
| /// File Name: |
glFlow-0.0.3.tar.gz |
Description:
|
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links. The detection algorithm is based on realtime NetFlow traffic aggregation and analysis. The code is portable across platforms, it should work on every system with working md4/md5 and pcap implementations, with very little modifications.
| | Author: | Vlad GALU | | Homepage: | http://night.rdslink.ro/dudu/glflow/ | | Changes: | Added support for fragmented flood detection, using a little hack. | | File Size: | 16822 | | Last Modified: | Jul 17 17:49:00 2004 |
| MD5 Checksum: | 3e0afb9c1dabb7747995050c3dff3e07 |
|
| /// File Name: |
glFlow-0.0.2.tar.gz |
Description:
|
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links. The detection algorithm is based on realtime NetFlow traffic aggregation and analysis. The code is portable across platforms, it should work on every system with working md4/md5 and pcap implementations, with very little modifications.
| | Author: | Vlad GALU | | Homepage: | http://night.rdslink.ro/dudu/glflow/ | | File Size: | 16520 | | Last Modified: | Jul 9 13:28:00 2004 |
| MD5 Checksum: | e534725d6b84adfcfa930cecdcb82289 |
|
| /// File Name: |
ioscommands.shtml |
Description:
|
Simple command reference chart for Cisco IOS.
| | File Size: | 47841 | | Last Modified: | Jun 10 12:30:47 2004 |
| MD5 Checksum: | 62461d73352f0e55dcf35f5295e2405d |
|
| /// File Name: |
cge-13.tar.gz |
Description:
|
Cisco Global Exploiter is a tool that demonstrates exploitation of the Cisco 677/678 Telnet Buffer Overflow Vulnerability, IOS Router Denial of Service Vulnerability, IOS HTTP Auth Vulnerability and Cisco IOS HTTP Configuration Arbitrary Administrative Access Vulnerability, Cisco Catalyst SSH Protocol Mismatch Denial of Service Vulnerability, Cisco 675 Web Administration Denial of Service Vulnerability, Cisco Catalyst 3500 XL Remote Arbitrary Command Vulnerability, Cisco IOS Software HTTP Request Denial of Service Vulnerability, CiscoSecure ACS for Windows NT Server Denial of Service Vulnerability, Cisco Catalyst Memory Leak Vulnerability, Cisco CatOS CiscoView HTTP Server Buffer Overflow Vulnerability, %u Encoding IDS Bypass Vulnerability (UTF), and Cisco IOS HTTP Denial of Service Vulnerability.
| | Author: | Nemesis,E4m | | Homepage: | http://www.blackangels.it | | File Size: | 9699 | | Last Modified: | May 1 11:59:03 2004 |
| MD5 Checksum: | a236f742c3976c9864d84d55eb11ea7e |
|
| /// File Name: |
ccsat.txt |
Description:
|
CCSAT (Cisco Configuration Security Auditing Tool) is a script to allow automated audit of configuration security of large numbers of Cisco routers and switches. The tool is based upon industry best practices including Cisco, NSA and SANS security guides and recommendations. It is flexible and can report details down to individual device interfaces, lines, ACL's, AS's, etc.
| | Author: | Bill Zeng | | Homepage: | http://hotunix.com/tools/ | | File Size: | 30663 | | Last Modified: | Feb 9 23:58:37 2004 |
| MD5 Checksum: | a6488a98b706e09c0e4077bb4e3d0e40 |
|
| /// File Name: |
iosniff.tgz |
Description:
|
Cisco Systems IOS 11.x UDP echo memory leak remote sniffer. The UDP echo service (UDP port 7) has to be enabled on the device. The bug will cause the Cisco router to send about 20 kilobytes of data from the interface buffer pools containing packets in the send/recv/forward queues. This tool will identify IOS memory blocks, find the router specific offset for packets in the block and decode the packet to the screen. Note that this is not a full dump of the traffic through the remote router but rather a subset of received data. Features include a packet checksum cache to prevent repeated output of the same packet, auto identification of packets and buffer offsets, and IPv4 decoding.
