Section: .. / sniffers /
| /// File Name: |
0x4553-Intercepter.v072.zip |
Description:
|
0x4553-Intercepter is a WinPcap-based sniffer that offers various capabilities including sniffing for password hashes related to ICQ/IRC/AIM/FTP/IMAP/POP3/SMTP/LDAP/BNC/SOCKS/HTTP/WWW/NNTP/CVS/TELNET/MRA/DC++/VNC/MYSQL and ORACLE. It also sniffs ICQ/AIM/JABBER/YAHOO/MSN/GADU-GADU/IRC and MRA protocols. It has a built-in arp poisoning module, can change MAC addresses of LAN adapters, and has various other interesting functionality.
| | Homepage: | http://intercepter.nerf.ru/ | | File Size: | 567426 | | Last Modified: | Jun 18 21:29:42 2008 |
| MD5 Checksum: | 4cf52ad4236bf5a3016dbc1ef9580326 |
|
| /// File Name: |
A-SnIf.c |
Description:
|
A-Snif is a simple packet sniffer, for learning.
| | Author: | Asynchro | | Homepage: | http://www.pkcrew.org | | File Size: | 9500 | | Last Modified: | Dec 2 21:26:45 2000 |
| MD5 Checksum: | 901ef4d027ef03c5eaa9486a363983ac |
|
| /// File Name: |
aimject-0.8.tar.gz |
Description:
|
Aimject facilitates man-in-the-middle attacks against AOL Instant Messenger's OSCAR protocol via a simple GTK interface.
| | Author: | Jon Oberheide | | Homepage: | http://jon.oberheide.org/projects/aimject/ | | Changes: | integrated ARP/DNS spoofing, IP forwarding command execution (linux/*bsd), max screenname length bumped to account for extended names, screenname formatting issue fixed to avoid detection during local message injection | | File Size: | 110024 | | Last Modified: | Oct 20 21:10:34 2006 |
| MD5 Checksum: | 9a7f738fdf4e5122a578141b1acc9cfa |
|
| /// File Name: |
aimject-1.0.tar.gz |
Description:
|
Aimject facilitates man-in-the-middle attacks against AOL Instant Messenger's OSCAR protocol via a simple GTK interface.
| | Author: | Jon Oberheide | | Homepage: | http://jon.oberheide.org/projects/aimject/ | | Changes: | Build support and instructions for win32, win32 binaries/installers using NSIS, icmp redirection disabling, loads of fixes. | | File Size: | 201107 | | Last Modified: | Nov 28 21:53:56 2006 |
| MD5 Checksum: | c3c99efccc658de463165e1a7a94d828 |
|
| /// File Name: |
aimsniff-0.4.tar.gz |
Description:
|
AIM Sniff is a utility for monitoring and archiving AOL Instant Messenger messages across a network which has the ability to do a live dump (actively sniff the network) or read a PCAP file and parse the file for IM messages. You also have the option of dumping the information to a MySQL database or STDOUT. AIM Sniff will also monitor for an AIM login and then perform an SMB lookup on the originating computer in order to match NT Domain names with AIM login names (handles). A basic Web frontend is included.
| | Homepage: | http://sourceforge.net/projects/aimsniff | | Changes: | Better parsing of messages. A Web front end was added to monitor what AIM Sniff has seen. Now uses SMB to look up the NT username of the user's originating IP address. New switches were added, and can be listed with the "-h" switch. | | File Size: | 7125 | | Last Modified: | Sep 11 03:20:43 2002 |
| MD5 Checksum: | f29b11d89fcf6460c72e6cd193764934 |
|
| /// File Name: |
aimsniff-0.5.tar.gz |
Description:
|
AIM Sniff is a utility for monitoring and archiving AOL Instant Messenger messages across a network which has the ability to do a live dump (actively sniff the network) or read a PCAP file and parse the file for IM messages. You also have the option of dumping the information to a MySQL database or STDOUT. AIM Sniff will also monitor for an AIM login and then perform an SMB lookup on the originating computer in order to match NT Domain names with AIM login names (handles). A basic Web frontend is included.
| | Homepage: | http://sourceforge.net/projects/aimsniff | | Changes: | Message parsing has been improved again. The Web frontend had a lot of features put into it, including sorting by the various headings, getting SMB info (if it's in the database) by clicking on a name, multiple pages so that you don't see just the last 50 or so messages, and the ability to adjust how many messages are displayed per screen. | | File Size: | 10726 | | Last Modified: | Sep 20 11:59:03 2002 |
| MD5 Checksum: | 44267033b14514ccbb90d3d2cde070a2 |
|
| /// File Name: |
aimsniff-0.6.tar.gz |
Description:
|
AIM Sniff is a utility for monitoring and archiving AOL Instant Messenger messages across a network which has the ability to do a live dump (actively sniff the network) or read a PCAP file and parse the file for IM messages. You also have the option of dumping the information to a MySQL database or STDOUT. AIM Sniff will also monitor for an AIM login and then perform an SMB lookup on the originating computer in order to match NT Domain names with AIM login names (handles). A basic Web frontend is included.
