Please click our sponsor
UNIX Network Scanning Utilities Section  
7thportscan.zip
7th Sphere Portscan.
AsmodRelease_1.04.zi..>
Sorry, a description is unavailable.
CA-97.27.FTP_bounce...>
Sorry, a description is unavailable.
Cgichk.c
Scans for common CGI vulnerabilities. By ech0 Security.
Checkos.tgz
Sorry, a description is unavailable.
HTTP-XpsScanner.tgz
HTTP-XpsScanner scans a remote webserver for 77 vulnerable cgi scripts. By Wildcoyote
MDAC-scan.c
Msadc scanner written in C. By Xphere
MDAC-scan.pl
Msadc scanner written in perl. Homepage here. By Xphere
NSS_2000pre1.tar.gz
Narrow Security Scanner 2000 searches for 249 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. By Narrow
NSS_2000pre10-unx.ta..>
Narrow Security Scanner 2000 (unix / perl) searches for 367 remote vulnerabilities. Tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. Changes: POP2/SSH plugin added, "Single host scan" function added. Homepage here. By Narrow
NSS_2000pre10-win.ta..>
Narrow Security Scanner 2000 (windows / perl) searches for 367 remote vulnerabilities. Tested on Windows 95 / 98 / NT. Changes: POP2/SSH plugin added, "Single host scan" function added. Homepage here. By Narrow
NSS_2000pre2.tar.gz
Narrow Security Scanner 2000 searches for 260 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. Changes: 11 new vulnerabilities from Bugtraq, and code changes. By Narrow
NSS_2000pre3.tar.gz
Narrow Security Scanner 2000 searches for 260 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. Changes: New plugin added "Rootshell", Updated plugins: httpd, pop3, cgi, rootshell and trojan, some peace of code changed in *ALL* plugins, and should scan faster now. By Narrow
NSS_2000pre4.tar.gz
Narrow Security Scanner 2000 searches for 289 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. Changes: Plugins updated: HTTPD, CGI, FTPD, RPC and TROJAN, Descriptions of holes added, code cleaning, last minute updates. By Narrow
NSS_2000pre7.tar.gz
Narrow Security Scanner 2000 searches for 297 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. Changes: Fixes: SSH plugin & Named/Bind plugin, new config file, updated rootshell plugin. By Narrow
NSS_2000pre71.tar.gz
Narrow Security Scanner 2000 searches for 341 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. Changes: This is now the correct binary. Bug fixed in Auto Detect function. By Narrow
NSS_2000pre8.tar.gz
Narrow Security Scanner 2000 searches for 365 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. Changes: More vulnerabilities added. Homepage here. By Narrow
NSS_2000pre9.tar.gz
Narrow Security Scanner 2000 searches for 365 remote vulnerabilities. Written in perl, tested on Redhat, FreeBSD, and OpenBSD, Slackware, and SuSE. Changes: Removed plugins: SSH & Linuxconf and Fixed Windows Scan. Homepage here. By Narrow
NSS_23.tar.gz
Narrow Security Scanner is a perl script which checks for 168 remote vulnerabilities. Tested on Red Hat (4.2, 5.0, 6.0), FreeBSD 3.0 & OpenBSD 2.5. By Narrow
NSS_25.tar.gz
Sorry, a description is unavailable.
NSS_251.tar.gz
Narrow Security Scanner is a perl script which checks for 177 remote vulnerabilities. Tested on Slackware 4.0, Red Hat (4.2, 5.0, 6.0), SuSE 6.1, FreeBSD 3.0 & OpenBSD 2.5. Changes: Bugfix release. By Narrow
NSS_252.tar.gz
Narrow Security Scanner is a perl script which checks for 177 remote vulnerabilities. Tested on Slackware 4.0, Red Hat (4.2, 5.0, 6.0), SuSE 6.1, FreeBSD 3.0 & OpenBSD 2.5. Changes: Drasticly updated readme. By Narrow
NSS_253.tar.gz
Narrow Security Scanner is a perl script which checks for 190 remote vulnerabilities. Tested on Slackware 4.0, Red Hat (4.2, 5.0, 6.0), SuSE 6.1, FreeBSD 3.0 & OpenBSD 2.5. Changes: 13 new vulnerability checks added. By Narrow
PortScanner-1.0.tar...>
Sorry, a description is unavailable.
PortScanner-1.2.tar...>
Excellent port/subnet scanner with 3 levels of verbosity and strobe scan options. Under 300 lines of code, fast, accurate, optional GTK interface. By Tennessee Carmel-Veilleux.
Ports.c
Handy TCP Portscanner - Simple TCP port scanner. Allows you to choose the range of ports to scan. Tested on slackware. Homepage here. By Zinc_Sh
SATAN_Extensions.tar..>
Sorry, a description is unavailable.
UScan12.zip
UltraScan v1.2 - Fast as hell class C TCP port scanner.
UltraScan-15.exe
Latest release of the superfast portscanner for Win95/98/NT.
VeteScan-03-21-2000...>
VeteScan is a bulk vunerability scanner containing programs to scan Windows NT and UNIX systems for the latest trojans/remote exploits, a scanner for the vulnerabilities of single hosts (with or without host checking), a tool for scanning multiple hosts, a scanner for class A/B/C networks, and fixes for various vulnerablities. Changes: A few new exploits / scans, more recent versions of scanning tools, and fixes for Red Hat users. Homepage here. By Vetesgirl
VeteScan-12-26-99.ta..>
VeteScan is a bulk vunerability scanner containing programs to scan Windows NT and UNIX systems for the latest trojans/remote exploits, a scanner for the vulnerabilities of single hosts (with or without host checking), a tool for scanning multiple hosts, a scanner for class A/B/C networks, and fixes for various vulnerablities. Changes: Fixes for a few errors, scans for glFtpD, LinuxConf, and ssh, a new admbind exploit and patch, and new scans for amd z0ne, cmsd z0ne, mountd z0ne, and sadmin z0ne. Homepage here. By Vetesgirl
WhoishOstFast-0.0.2...>
WhoiShOstFast is multi-process TCP port scanner - Now in english. Homepage here. By Wh01X DuMP
aai.zip
All Around Internet scanner.
admbin.zip
Sorry, a description is unavailable.
amdscan.c
AMD (amd V1) Automountd tiny Scanner by Bjunk. Works on a single host or a class C network.
amdscanner.tar.gz
Automount (amd) vulnerability scanner. By VetesGirl.
ascan13.pl
Ascan 1.3 is a tiny port scanner written in perl. Homepage here. By Zucco
autofdscan.c
rpc.AutoFS tiny Scanner. By Bjunk
avscan.pl
AVscan is a perl script which submits garbage queries to altavista in order to find hosts to scan. By Vade79
b00ger-rpc.tar.gz
Remove RPC vulnerability scanner, optimized for speed. It scans for rstatd, nfsd, ypserv, mountd, rexd, ypudated, cmsd, ttdbserver, autofsd, pcnfsd and amd. It also checks what os the remote host is using, and then uses this info to work out whether it's likely to be vulnerable or not. By B00ger
banner.c
Banner.c is an improved banner grabber - It is faster then existing banner grabbers, and compiles on many platforms. By Cyber_Bob
bascan-1.5.tar.gz
Sorry, a description is unavailable.
bass-1.0.7.tar.gz
BASS, The Bulk Auditing Security Scanner Version 1.0.7. Reliable, efficent, and sneaky way to scan mass amounts of hosts.
bips.sh
IP Broadcast scanner.
blue_globeportscan.z..>
Blue globe 30 day trial portscanner, not very fast.
brdcast-scan-smurf.s..>
P Broadcast Scanner Package - with addition of smurf code.
broadscan.c
Broadscan v0.31 - DUP broadcast IP scanner, for use in conjunction with smurf, fraggle, papasmurf to create the requisite broadcast.txt files. By vacuum of Technotronic Full Disclosure Security Information.
