The Exploit Next Generation® SQL Fingerprint tool uses a combination of crafted packets for SQL Server Resolution Protocol (SSRP) and Tabular Data Stream Protocol (TDS) (protocols natively used by Microsoft SQL Server) to accurately perform version fingerprinting and determine the exact Microsoft SQL Server version.
a9da9389d828f4a7b3af5d779e87fb3ae513be7cc7645331252f6b8c668f4c79
The Exploit Next Generation® SQL Fingerprint tool uses well-known techniques based on several public tools capable of identifying the Microsoft SQL Server version (such as: SQLping and SQLver), but, instead of showing only the "raw version" (i.e., Microsoft SQL Version 10.00.2746), the Exploit Next Generation® SQL Fingerprint shows the mapped Microsoft SQL Server version (i.e., Microsoft SQL 2008 SP1 (CU5)).
bf4a7c2d83f70c89142fb442c4c5a64539b4f8b6d26e806e53e2c6a7329d4ac4
Permutation Oriented Programming (formerly known as Exploit Next Generation) introduces a different and powerful approach to IDS/IPS subversion. It can be applied to almost all vulnerabilities and targets the vulnerability triggers. Slides and various code examples are provided.
a8f327e035945e95529355ad1c6e409b7ebe3f14585a03c7a2bbd9196ba731ea
T50 Sukhoi PAK FA Mixed Packet Injector (f.k.a. F22 Raptor) is a tool designed to perform "Stress Testing". It is a powerful and an unique packet injection tool. The author has added in some anti-kiddo tricks.
80f68d67528814b6f2516915067c0d6a66ade4ee9ca86e4b79355e57a18fdfbe
T50 Sukhoi PAK FA Mixed Packet Injector (f.k.a. F22 Raptor) is a tool designed to perform "Stress Testing". It is a powerful and an unique packet injection tool. The author has added in some anti-kiddo tricks.
1a4f11b993b8a80388bd33f4cc736819517ff227be6e83f04f3403aa15bb4234
Exploit Creation - The Random Approach. A paper about using Encore Next Generation techniques to create exploits.
f3cb8d8b88ca60c6aa32ef8d30eccb4d594744d759477f4b2a3fa7bcc60405d3
ENG, or Encore Next Generation, is a false-negative morphic tool that can bypass IDS/IPS via the randomization of return addresses, random writable addresses, junk code injection, and more.
98147acc62fc6afb8a017830278e2f8800d2ded4cc07b1e6e2a203b3c93a17d2
NNG is a tool that creates crafted packets to cause MS02-039 false-positives against IPS/IDS. NNG does not have the same approach used by Snot and Stick, where the main goal is DoSing the IPS. Instead, NNG tries to make IPS/IDS "numbed" enough to have the leakage of real attack.
f759bdb230d8d7811722b13de7ab29bac3a81015503ca1f914d35ddf568cc0b0
Nb-isakmp.pl is a proof of concept exploit for Bugtraq # 3652 - ISAKMP/IKE remote denial of service against Win2k. This code may exploit other bugs as well. Perl version.
6ef25b8d1ba114841a8d4ccc55e140f50dd17a4700763333202bc66f1293b338
Nb-isakmp.c is a proof of concept exploit for Bugtraq # 3652 - ISAKMP/IKE remote denial of service against Win2k. This code may exploit other bugs as well. C version.
f5486daacf1b331ad898ccb4e9629d84abc8a606c7e8d3b2b80234edda1df027
Signatures.pl is a tool to check fingerprint signatures. Tested on Linux, all comments are in Portugese.
853e57deb8cc4ec4067d2875ab05a7fcfe9615041b0d8641fc515bce387f6cd9
farpce.pl - Force ARP Cache Entries. Force ARP Cache Entries Perl Script was designed to help System/Network administrators to prevent ARP Cache Poisoning / ARP spoofing. It's a simple and powerful perl script, based on forcehwaddr by John Goerzen.
901b59be0ff785bba17c8553b59e3c1d7e22c94ccfcbf9bb9750261bd81ae958
The Real Log Clean for Linux OS - Cleans logs under linux and tests the attributes in Ext2fs.
d4951b8435f5e9459b7093cfd71f19f94acf17d0720fd17a57b68b16a7834907