| | Author: | FX | | Homepage: | http://www.phenoelit.de | | File Size: | 14594 | | Last Modified: | Aug 10 16:35:45 2003 |
| MD5 Checksum: | ad960f073fda285b82dea6d8225ec6f8 |
|
| /// File Name: |
simple.pl |
Description:
|
Simple brute forcing utility to audit Cisco network devices.
| | Author: | Fugi | | File Size: | 3494 | | Last Modified: | Jul 22 18:18:29 2003 |
| MD5 Checksum: | 08a3fb3f466f8cfe500251aab01abe92 |
|
| /// File Name: |
anwrap.pl |
Description:
|
anwrap is a wrapper for ancontrol that serves as a dictionary attack tool against LEAP enabled Cisco Wireless Networks. It traverses a user list and password list attempting authentication and logging the results to a file.
| | Author: | Brian Barto,Ron Sweeney | | File Size: | 2200 | | Last Modified: | Nov 24 22:29:41 2002 |
| MD5 Checksum: | 93482aca62c5745ec9cf65ad1c4c462a |
|
| /// File Name: |
The_Trivial_Cisco_IP_Phones_Comprom..> |
Description:
|
The Cisco SIP-based IP Phone 7960 contains severe vulnerabilities which allow complete control of a user's credentials; total subversion of a user's settings for the IP Telephony network, and the ability to subvert the entire IP Telephony environment. Malicious access to a user's credentials enables "Call Hijacking", "Registration Hijacking", "Call Tracking", and other voice related attacks.
| | Author: | Ofir Arkin | | Homepage: | http://www.sys-security.com | | File Size: | 214344 | | Last Modified: | Sep 21 04:30:10 2002 |
| MD5 Checksum: | a930349ff7419447cdae5e60a6e27c99 |
|
| /// File Name: |
UltimaRatioVegas.c |
Description:
|
Phenoelit Ultima Ratio - a Cisco IOS exploitation of a heap overflow and using actual shell code to upload a new config; all in one UDP packet. Exploits an issue in the 11.x IOS TFTP server. Works against Cisco 1600 and 1000 series routers, but is designed as PoC.
| | Author: | FX | | Homepage: | | | File Size: | 20909 | | Last Modified: | Aug 18 16:02:33 2002 |
| MD5 Checksum: | c89c9794e4f50e92e03e8170a6cdb8ee |
|
| /// File Name: |
cisco677.pl |
Description:
|
Cisco 677/678 Telnet Overflow denial of service perl exploit.
| | Author: | DNV | | Homepage: | http://mail.dhbit.ca | | File Size: | 2143 | | Last Modified: | May 5 01:32:17 2002 |
| MD5 Checksum: | 71acdbfebdc481e031687d06bbb810e7 |
|
| /// File Name: |
tomas.zip |
Description:
|
Too Many Secrets v0.7beta is a commandline tool to crack the enable secret passwords on Cisco routers. You need the md5 password hash from the config to run this tool. It contents dictionary and brute force attacks and a nice feature to combine brute forcing with a partial known password string.
| | Author: | Michael Thumann | | Homepage: | http://www.ernw.de | | File Size: | 110960 | | Last Modified: | May 5 01:11:47 2002 |
| MD5 Checksum: | 57c254e53082db7dcda8e97ae18e0e02 |
|
| /// File Name: |
ios-w3-vul.c |
Description:
|
Cisco IOS HTTP Server Vulnerability Scanner - This code scans a Cisco router/switch for vulnerability, and as an option fetching the configuration, without any authentication as described here. Cisco bug ID CSCdt93862. Tested on Linux and OpenBSD.
| | Author: | Bashis | | File Size: | 4987 | | Last Modified: | Nov 5 01:18:25 2001 |
| MD5 Checksum: | 876d41412190e66e4a720813673d4201 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