broadscan05.c
Updated broadscan.c which is used to search for broadcast ip addresses. For use with smurf.c, fraggle.c, and papasmurf.c. By vacuum.
bronc-vs-mjackson.ta..>
Bronc Buster vs. Michael Jackson is an ultra fast Class B style vulnerability scanner. It impliments 'argv' (joke) technology to keep up with the ever-expanding horde of so-called 0-day exploits hackers utilize to penetrate your vital network infrastructure. By Ambient Empire.
brscan06.c
Broad Scan 0.6 something I wrote when I wanted to search my internal network for systems running certain services but didnt want to run a full blown portscanner. This allows you to scan an IP address range for a specific port. By Larry W. Cashdollar
bsdscan-0.4.tar.gz
BsdScan is a light-weight port-scanner designed for the BSD operating system. It currently supports scanning single hosts, subnets, logging results, scanning ports in a random order, specifying a port range, and a speed option to only scan commonly used ports. By Fflewddur
bsdscan-0.5.1.tar.gz
BsdScan is a light-weight port-scanner designed for the BSD operating system. It currently supports scanning single hosts, subnets, logging results, scanning ports in a random order, specifying a port range, and a speed option to only scan commonly used ports. Changes: Fixes for some errors in the argument-parsing code, and -l, -p, and -i options should work properly now. By Fflewddur
bsdscan-0.5.tar.gz
BsdScan is a light-weight port-scanner designed for the BSD operating system. It currently supports scanning single hosts, subnets, logging results, scanning ports in a random order, specifying a port range, and a speed option to only scan commonly used ports. Changes: A start on implementing syn/ack stealth scanning, and lots of code cleanup. By Fflewddur
cabdomscan.zip
Final release of Cabral Domain scanner for Win95/98/NT.
cattscanner-0.6.tar...>
Cattscanner v0.6 - CATTscanner or Configurable Autonomous Threaded Topography scanner is a compilation of common networking tools rewritten into one massively configurable, massively portable, independent, fast package. CATTscanner is also written in 100% ANSI C and uses no external libraries so it will compile on most every operating system and platform. Features support for RPC, NFS, and NBT mapping, and support for version queries, extremely readable code, and output to interlinked HTML files. Homepage here. By Optyx
cattscanner-0.61.tar..>
Cattscanner v0.61 - CATTscanner or Configurable Autonomous Threaded Topography scanner is a compilation of common networking tools rewritten into one massively configurable, massively portable, independent, fast package. CATTscanner is also written in 100% ANSI C and uses no external libraries so it will compile on most every operating system and platform. Features support for RPC, NFS, and NBT mapping, and support for version queries, extremely readable code, and output to interlinked HTML files. Changes: linux thread problems fixed. Homepage here. By Optyx
cgi-check99.3.r
Sorry, a description is unavailable.
cgi-check99v4.r
CGI Check 99 v0.4. Checks for 119 remote CGI vulnerabilities and other remote issues. Written in rebol to be extremely portable (37 os's). Changes: Now gives the Bugtraq ID or X-Force ID when available. Homepage here. By Deepquest
cgiS.c
Simple CGI scanner which works on Linux, OpenBSD, and others. Updated to fix y2k problem. By Zinc_sh
cgichk-s.pl
Cgichk CGI scanner written in perl, modified to scan class C networks. By Vladimir Lohov
cgichk1_36.c
Y2k fix for cgicgk-1_35, which would return false positives on any server with a date of 2000. By su1d sh3ll of UnlG
cheops-0.5.tar.gz
Cheops is a network "swiss army knife". It's a combination of a variety of network tools to provide system adminstrators and users with a simple interface to managing and accessing their networks. Cheops aims to do for the network what the file manager did for the filesystem. Features include: Network mapping via UDP and/or ICMP packets, port detection using half-open tcp connections (ala halfscan), OS detection using invalid flags on TCP packets (ala queso), Domain scans, ICMP pings, much more. Requires GTK. By Mark Spencer.
cheops-0.51.tar.gz
See description above.
cheops-0.55.tar.gz
See description above. Many new features in this latest release.
cheops-0.56.tar.gz
See description above.
cheops-0.57.tar.gz
See description above.
cheops-0.58.tar.gz
Cheops is a network "swiss army knife". It's a combination of a variety of network tools to provide system adminstrators and users with a simple interface to managing and accessing their networks. Cheops aims to do for the network what the file manager did for the filesystem. Features include: Network mapping via UDP and/or ICMP packets, port detection using half-open tcp connections (ala halfscan), OS detection using invalid flags on TCP packets (ala queso), Domain scans, ICMP pings, much more. This version has excellent SNMP support. Requires GTK. By Mark Spencer.
cheops-0.59a.tar.gz
Cheops v0.59a - Cheops is a network "swiss army knife". It's "network neighborhood" done right (or gone out of control, depending on your perspective). It's a combination of a variety of network tools to provide system adminstrators and users with a simple interface to managing and accessing their networks. Cheops aims to do for the network what the file manager did for the filesystem. This version includes plugin monitor support, and monitors are included for FTP, SMTP, HTTP, PING, and DNS. A generalized event logger logs to a file, an event window, and optionally sends e-mail. Gnome support is enhanced, but Gnome is not required to run it.One of the few "5-star, must-have" software releases. By Mark Spencer.
cheops-0.60pre1.tar...>
Cheops Network User Interface: Cheops is a network "swiss army knife". It's "network neighborhood" done right (or gone out of control, depending on your perspective). It's a combination of a variety of network tools to provide system adminstrators and users with a simple interface to managing and accessing their networks. Cheops aims to do for the network what the file manager did for the filesystem. Additionally, cheops has taken on the role of a network management system, in the same category as one might put HP Openview. Mechanics: Simple ICMP "ping" packets are used to initially search a network for hosts that are alive (ping). Domain Name Transfers are used to list hosts in a domain (nslookup). OS detection is done using invalid flags on TCP packets (queso). Port detection is done (somewhat) silently using half-open TCP connections in order to avoid unnecessarily starting services or logging on the remote machine (halfscan). Mapping is done using UDP (or optionally ICMP) packets with small time-to-live values (traceroute and mtr, respectively). Monitoring is done using normal connect() sequences using sets of chained stages centerd around the gtk_input_add routine. This release includes the following changes: Add auto-refresh option, Change "Page" to "Viewspace", Allow verbose display mode, more. Requires gtk. By Mark Spencer.
cheops-0.60pre2.tar...>
Cheops Network User Interface: Cheops is a network "swiss army knife". It's "network neighborhood" done right (or gone out of control, depending on your perspective). It's a combination of a variety of network tools to provide system adminstrators and users with a simple interface to managing and accessing their networks. Cheops aims to do for the network what the file manager did for the filesystem. Additionally, cheops has taken on the role of a network management system, in the same category as one might put HP Openview. Mechanics: Simple ICMP "ping" packets are used to initially search a network for hosts that are alive (ping). Domain Name Transfers are used to list hosts in a domain (nslookup). OS detection is done using invalid flags on TCP packets (queso). Port detection is done (somewhat) silently using half-open TCP connections in order to avoid unnecessarily starting services or logging on the remote machine (halfscan). Mapping is done using UDP (or optionally ICMP) packets with small time-to-live values (traceroute and mtr, respectively). Monitoring is done using normal connect() sequences using sets of chained stages centerd around the gtk_input_add routine. Changes: added auto-refresh option, changed "Page" to "Viewspace", verbose display mode, much more. Requires gtk. By Mark Spencer.
cheops-0.60pre3.tar...>
See description above.
cheops-0.60pre4.tar...>
See description above.