| | Homepage: | http://sourceforge.net/projects/aimsniff | | Changes: | Added detection of file transfers, version capturing, and getting login information without having SMB enabled. There are also statistics when you exit the program. | | File Size: | 12433 | | Last Modified: | Oct 9 20:40:06 2002 |
| MD5 Checksum: | da5777d934e46506f2116b3126d45cfc |
|
| /// File Name: |
aimsniff-1.0alpha.tar.gz |
Description:
|
AIM Sniff is a utility for monitoring and archiving AOL Instant Messenger messages across a network which has the ability to do a live dump (actively sniff the network) or read a PCAP file and parse the file for IM messages. You also have the option of dumping the information to a MySQL database or STDOUT. AIM Sniff will also monitor for an AIM login and then perform an SMB lookup on the originating computer in order to match NT Domain names with AIM login names (handles). A basic Web frontend is included.
| | Homepage: | http://sourceforge.net/projects/aimsniff | | Changes: | Various enhancements. | | File Size: | 194560 | | Last Modified: | Dec 28 18:26:55 2005 |
| MD5 Checksum: | 17734c6209dbd2632daf7e295a8a830a |
|
| /// File Name: |
aldebaran-3.0.1.tar.gz |
Description:
|
Aldebaran is an advanced libpcap-based network TCP, UDP, and ARP network sniffer which gives a user only a payload from captured data and basic info about addresses and ports (nothing about flags, etc.). This is useful for monitoring data sent by connections and sniffing passwords. It supports filtering packets with not only simple port/address libpcap rules but also payload contents and can send captured data to another host via UDP. It can also encrypt data written to a dump file, analyze interface traffic, and present statistics (packet count, sizes, average speed, etc.) in HTML or a plain text file.
| | Homepage: | http://www.rogala.3d.pl/ | | File Size: | 4096 | | Last Modified: | Jul 17 17:01:53 2001 |
| MD5 Checksum: | 9388ccc391f69ec63a81b66803856dca |
|
| /// File Name: |
aldebaran-3.0.2.tar.gz |
Description:
|
Aldebaran is an advanced libpcap-based network TCP, UDP, ICMP, and ARP network sniffer which gives a user only a payload from captured data and basic info about addresses and ports (nothing about flags, etc.). This is useful for monitoring data sent by connections and sniffing passwords. It supports filtering packets with not only simple port/address libpcap rules but also payload contents and can send captured data to another host via UDP. It can also encrypt data written to a dump file, analyze interface traffic, and present statistics (packet count, sizes, average speed, etc.) in HTML or a plain text file.
| | Homepage: | http://www.rogala.3d.pl/ | | Changes: | This release has ICMP protocol support, the ability to change the process name, kernel support (for hiding in system), server mode (sniffer detection in LAN), sending logs via mail, and switch MAC table overflowing (experimental). | | File Size: | 43151 | | Last Modified: | Dec 8 22:58:35 2001 |
| MD5 Checksum: | 8540089f155cc6886538819e128884d8 |
|
| /// File Name: |
analyzer.exe |
Description:
|
Analyzer v2.02 is a full configurable windows packet sniffer and network analyzer. Developed in a Win32 environment, it works on both Windows 95/98 and Windows NT/2000 platforms. It features a GUI, an analysis engine and a capture program.
| | Author: | Piero Viano | | Homepage: | http://netgroup-serv.polito.it/analyzer | | Changes: | Packet Capture performance greatly improved, support for Windows 2000 added, and many bugs fixed. Requires a packet driver, available here. | | File Size: | 1920509 | | Last Modified: | Apr 5 19:43:43 2000 |
| MD5 Checksum: | c20d32db59004f86123d0117a9753af0 |
|
| /// File Name: |
anger-1.33.tgz |
Description:
|
Anger v1.33 implements a PPTP challenge/response sniffer. These c/r can be input into L0phtcrack to obtain the password, and b) An active attack on PPTP logons via the MS-CHAP vulnerability to obtain the users password hashes. Notice that this also generates the password hashes of the new password the user wanted to use, which can be put into L0phtcrack to get passwords, into a modified smbclient to logon onto a SMB sever, or into a modified PPP client for use with the Linux PPTP client.
