Hack Tool Update

11/10 - Wireless - NetStumbler 0_4_0

For a Swiss Army knife of wireless network diagnostics, “NetStumbler” is saddled with a somewhat unfortunate name. Although it implies a sort of blind luck, NetStumbler is actually most useful for pinpointing details of a wireless network, helping you configure, secure, optimize and discover.

11/10 - Database - SQL Auditing Tools 1.1.0

SQLAT is a suite of tools which could be usefull for pentesting a MS SQL Server. The tools are still in development but tend to be quite stable.

The tools do dictionary attacks, upload files, read registry and dump the SAM. They do this by wrapping extended stored procedures. There is also a tool for doing a minimal analysis of a SQL Server with output as HTML. You need to be ‘sa’ to run some of the tools, but this usually isn’t a problem.

11/10 - Database - db2utils 0_21

db2utils is a small collection of db2 utilities. It currently features three different tools db2disco, db2fakesrv and db2getprofile.

db2disco is used to discover hosts running db2 on the network. It sends an UDP discovery packet either to the broadcast address or to a specific host and collects information regarding the hostname and db2 version.

db2fakesrv responds to discovery packets with a forged hostname and version. The tool was initially written to test the discovery program.

db2getprofile fetches the “DB2 Server Database Access Profile ” from the server. This profile contains information about local and remote database instances known to the server.

11/10 - Passwords - Ophcrack 3.1.0

Ophcrack is a Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method. It comes with a GTK+ Graphical User Interface and runs on Windows, Mac OS X (Intel CPU) as well as on Linux.

11/02 - Sniffer - tcpdump 4.0.0

Tcpdump prints out the headers of packets on a network interface that match the boolean expression. It can also be run with the -w flag, which causes it to save the packet data to a file for later analysis, and/or with the -b flag, which causes it to read from a saved packet file rather than to read packets from a network interface. In all cases, only packets that match expression will be pro cessed by tcpdump.

11/02 - Libraries - libpcap 1.0.0

The Packet Capture library provides a high level interface to packet capture systems. All packets on the network, even those destined for other hosts, are accessible through this mechanism.

10/27 - Sniffer - Wireshark 1.0.4

Wireshark® is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education. It has all of the standard features you would expect in a protocol analyzer, and several features not seen in any other product.

10/27 - Miscellaneous - subversion 1.5.4

The goal of the Subversion project is to build a version control system that is a compelling replacement for CVS in the open source community.

10/05 - Passwords - Cain and Abel

Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols.

10/05 - Web applications - HTTrack 3.43

HTTrack is a free and easy-to-use offline browser utility. It allows you to download a World Wide Web site from the Internet to a local directory, building recursively all directories, getting HTML, images, and other files from the server to your computer.