cheops-0.60pre5.tar...>
Cheops 0.60pre5 - Cheops is a network "swiss army knife". It's "network neighborhood" done right (or gone out of control, depending on your perspective). It's a combination of a variety of network tools to provide system adminstrators and users with a simple interface to managing and accessing their networks. Cheops aims to do for the network what the file manager did for the filesystem. Additionally, cheops has taken on the role of a network management system, in the same category as one might put HP Openview. Mechanics: Simple ICMP "ping" packets are used to initially search a network for hosts that are alive (ping). Domain Name Transfers are used to list hosts in a domain (nslookup). OS detection is done using invalid flags on TCP packets (queso). Port detection is done (somewhat) silently using half-open TCP connections in order to avoid unnecessarily starting services or logging on the remote machine (halfscan). Mapping is done using UDP (or optionally ICMP) packets with small time-to-live values (traceroute and mtr, respectively). Monitoring is done using normal connect() sequences using sets of chained stages centerd around the gtk_input_add routine. Requires GTK. Changes: Stability enhancements. This version should be more stable with GTK 1.2. By Mark Spencer.
cmsdscanner.tar.gz
rpc.cmsd scanner. By VetesGirl.
cr0n.c
CGI vulnerability scanner which checks for 97 holes. By cyrax of code red
cracker.tgz
cracker randomly generates class A,B,C (your choice), portscans for 111, does queso os check for linux, and attempts to exploit it. The ADMmountd has been modded to add a user 'moof' to the password file with no password and uid/gid 0. By ryan.
crazy.c
Crazy Scan is a unix based scanner which scans for NT web vulnerabilties. Checks for about 30 cold fusion files, some cgi's, IIS / iisadmin scripts, msadc, and many other url's that indicate a remote vulnerability. Checks for 140 paths in all. Bug list available here. Homepage here. By Freddy Laplaine
dms.pl
Small banner scanner written in perl. Grabs banners from a list of hosts or a class C network. Homepage here. By Initzero
dns-scanner.sh
Sorry, a description is unavailable.
dnscan
Sorry, a description is unavailable.
dnsscan.zip
Sorry, a description is unavailable.
domscan-2.0.pl
Latest version of the quick domain scanner by Pavel Aubchon-Mendoza.
domscan.c
Domain Scanner v2.0, by HoGs HeaD, of sinnerz.com.
domscan.pl
Perl domain scanner. Any platform. Coded by Pavel Aubuchon-Mendoza, of deviance.org.
domscan.tar
Perl domain scanner. Any platform. Coded by Pavel Aubuchon-Mendoza, of deviance.org.
domscan.zip
Sorry, a description is unavailable.
drpcscan.tgz
Scans ranges of IPs for known RPC services.
exo-0.3.tgz
Exo is a handy little tool that 'sweeps' a range of ports on a list of hosts. It works by sending out raw packets and waiting for replies with two separate threads. This method makes exo able to find open ports without any delay, i.e. effectively at the rate that your bandwidth allows. A 56k dialup connection can scan for one open port on 65280 hosts in 160 seconds. Homepage here. By Mixter
exscan-0.2.tgz
exscan is a network/Internet port scanner. It uses the "strobe-scan" technique, which means exscan only scans for certain services, instead of scanning a range of ports. By PolarRoot.
exscan-0.3.tar.gz
exscan v0.3 - exscan is a network/Internet port scanner, that uses the strobe-scan technique of only scanning certain ports. With some services (such as finger and HTTP) exscan queries the server for information (such as the users on finger; and the server version on HTTP). On other services (such as FTP, SMTP, and others) exscan displays the information returned by the server (usually including the server type and version). v0.3 features remote OS identification functionality from QueSO integrated into the exscan interface. By PolarRoot.
exscan-0.4.tar.gz
exscan v0.4 is a network/Internet port scanner, that uses the strobe-scan technique of only scanning certain ports, instead of a full blown port scan. exscan is not only a port scanner, though. With some services (such as finger and HTTP) exscan queries the server for information (such as the users on finger; and the server version on HTTP). On other services (such as FTP, SMTP and others) exscan displays the information returned by the server, sometimes called a banner, and usually including the server type and version. Remote OS identification functionality from QueSO is also integrated into the exscan interface. This release features improved support for BSD/Sun/Solaris UNIX flavors. By PolarRoot.
findhosts.pl
Given a base ip address of xxx.xxx.xxx. it will list all 255 host names under that base.
fizzbounce-0.2.tar.g..>
maps connections over proxies (courtesy of teso)
frontpage.pl
Everybody knows about the _vti_pvt password files, but what about those misconfigured Frontpage servers that allow remote login and authoring without a login and password? This script will check for both vulnerabilties. Homepage here. By Banish33
ftp-scan.zip
Sorry, a description is unavailable.
ftpcheck-0.3.pl
ftpcheck scans hosts and networks for FTP and anonymous FTP archives. ftpcheck is very fast: it can effectively scan a class C network for anonymous FTP sites in less than 5 seconds. Requires perl, libnet, MD5, MIME-Base64, HTML Parser, libwww.
ftpcheck-0.31.pl
ftpcheck v0.31. see above for details. see below for requirements.
ftpcheck.pl
Ftpcheck version 0.32 scans hosts and networks for FTP and anonymous FTP archives. It was written as a security analysis tool. ftpcheck is very fast. It can effectively scan a class C network for anonymous FTP sites in less than 5 seconds. It does this by starting a new process for each connection. ftpcheck requires perl and libnet (from CPAN). Changes: Fixed misclassification of "a.b.c" hostnames as class C IP addresses. Homepage By David Weekly
ftpscan.c
ftpscan v1.0 will open a specific file [-f file], get the IPs from it, then, check if FTP port [ -p 21 ] is open and log the version. If you specify the [ -o ] flag it will try to log into the FTP server and execute the LIST command [recursive] (useful for checking for existence of world writeable directories). By vENOMOUS of rdC.
fts-rvscan.v1-b1.tgz
rvscan v1b1 (remote vulnerability scanner) determines the remote operating system, then procedes to find common vulnerabilites. Checks for over 30 cgi scripts, and 15 exploits. By ben-z.
fts-rvscan.v1-r1.tgz
rvscan v1r1 (remote vulnerability scanner) determines the remote operating system, then procedes to find common vulnerabilites. New features: dual OS guessing [telnet banner grabbing + nmap OSScan], remote exploit checks [bind, imap, wuftpd, rpc.mountd, qpop, sendmail, iquery], multiple pop3 authentication, anonymous ftp services, httpd exploits [cold fusion, website pro, frontpage extensions, 52 vulnerable cgis], icmp echo filters, nfs exports, and over 10 sendmail holes. By ben-z.
fts-rvscan.v2-b3.tgz
rvscan v2b3 (remote vulnerability scanner) determines the remote operating system, then procedes to find common vulnerabilites. New features: scans for more exploits, code optimizations. By ben-z.
gHost.v1-a1.tgz
The gHost project is a very thorough set of remote security scanning scripts thrown together by various members of the group gH. This is the first alpha release. Homepage here.
gen.c
Class A, B, and C IP address list generator. By Irony
gnit_rc1.zip
GNITvse rc1: GNIT Vulnerability Scanning Engine Release Candidate One - (for WIN2K and NT systems). Performs a port scan, and based on those findings, calls other functions. Checks for MANY windows based vulnerabilities, and grabs banners. Homepage here. By Glitch
grabbb-0.0.1.tar.gz
very fast non blocking banner scanner (courtesy of teso)
grabbb-0.0.5.tar.gz
Clean, functional, and fast banner scanner. Homepage here. By Scut
grabbb-0.0.7.tar.gz
Clean, functional, and fast banner scanner. Changes: Portability fix: Now works on Linux, BSD and Solaris. Homepage here. By Scut
grabbb-0.1.0.tar.gz
Clean, functional, and fast banner scanner. Changes: Code fixes, portability fixes. Should run really well now. By Scut of Team Teso
grinder.pl
Grinder.pl scans a range of IP's looking for a URL. Could be used to search for sites with a certain URL or CGI program. Homepage here. By Bansh33
halfscan.c
Halflife's port scanner.
hobbit.ftpbounce.txt
Sorry, a description is unavailable.
hostscan.zip
Sorry, a description is unavailable.
