makewhatis local dos exploit - overwrites /etc/passwd as soon as makewhatis runs, usually from cron.
cdb2304ec7442f32b6ef9838ca5f9055ec18ed08472c3e7cab9d1e6986337c97
Grazer1's Bait System opens a specific port and logs connections to it. Simple and ghetto way to log Netbus requests.
4d1c34d8c7e1d3019ddb12e8da599860277edd1654a3828364909bb64b8eec09