| | Author: | Aleph One | | Homepage: | http://www.securityfocus.com/tools/ | | File Size: | 11006 | | Last Modified: | Nov 29 04:20:44 2000 |
| MD5 Checksum: | 3b7bc29328e437c8ba2b02a9985b6c89 |
|
| /// File Name: |
anger.tar.gz |
Description:
|
PPTP Challenge/Response Sniffer & Active Attack Addon for L0phtCrack. Basically, it actively attacks PPTP logon via the MS-CHAP password change protocol version 1 to obtain the LANMAN and NT password hashes. Note that once you get the password hashes, you dont even need to crack the passwords to logon onto an SMB server or PPTP server. There is currently no patch from Microsoft to protect against this.
| | Author: | Aleph One | | File Size: | 9417 | | Last Modified: | Aug 16 20:13:44 1999 |
| MD5 Checksum: | dd906c31a7500f37dac77c3dc448cb98 |
|
| /// Directory: |
/ angst / |
Description:
|
Angst is an active packet sniffer
| | Total Files: | 3 | | Last Modified: | Sep 5 22:55:02 2007 |
|
| /// Directory: |
/ antisniff / |
Description:
|
AntiSniff is an NT tool to detect sniffers on your network. 15 day trial.
| | Total Files: | 11 | | Last Modified: | Sep 5 22:55:05 2007 |
|
| /// Directory: |
/ aps / |
Description:
|
Aps is a small tool for analyzing network traffic.
| | Total Files: | 5 | | Last Modified: | Sep 5 22:55:08 2007 |
|
| /// File Name: |
ApsSetup.exe |
Description:
|
Ace Password Sniffer is a windows executable that captures usernames and passwords sent through http, ftp, smtp, pop3, telnet.
| | Author: | Hongwei Liu | | Homepage: | http://www.effetech.com | | File Size: | 742432 | | Last Modified: | Sep 13 10:26:26 2002 |
| MD5 Checksum: | 2cdeafcee06546e9f6178edfcb199015 |
|
| /// File Name: |
ArpSpyX-1.0-source.tgz |
Description:
|
ArpSpyX is an ARP packet sniffer that displays a list of IP and MAC addresses found by analyzing ARP traffic on your network. It can be used to easily gather MAC addresses of network machines remotely, quickly identify new clients on your wireless network, and identify ARP poisoning attacks by tracking multiple MAC addresses for a single IP address.
| | Author: | Allen Porter | | Homepage: | http://thebends.org/~allen/arpspyx/ | | File Size: | 43848 | | Last Modified: | Sep 10 01:48:37 2004 |
| MD5 Checksum: | 7b3b3bda879a0b7d1db34ae304a4fea2 |
|
| /// File Name: |
arpwatch-2.1a4.tar.Z |
Description:
|
Unavailable.
| | File Size: | 145205 | | Last Modified: | Aug 16 20:13:52 1999 |
| MD5 Checksum: | 7f5ed680480e6b0b1bbf27a5634b0bd4 |
|
| /// File Name: |
assitch-2.6.tgz |
Description:
|
Assitch is a remote packetfilter analyzer, that detects in and OUT rules by doing ACK scanning. (It's useless against state-full filters.) Assitch is 3 years old, but still useful for debugging filter rules.
| | Author: | Thomas Biege | | Homepage: | | | File Size: | 26132 | | Last Modified: | Oct 30 18:46:50 2000 |
| MD5 Checksum: | 3d88df3f893dc36c738211b59fa86817 |
|
| /// File Name: |
brian.c |
Description:
|
Brian.c is a simple tool to effectively convert a switched network (or a part of it) into a shared network so that sniffing can take place. Allows ARP spoofing of any number of machines, includes an internal relay process for relaying packets to the correct destination, provides a gateway switch for spoofing routers, includes various timing options, and includes a DOS switch for spoofing without relaying. Includes everything to turn a switched network into a shared network so that sniffing can take place, in one easy to use tool. Based on ARP poisoning from Ettercap, but unlike Ettercap it works in many-to-many scenarios which are present in shared networks. Tested on Redhat 8, it compiles under Linux. Requires libnet and libpcap.
| | Author: | Kev | | Homepage: | http://www.bournemouthbynight.co.uk | | File Size: | 33848 | | Last Modified: | Dec 2 22:58:35 2003 |
| MD5 Checksum: | fb9951c00ae07464d20360666ecce380 |
|
| /// Directory: |
/ buttsniffer / |
Description:
|
BUTTSniff files.
| | Total Files: | 2 | | Last Modified: | Sep 5 22:55:10 2007 |
|
| /// File Name: |
cdpsniffer-v1.0.tar.gz |
Description:
|
CDPsniffer is a small perl Cisco discovery protocol (CDP) decoding sniffer. It sniffs the network traffic, picks out the CDP packets and prints out the decoded protocol contents.
| | Author: | Max Moser | | Homepage: | http://www.remote-exploit.org | | File Size: | 3542 | | Last Modified: | Sep 12 08:34:59 2002 |
| MD5 Checksum: | a8abba264e411904c953c9b4593c91da |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