hping.c
hping can send any kind of tcp flags and display the target replies in numerous formats. Useful for ACL discovery and testing, port scanning, hide pinging, raw fingerprints, etc... By Salvatore Sanfilippo.
hping066.tgz
hping v0.66 - Yet another excellent security tool! hping is a complex program that allows you to send customized pings to remote hosts, gathering raw fingerprint data, utilizing the concept of "tcp specific firewalks", and more. Get this one too! By antirez.
hping067.tgz
hping is a complex ping-based program that allows you to send customized pings to remote hosts, gathering raw fingerprint data, utilizing the concept of "tcp specific firewalks", and more. For Linux only. This is one of those "must have" tools. Get it! By antirez.
hping070-linux.tar.g..>
hping is a complex ping-based program that allows you to send customized pings to remote hosts and networks, gathering raw fingerprint data, utilizing the concept of "tcp specific firewalks", and more. Linux libpcap based port. This is one of those "must have" tools. Get it! By antirez.
hping070-solaris.tar..>
hping is a complex ping-based program that allows you to send customized pings to remote hosts, gathering raw fingerprint data, utilizing the concept of "tcp specific firewalks", and more. This is one of those "must have" tools. Get it! Solaris libpcap based port. By antirez.
hping2-beta52.tar.gz
Hping is a software to do TCP/IP stack auditing, to uncover firewall policy, to scan TCP port in a lot of different modes, to transfer files accross a firewall, test network performance, test of TOS is handled, etc. Homepage here. By Antirez
hping2-beta53.tar.gz
Hping is a software to do TCP/IP stack auditing, to uncover firewall policy, to scan TCP port in a lot of different modes, to transfer files accross a firewall, test network performance, test of TOS is handled, etc. Changes: Major bugs fixed and enhanced configure / Makefile. Homepage here. By Antirez
httpdtype-0.02.tar.g..>
httpdtype is a utility for finding out which type of web server is running on a given host. By Steffen Solyga.
httpdtype-0.05.tar.g..>
httpdtype v0.05 is a utility used to find out what type of web server a remote host is running. By Steffen Solyga.
httpdtype-0.07.tar.g..>
httpdtype v0.05 is a utility used to find out what type of web server a remote host is running. By Steffen Solyga.
httpscan-v200.c
Httpscan scans web servers for version and server type. Takes input from a file. Changes for v2.01 some options for diferent ports and logging. By Skemet
httpscan.c
Httpscan scans web servers for version and server type. Takes input from a file. By Skemet
httpservertype-0.01...>
httpservertype is a utility used to determine (fingerprint) the type of web server a remote host is running (ala Netcraft.com). By Steffen Solyga.
httpver.c
Sorry, a description is unavailable.
icmp177.tgz
program to send spoofed/hacked ICMP packets (Redirect, Unreach, Time Exceeded ...). By Slayer (Spain).
icmp206.tgz
See above. More recent version here, with improvements.
icmp21.tgz
Latest release of program to send spoofed/hacked ICMP packets (Redirect, Unreach, Time Exceeded ...). This version has added support for ICMP Echo Request/Reply. By Slayer (Spain).
icmpquery.c
send and receive ICMP queries for address mask and current time. By Dave Andersen.
icmpscan2.zip
Sorry, a description is unavailable.
icmpsnif.zip
Sorry, a description is unavailable.
icmpush22.tgz
ICMPush v2.2 is a program that sends icmp error packets and obtains remote info throught icmp packets. Supports spoof and broadcasting. This new release supports the following ICMP error types: Unreach, Parameter Problem, Redirect and Source Quench; ICMP information types: Timestamp, Address Mask Request, Information Request, Router Solicitation (Router Discovery), Router Advertisement (Router Discovery) and Echo Request. This program features an excellent interface with a wide number of options (flags) and values. As an added bonus, Slayer has included a mini-script called try_reset that tries to reset existing telnet or rlogin connections. Your security auditing toolkit is not complete without this program! One of the few 5-star programs. By Slayer of !Hispahack.
ident-scan.c
Sorry, a description is unavailable.
idlescan-v0.1-alpha3..>
Idlescan is a IP id port scanner, written to demonstrate that machines should not have a predictable ip.id increments. Features: Target never sees your ip address, No limit in the number of sensors working in parallel, Automatic windows ip.id increment detection (windows counts in little endian), and Auto-dropping sensors with traffic. Homepage here. By LiquidK
imapvuln.tar.gz
Scans for imap vulnerabilities and can be used with mscan.
imp-range.c
Tool for scanning networks which generates an list of IP addresses between a starting and ending ip. By Shake
infinity-expcgi.zip
The Infinity Exploit Scanner is a CGI script that allows visitors to your site to scan remote webservers for CGI vulnerabilities. The HTML output is configurable, and a log of all vulnerabilities your users find is kept. Homepage here. By Azrael
infinity-portcgi.zip
The Infinity Port Scanner is a CGI script that allows your visitors to remotely scan servers for open ports. Homepage here. By Azrael
infinity-t-3.00b.pl
The Infinity Perl/Tk Scanner features scanners for exploits, trojans, ports, subnets, server info, and protocols all in one, using perl/tk for a GUI. Features a hex http query to avoid IDS systems. Homepage here. By Azrael
ip-zoner2.2.tar.gz
Mass resolver/IP scanner; can be used to diag multiple IP blocks.
ipidscan-0.1beta1.ta..>
IP 'id' port scanner - Totally untracable portscanner. Uses the IP id and a silent host to port scan a host with a forged source address. By Marvin
ipprober.zip
IPprober - small tcp portscanner.
ipps-1.0.tgz
IPPS 1.0 is a TCP/IP Port Scanner which provides custom port scan range, subnet scan after the netmask of a host in that network, specified source port for the scan, output to file for letting it work all night without redirecting output in a huge command line. By Victor Stanescu.
javaportscan.exe
Example Portscanner written in Java, by chesapeake.
javaportscan.tar.gz
See above, this one is just tarred and gzipped.
javaportscan.zip
See above, this one is just zipped.
javascan-readme.txt
Readme file for above.
jport11.zip
Jport version 1.1 is now here. After a bit more development and some outside user input we have created Jport v.1.1. New Features Include: Choice of Number of Threads, Linear Approach to Improve Speed, Progress Bar, and a README file. Homepage here. By Overload
jscan.tar.gz
Jscan is a Java-based vulnerability scanner with excellent features. In addition to the platform-friendly Java code, this scanner provides a nice GUI, options to add/remove new exploit "signatures", scan single hosts or entire subnets, set native and Java stack sizes for any threads, and set heap sizes, to maximize scanning vs. memory consumption issues. By Jack Smiley.
lamescan-1.401b.tar...>
lamescan v1.401b is a multithreaded portscanner that supports scanning domains, class A,B,C nets, random scan, multithreaded scan, scanning hostnames as they are typed on stdin, ansi, identd lookups(buggy), sending a "user lalala" string to any open port (to look less as a portscan), output to a filename and delaying between each connect() call. By Martin Carlzon.
lamescan-1.402b.tar...>
See description above.
lamescan-1.4b.tar.bz..>
Lamescan v1.4 - portscanner - supports scanning domains, class A,B,C nets, random scan, multithreaded scan, scanning hostnames as they are typed on stdin, ansi, identd lookups(buggy), sending a "user lalala" string to any open port (to look less as a portscan), output to a filename and delaying between each connect() call. By Martin Carlzon.
lamescan-2.DEVEL1999..>
lamescan v2.DEVEL19990607 is a multithreaded portscanner that supports scanning domains, class A,B,C nets, random scan, multithreaded scan, scanning hostnames as they are typed on stdin, ansi, identd lookups(buggy), sending a "user lalala" string to any open port (to look less like a portscan), output to a filename and delaying between each connect() call. Changes: bugfixes, code cleanup, more stable, improved output. By Martin Carlzon.
