The CyberUnderground: Digital Voodoo

Buffer Overflow: noun
Desc1: the occurence of a memory address range overspill, oftentimes leaving (spilled) arbitrary code to be executed
Desc2: a location of TCU containing powerful hacker/cracker utilites and documents

Windows Programs

IPEye good stealth port scanner, does syn, fin, null, etc. (very similar to nmap).

Winfo uses a null ipc$ session to gleam all kinds of system info - usernames, share info, etc.

Tini a very small backdoor - basically you telnet in and get a command prompt. this is probalby the best nt/w2k backdoor i've seen.

FakeGina this is a program that acts as the real gina and intercepts logon requests, intercepting usernames and passwords.

Brutus great brute force prog. brutus can bf telnet, ftp, http, ftp, etc. very fonfigurable and can use proxies.

Cerberus Webscan this is the most effective webserver vulnerability scanner for windows I've seen. its commandline, and creates html reports of your targets.

Netcat the tcp/ip 'swiss army knife' ported to win32. play with the insides of tcp/ip - no hacker or system admin should be without this tool.

Haktek a classic - an ip and port scanner, finger, and a decent interface.

WebChk this program will (one at a time) check for and in some cases exploit known cgi vulerabilities. This program is good for newbies learning how cgi is vulnerable.

puTTY the best all around telnet client. putty has support for telnet, ssh, and raw tcp connections.

Sam Spade very handy internet tool - includes webcrawling, zone transfers, whois, and the usual ping/traceroute stuff.

John the Ripper unix password cracker for dos/windows, the 16-bit version. *

L0pht Crack nt password cracker, includes smb packet capture. *

Ogre this is an multi-function nt network scanner. scan subnets, ports, nbt connection info, and common nt and iss vulnerabilities.

Munga Bunga's HTTP Crak use this program to setup 'definition' files such as for yahoo, hotmail, geocities, then brute force them.

WS PingProPack this suite has it all - whois, ip scan, port scan, finger, traceroute, etc. *

WebCrack this program does a good job of brute forcing basic http auth(entication). also supports wordlist variables.

Dripper dialup account ripper - rips dial-up networking passwords from memory chache.

Invisible Keylogger logs all keystrokes to a logfile readable only by you.

NAT netbios auditing tool - brute forces samba servers, including windows shares. *

Legion windows share-scanner. great program. *

Netbus simple but usefull backdoor / trojan / RAT. *

*Files marked with an asteric reside on a different server due to my hoster's maximum file size restrictions

| )ig|t4l \/ood00 3.0 New to hacking / security? Read Digital Voodoo (release 3.0) and demistify the art of compter and internet hacking.

Disclaimer: all programs and textfiles are for educational and informational purposes only. Break the law at your own risk.

Back

News



Buffer Overflow: noun Desc1: the occurence of a memory address range overspill, oftentimes leaving (spilled) arbitrary code to be executed Desc2: a location of TCU containing powerful hacker/cracker utilites and documents Windows Programs IPEye good stealth port scanner, does syn, fin, null, etc. (very similar to nmap). Winfo uses a null ipc$ session to gleam all kinds of system info - usernames, share info, etc. Tini a very small backdoor - basically you telnet in and get a command prompt. this is probalby the best nt/w2k backdoor i've seen. FakeGina this is a program that acts as the real gina and intercepts logon requests, intercepting usernames and passwords. Brutus great brute force prog. brutus can bf telnet, ftp, http, ftp, etc. very fonfigurable and can use proxies. Cerberus Webscan this is the most effective webserver vulnerability scanner for windows I've seen. its commandline, and creates html reports of your targets. Netcat the tcp/ip 'swiss army knife' ported to win32. play with the insides of tcp/ip - no hacker or system admin should be without this tool. Haktek a classic - an ip and port scanner, finger, and a decent interface. WebChk this program will (one at a time) check for and in some cases exploit known cgi vulerabilities. This program is good for newbies learning how cgi is vulnerable. puTTY the best all around telnet client. putty has support for telnet, ssh, and raw tcp connections. Sam Spade very handy internet tool - includes webcrawling, zone transfers, whois, and the usual ping/traceroute stuff. John the Ripper unix password cracker for dos/windows, the 16-bit version. * L0pht Crack nt password cracker, includes smb packet capture. * Ogre this is an multi-function nt network scanner. scan subnets, ports, nbt connection info, and common nt and iss vulnerabilities. Munga Bunga's HTTP Crak use this program to setup 'definition' files such as for yahoo, hotmail, geocities, then brute force them. WS PingProPack this suite has it all - whois, ip scan, port scan, finger, traceroute, etc. * WebCrack this program does a good job of brute forcing basic http auth(entication). also supports wordlist variables. Dripper dialup account ripper - rips dial-up networking passwords from memory chache. Invisible Keylogger logs all keystrokes to a logfile readable only by you. NAT netbios auditing tool - brute forces samba servers, including windows shares. * Legion windows share-scanner. great program. * Netbus simple but usefull backdoor / trojan / RAT. * *Files marked with an asteric reside on a different server due to my hoster's maximum file size restrictions	\| )ig\|t4l \/ood00 3.0 New to hacking / security? Read Digital Voodoo (release 3.0) and demistify the art of compter and internet hacking. Disclaimer: all programs and textfiles are for educational and informational purposes only. Break the law at your own risk. Back
*News*