leetscan.tar.gz
Leet Scanner is a fast, simple, and efficient single target host port scanner. It scans a pre-determined set of common tcp/ip services for listening ports using the FIN stealth technique. FIN stealthing isn't effective against Win9x/NT based target hosts. By aempirei.
linuxscanners.zip
Linux Scanner package - Includes source code for the following: ftp-scan, ident-scan, Pscan.c TCP/UDP/NIS/RPC scanner, Reflscan.c (stealth), Tcpprobe.c.
lscan.c
Port scanner. By b4b0.
madscan.c
Madscan scans for sites which do not block broadcast IP addresses. Based on broadscan, but 4 times faster, and supports scanning a full class A address space. By The Madjoker
mailbrute.c
Sendmail bruteforcer to look for valid accounts. Uses the RCPT command. By Axess
md-webscan-1.0.1.tar..>
md-webscan is a high quality CGI vulnerability scanner. It is well written, easily extensible, and has a few nifty options. Changes: 106 new checks. Homepage here. By Mordrian
mdpag.c
Massively Distributed Penetration Attempt Generator. Wouldn't it be fun if your favorite lamer was trying to hack the Whitehouse, or even the Army? Now they can, or at least appear as though they are. This utility will generate a slew of fake scans on a target ip from a group of fake "scanning" ips. Inspired by nmap. By Tim Lawless
messala-1.5-BETA.tar..>
Vulnerability scanner which scans for 97 CGI Vulns, 7 FTP Vulns, All known QPOP vulns, 7 Named vulns + prints out which ver the host is running on, 9 IMAP vulns, 16 mail vulns (sendmail, etc..), Checks if host suffers from tcp chorusing, Checks for vuln kernel, and 16 RPC vulns. By misteri0
messala-1.6-BETA.tar..>
Vulnerability scanner which scans for 97 CGI Vulns, 7 FTP Vulns, All known QPOP vulns, 7 Named vulns + prints out which ver the host is running on, 9 IMAP vulns, 20 mail vulns (sendmail, etc..), Checks if host suffers from tcp chorusing, Checks for vuln kernel, and 16 RPC vulns. Changes: Checks if host is running windows, and if so scans it for windows vulnerabilities. Also added 7 new vulnerability checks. By misteri0
messala-1.7-Y2Kfix.t..>
Vulnerability scanner which scans for 97 CGI Vulns, 7 FTP Vulns, All known QPOP vulns, 7 Named vulns + prints out which ver the host is running on, 9 IMAP vulns, 20 mail vulns (sendmail, etc..), Checks if host suffers from tcp chorusing, Checks for vuln kernel, and 16 RPC vulns. Changes: Y2K bug fixes, including problems with false positive results, multiple wu-ftp detections, and various other problems fixed. By misteri0
messala-1.8-unlg.tar..>
Vulnerability scanner which scans for 97 CGI Vulns, 9 FTP Vulns, All known QPOP vulns, 7 Named vulns + prints out whichver the host is running on, 9 IMAP vulns, 24 mail vulns (sendmail, etc..), Checks if host suffers from tcp chorusing, Checks for vuln kernel, and 16 RPC vulns. Changes: 4 new backdoor checks, y2k fix for cgi, Now checks if the host is running windows, and if so checks for windows vulnerabilities, added 4 new mail vulnerabilities, 2 FTP vulnerabilities, and 1 new webserver vulnerability. By misteri0
miffo-check-1.3.1.c
See description above. Bugfix release.
miffo-check-1.3.c
Miffo Check is a utility that scans a class B or Class C ip range for active computers/nodes. By spiff of The c5 Project.
miffo-check-1.4.tar...>
Miffo Check v1.4 is a utility that scans a class B or Class C ip range for active computers/nodes. Changes: SOCKS scanning implented and major code cleanups. By spiff of The c5 Project.
miffo-check-1.4b.tar..>
Miffo Check is a utility that scans a class B or Class C ip range for active computers/nodes. Some bug fixes. By Tomas and spiff of The c5 Project.
miffo-check.c
miffo-check 1.2 - A utility to check a class B or Class C ip range for active computers, with an option to check for a special port, output to file. By The c5 Project.
mirro13.zip
Mirror Universe v1.3 - Domain scanner that gives NetBIOS info. By St0rmer.
mirror21.zip
Mirror Universe v2.1 - domain scanner that gives NetBIOS info. By St0rmer.
mns-v.67beta.tar.gz
MNS-v.67beta is the Multifunctional Network Scanner. It is an entire classless network auditing and vulnerability logging package comparable to 'nmap' and 'sscan'. It uses the latest methods of stealthing, os detection, and vulnerability checking. A few key features are not yet implemented because they are still being worked on, namely intergrated SMB / NetBios scanning support. Please download, test, and tell us what you think. By bind & aempirei.
mns-v.68beta.tar.gz
MNS-v.68beta is the Multifunctional Network Scanner. It is an entire classless network auditing and vulnerability logging package comparable to 'nmap' and 'sscan'. It uses the latest methods of stealthing, os detection, and vulnerability checking. A few key features are not yet implemented because they are still being worked on, namely intergrated SMB / NetBios scanning support. Please download, test, and tell us what you think. By bind & aempirei.
mns-v.69beta.tar.gz
MNS-v.69beta is the Multifunctional Network Scanner. It is an entire classless network auditing and vulnerability logging package comparable to 'nmap' and 'sscan'. It uses the latest methods of stealthing, os detection, and vulnerability checking. A few key features are not yet implemented because they are still being worked on, namely intergrated SMB / NetBios scanning support. Please download, test, and tell us what you think. Changes: Compiles cleanly on FreeBSD too now! By bind & aempirei.
mns-v.75beta.tar.gz
See description above.
mns-v.80beta.tar.gz
MNS-v.80beta is the Multifunctional Network Scanner. It is an entire classless network auditing and vulnerability logging package comparable to 'nmap' and 'sscan'. It uses the latest methods of stealthing, os detection, and vulnerability checking. A few key features are not yet implemented because they are still being worked on, namely intergrated SMB / NetBios scanning support. Please download, test, and tell us what you think. Changes: Scans for more exploits, vulnerabilities, portability fixes. By bind & aempirei.
mns-v.81beta.tar.gz
See description above.
mns-v.83beta.tar.gz
See description above. Changes: improved platform portability.
mns-v.90beta.tar.gz
MNS-v.90beta is the Multifunctional Network Scanner. It is an entire classless network auditing and vulnerability logging package comparable to 'nmap' and 'sscan'. It uses the latest methods of stealthing, os detection, and vulnerability checking. A few key features are not yet implemented because they are still being worked on, namely intergrated SMB / NetBios scanning support. Features: TCP Sequence Assesment via Hamming Methods, FIN/NULL/PUSH/SYN Stealth Port Scanning, UDP Port Scanning, QPOP/SCOPOP vulnerability checking, IMAP vulnerability checking, CGI vulnerability checking, RPC vulnerability checking, WuFTPD and ProFTPD vulns, Verbose Output and Promiscious Scanning, much more. By bind & aempirei.
mns-v.91beta.tar.gz
See description above.
mountdscanner.tar.gz
Mountd vulnerability scanner. By VetesGirl.
mscan.tar.gz
mscan 1.0 - Scans multiple hosts for many different vulnerabilities. (statd, nfs, cgi, X11, named, pop3, and IRIX defaults).
msmbs.sh
Shell script to scan a domain for open windows shares using samba. Tested on slackware, red hat, SuSE. Requires smb client. By Zinc_Sh
namedscan.0.0.tar.gz
Named version scanner. Due to several vulneriabilities found in BIND daemon, it's always good to know what bind versions you're running. By CyberPsychotic
namedscan.c
Namedscan.c finds the version of a remote nameserver. By eth0 of buffer0verfl0w
nbchk.pl
NBChk is a multi-threaded Perl banner-checking utility that is fully configurable and can scan a full/partial class-C network, hosts from a file, or a single host for configured vulnerabilities. By h1kari
nbtscan.zip
nbtscan is a perl script that automates the process of running 'nbtstat -A' on a list of IP addresses. By logic box.
nbtstat.tar.gz
This is a small unix utility that does the equivalent of NT's nbtstat -A . It sends a Node Status request to the host specified on the command line, and waits (up to 10 seconds) for the reply. If it gets the reply, it dumps the reply as hex, and then interprets the name table. Homepage here. By Todd Sabin
nc110.exe
Sorry, a description is unavailable.
nc110.tgz
Sorry, a description is unavailable.
netgrep.c
Netgrep checks a range of hosts for a specific service and grabs the banner. Features the ability to send a string to the port, and the ability to grep through the banner. Homepage here. By Larry W. Cashdollar
nfswatch4_3_tar.gz
Sorry, a description is unavailable.
nmap-2.3BETA6-vulnma..>
vulnerability scanning modifications to nmap v2.3BETA6. Homepage here. By Ajax
nsat-1.08.tgz
nsat is a bulk security scanner designed for recoverable long-time scans, optimized for speed and stability, that scans and audits about 60 different services and 170 cgis. Version 1.08. Homepage here. By Mixter
nsat-1.09.tgz
nsat is a bulk security scanner designed for recoverable long-time scans, optimized for speed and stability, that scans and audits about 60 different services and 170 cgis. Version 1.09. Changes: Bulk scans now give complete scan results, and OS detection works. Homepage here. By Mixter
nsat-1.11.tgz
Nsat is a fast bulk security scanner designed for long-range scans written in C++ which scans and audits about 60 different services and 170 cgis with different scan intensity. Updates in this version include detection of sendmail 8.9 remote exploitability, more CGI scripts that can be used in MDAC IIS attack, improved rpc service and -backdoor scanning, all latest solaris RPC vulnerabilities added, and detection of trinoo distributed DoS masters with default ports. By Mixter
nsat-1.12.tgz
Nsat is a fast bulk security scanner designed for long-range scans written in C++ which scans and audits about 60 different services and 170 cgis with different scan intensity. Changes: Several bugfixes, stability upgrades, 5 new cgi checks, updated vulnerability information and Cisco router detection. By Mixter
nskan-0.60b.tgz
nskan v0.60b is a Network SKANner, a simple program to scan and analize a host/subnet. This is the first public release not fully functionally but configurable and stable. By ntflander.
nskan-0.61b.tgz
nskan v0.61b is a Network SKANner, a simple program to scan and analize a host/subnet. Changes: Fix graphical bugs, New timeout connect() system. By ntflander.
nss.tar.gz
Narr0w Security Scanner version 2.59 checks for 153 remote vulnerabilities. Written in perl. Homepage here. By Narrow
numby-0.2.tar.gz
scans for relay vulnerable proxies (courtesy of teso)
octopus.zip
Sorry, a description is unavailable.
pbs.c
Proxy Bounce Scanner - Bounce a portscan off a web proxy server, a la 'FTP bounce attack'.
pingscan-1.2.1.tgz
See description above.
pingscan-1.2.tgz
PingScan 1.2 - PingScan scans networks via ping for reachable hosts. It does DNS lookup and checks for correct forward/reverse entries. You can enter network adressess in CDIR notation or give start and end adresses. Changes: First public release. By Matthias Cramer.
pop2.sh
Shell script which scans for vulnerable pop-2 daemons. By Guile cool
port.zip
Sorry, a description is unavailable.
portchk.c
Simple port checker that either takes command-line input or file input and checks each host if a given port is open. Homepage here. By Missnglnk
porter.zip
Porter V1.0 by h-master, a combined port and ip scanner, fast.
portpro.zip
Sorry, a description is unavailable.
ports2.c
Port scanner with a nice interface. Prompts for banner. By Dorian Goldman.
portsage.zip
Sorry, a description is unavailable.
portscan.c
Sorry, a description is unavailable.
portscan.zip
Sorry, a description is unavailable.
portsearch.zip
Sorry, a description is unavailable.
portsur.zip
Sorry, a description is unavailable.
porttest.zip
Port Test v1.0 - connects to a port and gives the possibility to talk to a host.
pprobev2.zip
Sorry, a description is unavailable.
ppscan.c
Web proxy port scanner beta v1.1 - This code lets you port scan anonymously, by using a proxy server to bounce off of. If the proxy server connects to the host port, it returns a '200 OK', like if there was a web server there, but then disconnects. The logs of the system scanned will show the proxy box and not the real person doing the scan. By Bronc Buster.
pr0tscan-release-1.t..>
pr0tscan was based on vetescan, but added more vulns and tried to make it run more smoother. Winscan, (scans win/nt systems for latest trojans/remote exploits). The docs include fixes for the vulnerabilities it finds. By misteri0.
propecia.c
A fast class C domain scanner that scans for a specified open port. 1.451 kb. By bind.
ps141.zip
Sorry, a description is unavailable.
pscan.c
Sorry, a description is unavailable.
ptscan11.zip
Sorry, a description is unavailable.
qps.gz
Sorry, a description is unavailable.
queso-980916.tar.gz
QueSO Remote O.S. detector. Sends obscure TCP pkts to determine remote OS. Fully configurable. By El Apostols.
queso-980922.tar.gz
QueSO Remote O.S. detector. Sends obscure TCP pkts to determine remote OS. Fully configurable. By El Apostols.
rcss.tgz
RCSS is a modification of NSS200pre71 which runs as a CGI and allows your web page users to do full vulnerability scans. By The Xtremist
reap-2.9.tar.gz
Reap scans any number of IP's for vulnerable CGIs, misc. daemons and a few other remote exploits, while saving banners for future referance. Most likeley the fastest open-source scanner there is. Can do up to ~300.000-400.000 test per hour. By Unic
reflscan.c
Sorry, a description is unavailable.
relaycheck.pl
relaycheck.pl v0.3 - relaycheck scans a network for vulnerable SMTP hosts that permit "relaying" of email. By David Weekly.
relayck.pl
RelayCheck v1.0 is a perl script that scans a list of SMTP servers to find servers that will relay email. By Epicurus, Wiltered Fire.
reverb-0.0.2.tar.gz
Sorry, a description is unavailable.
roi.sh
roi.sh is a small shell script to do remote OS identification, using Netcraft's services. By Carcin0gen
rpc.c
rpc.c is a small rpc scanner to scan for vulnerabilities. Currently it checks for cmsd, ttdbserverd, sadmind, statd, and amd. Tested on Redhat, Solaris 7, and OpenBSD. Homepage here. By Console
rtscan.pl
Perl script which scans a remote system for about 150 trojans. Based on Evil Dead's trojan port list. By Yo_Soy
sadmind.scan.c
Mass scanner for rpc.sadmind.
sadmindscan.c
Sadmind Solaris RPC tiny Scanner. Scans a specific host or a class C network. By Bernard Junk
satan-1.1.1-port-sca..>
TCP and UDP scanners that SATAN uses to scan for vulnerabilities.
scan30.zip
Sorry, a description is unavailable.
scanbc~1.txt
Sorry, a description is unavailable.
scancd.pl
fast class c and d scanner coded in perl. By Programmaton, Gestion et Consultation, Informatique, INC..
scanid~1.txt
Sorry, a description is unavailable.
scanport-wr.pl
ScanPort v1.0 - fast as hell tcp port scanner with excellent options and nice command line interface. Any perl-friendly platform. From The Wiltered Realm.
scanport.tar
Scanport uses the ftp bounce principle to perform scans. Perl scanner that can be used with unpatched anon FTPs for stealth scans.
scanpo~1.txt
Sorry, a description is unavailable.
scanrp~1.txt
Sorry, a description is unavailable.
scantc~1.txt
Sorry, a description is unavailable.
scanutil.c
Scans a list of IP addresses and ports for a string. Useful for checking lists of IP's for certain versions of daemons. By Tornado.
screen-2.jpg
Sorry, a description is unavailable.
scs.zip
Simpsons CGI Scanner - Windows based CGI scanner with a simpsons theme. Screenshot here. Homepage Meliksah Ozoral
service_check.tcl
This is a simple script written in tcl which parses the output of the nmap program to determine whether required services are in fact running on a machine. Output is written as an html formatted log file. By Phil Ehrens
sl0scan.pl
sl0scan v0.1 - a spoofing scanner which sends lots of fake scans along with one real one. Coded in perl. By miff.
smbls98.tgz
Program similar to WinHack Gold for Linux that looks for open file shares. A CGI interface is included.
smbscanner-eng.zip
SmbScanner v1.0 - File share scanner for Win95/98/NT.
sockcheck.c
Socks proxy scanner that checks for remote insecure Socks proxy servers. By BigDawg.
sos.tgz
Socks Scan V 2.0 - Scan a host for SOCKS servers. Includes the SOCKS perl module. By Icehouse
soupscan.c
Soup Scanner is a fast, simple, and efficient Class C domain scanner. It scans an entire Class C type domain for a specified port and simply dumps resulting hosts to the terminal window. By Ambient Empire.
spidermap-0.1.tar.gz
Spidermap is a collection of perl scripts which enable you to launch precisely tuned network scans. The goal of this project is to create an integrated suite of tools for low-impact network reconnaisance with features including custom packet rates and scan types for each network with increased efficiency by mapping multiple networks in parallel. The target users are system administrators and network security professionals seeking a non-destructive way to inventory network services and do so in a resaonable amount of time. Homepage here. By H D Moore
spoofscan.c
"Spoofs" your IP as another box on your ethernet segment, portscans a host "from" that ip, sniffs responses from the host. "Proof of Concept" program. By jsbach.
ss.pl
Sorry, a description is unavailable.
ss.tar
Fast perl port scanner.
sscan.tar.gz
sscan v0.1a - The son of mscan is here! Much more powerful though, sscan has been created with self-replication (integration into internet worms), configurability, and expandibility in mind. A built in scripting language allows anyone with *no* programming knowledge to add vulnerability checks in a matter of seconds. OS fingerprinting is done with both tcp/ip stack id, and more traditional methods as well. By johann sebastian bach.
strobe-1.04.tgz
Latest version of Strobe. Excellent but simple tcp port scanning utility.
strobe-classb-v1.0.t..>
Sorry, a description is unavailable.
Sorry, a description is unavailable.
strobe-classb-v1.1.t..>
Sorry, a description is unavailable.
strobe-classb-v1.2.t..>
Sorry, a description is unavailable.
strobe-classb-v1.3.t..>
Sorry, a description is unavailable.
strobe-classb-v1.4.t..>
Sorry, a description is unavailable.
strobe-classb-v1.5.t..>
Sorry, a description is unavailable.
strobe-classb-v1.6.t..>
Sorry, a description is unavailable.
strobe-classb-v1.7.t..>
strobe-classb 1.7 - strobe-classb is a very small, fast scanner which operates over class B networks and a perl script which uses it to scan for open e-mail relays. By David Luyer.
strobe103_tar.gz
Sorry, a description is unavailable.
subscan.tar.gz
Domain/subnet scanner. By b4b0.
sunsniff.c
Sorry, a description is unavailable.
swatch-2_2_tar(1).ta..>
Sorry, a description is unavailable.
tcpscan-1.02.tar.gz
tcpscan v1.02 - TCP port scanner. By Alexey Semenov.
tcpscan.pl
Sorry, a description is unavailable.
tds-0.02.tar.gz
TDS 0.02 - Toplevel Domain Scanner is a tool for scanning through DNS records. It allows you to plug scanned data into security software that checks your networks for holes, or look for weaknesses in other networks. Changes: Major change in 0.02 from 0.01 was the switch to using Net::DNS. This gives us more control, a bit more speed, and our queries seem faster since we can choose exactly what we would like to receive. By Alex Knight.
telnetdcheck.pl
Scans class C subnets quickly for hosts with telnet daemons running. By Packet Storm Security. Yeah, we know it's nothing new and may be useless to you, but we needed it, so we ripped some fine code from David Weekly (about 98% his code) and modified it to suit our needs. Requires perl, libnet, MD5, MIME::Base64, HTML::Parser, libwww.
traffic-vis-0.20.tar..>
traffic-vis v0.20 - traffic-vis is a network monitoring/auditing tool that can plot communications between hosts on a TCP/IP network. By Damien Miller.
traffic-vis-0.21.tar..>
See above description.
traffic-vis-0.22.tar..>
See description above.
traffic-vis-0.23.tar..>
See description above.
trickscan.c
Trickscan is a portscanner and wingate scanner in one. By Sharper Image
ts_v.1.tar.gz
ts v.1 socks 5 scanner - ts will scan for open socks 5 servers on user-defined subnets, ports, and with adjustable number of clones. Another fine release from scut.
tscan.c
threaded tcp port scanner 1.1 - september 1999. By Mirage
ucgi1565.zip
CGI vulnerability scanner version 1.56. Checks for over 90 CGI vulnerabilities. Tested on slackware linux with kernel 2.0.35-2.2.5, Freebsd 2.2.1-3.2, IRIX 5.3, DOS, and windows. By su1d sh3ll of UnlG
ucgi200.c
CGI vulnerability scanner version 2.00. Checks for 173 CGI vulnerabilities. Tested on linux, freebsd, and irix. By su1d sh3ll of UnlG
vanilla.sh
vanilla.sh is a simple tcp portscanning utility (ala strobe) for non-root users. By ben-z.
vetemass.tar.gz
VeteScan updated to be capable of doing bulk scans. Courtesy of VetesGirl.
vetesBX-01-12-2000.t..>
Vetes.bx is a remote vulnerability scanner for the BitchX irc client. Includes scans for rpc services, bind version, and windows trojans. Homepage here. By Vetesgirl
vetesTCL-01-12-2000...>
The Vetestcl package contains various TCL scripts with the same functionality found in the VeteScan package. You can load the scripts within an Eggdrop bot to make sure none of your channel operators or hosts running IRC bots suffers from security vulnerabilities present in the operating system or user space applications. Homepage here. By Vetesgirl
vetescan-01-12-2000...>
VeteScan is a bulk vunerability scanner containing programs to scan Windows NT and UNIX systems for the latest trojans/remote exploits, a scanner for the vulnerabilities of single hosts (with or without host checking), a tool for scanning multiple hosts, a scanner for class A/B/C networks, and fixes for various vulnerablities. Changes: Only shows vulnerabilities now, added Patch: and Exploit to logging so it will tell you where to get patch and/or sploit for the paticular vulnerability. Added lpd scan. Homepage here. By Vetesgirl
vetescan-12-18-99.ta..>
VeteScan 12-18-99 - Vetescan is a bulk vulnerability scanner which contains programs to check for and/or exploit many remote windows/unix holes. Winscan, (scans win/nt systems for latest trojans/remote exploits), vete (single unix vuln/host scanner) vetes (single unix vuln/host w/o host checking), vetemass (mass vuln/host scanner), cmsd mass (a b c scanner and getter), amd (mass a b c scanner and getter), mountd ( mass a b c scanners/getter), sadmin (a b c scanner) Fixes for vulnerablities included along with the exploits. CHANGES: Tools dir, sadmin vuln check and scanner, updated docs dir with new exploits and fixes. Fixed a few bugs. Homepage here. By VetesGirl.
vetescan09-22-1999.t..>
UNIX/Win remote vulnerability exploit scanner with Fixes for Vulnerabilities. based on ben-z fts-rvscan scanner. Includes: WINSCAN (scans win/nt systems for latest trojans/remote exploits), VETE (single vuln/host scanner) VETES (single vuln/host w/o host checking), VETEMASS (mass vuln/host scanner), CMSD mass/get (a b c scanner and getter), AMD/get (mass a b c scanner and getter), MOUNTD/get ( mass a b c scanners/getter), many exploits, Fixes, and utils included. Courtesy of VetesGirl.
vetescan10-06-1999.t..>
vetescan, a bulk vulnerability scanner. Includes, according to the documentation: WINSCAN (scans win/nt systems for latest trojans/remote exploits), VETE (single vuln/host scanner), VETES (single vuln/host w/o host checking), VETEMASS (mass vuln/host scanner), CMSD mass (a b c scanner and getter), AMD (mass a b c scanner and getter), MOUNTD (mass a b c scanners/getter), many exploits, Fixes, and utils included. vscan.tcl wscan.tcl nmap.tcl. Changes in this version: Everything goes a lot faster and is more accurate, scans for rpmmail vuln, fixed the OS detection, removed nlockmgr scan as the exploit was a hoax, added vscan.tcl wscan.tcl and nmap.tcl (just pico nmap.tcl change the paths and load nmap.tcl in your egg.config). By VetesGirl and RainMakir @ efnet.
vetescan10-11-1999.t..>
vetescan, a bulk vulnerability scanner. Includes, according to the documentation: WINSCAN (scans win/nt systems for latest trojans/remote exploits), VETE (single vuln/host scanner), VETES (single vuln/host w/o host checking), VETEMASS (mass vuln/host scanner), CMSD mass (a b c scanner and getter), AMD (mass a b c scanner and getter), MOUNTD (mass a b c scanners/getter), many exploits, Fixes, and utils included. vscan.tcl wscan.tcl nmap.tcl. Changes in this version: Fixed a few errors in vetescan and winscan, updated the cmsd, amd, and mountd scanners, took tcl out of this package. Updated cmsd exploit. vetemass can now mass scan ranges of IP addresses. By VetesGirl and RainMakir @ efnet.
vetescan10-26-1999.t..>
UNIX/Win remote vulnerability exploit scanner with Fixes for Vulnerabilities. based on ben-z fts-rvscan scanner. Includes: WINSCAN (scans win/nt systems for latest trojans/remote exploits), VETE (single vuln/host scanner) VETES (single vuln/host w/o host checking), VETEMASS (mass vuln/host scanner), CMSD mass/get (a b c scanner and getter), AMD/get (mass a b c scanner and getter), MOUNTD/get ( mass a b c scanners/getter), many exploits, Fixes, and utils included. Changes: Took all the rpcinfo processes out and it only runs rpcinfo once which makes it go faster. Added a few more vuln checks (keeping up to date with Remote vulns that have came out on bugtraq, securiteam, packetstorm, and security bugware. Updated all the mass scanners (amd,cmsd,mountd). Homepage here. By VetesGirl.
vetescan_solaris.tar..>
Remote vulnerability scanner for Solaris. Requires nmap and netcat. Courtesy of VetesGirl.
vetestcl-12-26-99.ta..>
The Vetestcl package contains various TCL scripts with the same functionality found in the VeteScan package. You can load the scripts within an Eggdrop bot to make sure none of your channel operators or hosts running IRC bots suffers from security vulnerabilities present in the operating system or user space applications. Changes: Bugfixes, a modified nmap.tcl, new binds (!rpc !bind) for rpc.tlc and bind.tcl, faster scanning, and more accuracy. Homepage here. By Vetesgirl
vetestcl10-10-1999.t..>
vetetcl: TCL version of vetescan, for use with eggdrop. Updated: forgot to add the scanners to the 1st release. By VetesGirl and RainMakir @ efnet.
vetetcl.tar.gz
vetetcl: TCL version of vetescan, for use with eggdrop. By VetesGirl and RainMakir @ efnet.
warscan-0.7.2.tar.gz
Warscan 0.7.2: An Internet Scanner Dispatch - Using Warscan anyone can automate efficient large-scale security tests of any kind on entire networks at a time. Warscan is simply the front end that generates IPs and dispatches your testing script. It will take anything from a single hostname (which likely defeats its purpose) to a Class A domain IP, to reading in a file of predefined hosts (IP or domain). Warscan is not an exploit of any resource, by any means. It is simply a vehicle for automating any test exploit in an efficient, timely, and large- scale manner. Much in the same style of IPD, Warscan can retrieve its list of hosts from a flat text file, or instead you can ask it to generate the hosts for you. Once it has its hostlist, it will then call the script you specify (inside Warscan) with a single argument of the hostname to scan. So what does this mean? Basically, anyone with a security exploit can automate their exploit over large numbers of hosts in a relatively short amount of time. By nocarrier.
wbscan.tar.gz
zipp0.c but enhanced to scan for wingates, just pile up all the bcast/wgates addys into one file and this program will check them for you and set them on another file. By Misteri0
wftpd-scan.tar
Exploit for Wu-ftpd 2.5 overflow - In spanish. Homepage here. By Alt3kx_h3z
wgate_tar.gz
Sorry, a description is unavailable.
whisker-1.2.0.tar.gz
whisker is what I've dubbed a 'next generation' CGI scanner. It is Scriptable. It's a programming-ish language that is tailored to do lots of flexible web scanning. Very stealthy. I've implemented anti-IDS checks into the scan. Whatmore, I've tested it...and let's just say I haven't seen an IDS so far catch a scan when all the IDS evasion switches are used. ;) Includes over 130 checks. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host support. Proxy support. Changes: added patch by Philip Stoev (philip@einet.bg) to bounce-scan off of AltaVista's AddURL mechanism. A few limitations, but still very cool. added switch to bounce-scan off of Anonymizer. updated and added various scan scripts. Written in perl by rain forest puppy / ADM / wire trip
whisker-1.3.0a.tar.g..>
whisker is what I've dubbed a 'next generation' CGI scanner. It is Scriptable. It's a programming-ish language that is tailored to do lots of flexible web scanning. Very stealthy. I've implemented anti-IDS checks into the scan. Includes over 200 checks. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host support. Proxy support. Changes: 8 new anti-IDS tactics, scan SSL, alternate file formats, distributed scanning, 200 vulnerabilities, 100 servers, multi-threaded front end, and distributed proxy fixes. Written in perl by rain forest puppy / ADM / wire trip
winhackgold.zip
Winhack Gold is a program for Windows that scans blocks of IPs for open file shares that you can access, as featured in News Bytes.
winscan.zip
WinScan is a program to scan C subnets for WinGate proxy software on port 23.
wscan20.zip
Warp Scanner 2 - Very fast TCP port scanner for Windows platforms. By Acid Warp.
yaps10.zip
Sorry, a description is unavailable.
yaps11.exe
Yaps v1.1 - a full-featured, easy-to-use tcp portscanner. Multi-threaded (up to 4096 hosts at once) and with plenty of options. By Regsoft.
yaps12.zip
Yaps v1.2 is a Windows95/NT intelligent IP port scanner. It can quickly (multithreaded) analyze a single computer or identify all computers on a specified network. Features: Scan a single host by name, Scan a range of hosts by IP address, Scans multiple hosts simultaneously, Generates reports in HTML format, Scan TCP ports over a user defined range of ports, Identify Web server version and home page title, FTP report with anonymous logon test, Report on telnet response, Report on NNTP, SMTP, and POP servers, Report on Finger response, User defined (not system default) timeout, Scan Windows (SMB) Networks, even across the Internet, Scan the unpriviledged ports up 65535, Uses multiple asynchronous sockets to scan hundreds of times faster, Complete control over which services are scanned, ICMP echo (ping) test, Option to continue if ping fails, Scan up to 4096 hosts at one time, Define multiple ports and ranges of ports to scan, Enter license code to make fully functional, Scan for DNS Server and report version level, Better termination of canceled scan, Standard install program using InstallShield, Standard help file format. By Regsoft.
zipp0.c
Broadcast address list cleaner. Takes a list of broadcast addresses as input, pings them all, and returns the addresses that give multiple responses. By misteri0
zylyx-0.1.1.tar.gz
Sorry, a description is unavailable.