L0phtCrack 1.5 is a tool for turning Microsoft LANMAN and NT password hashes
back into the original clear text passwords. The program does this using
dictionary cracking and also brute force. L0phtCrack returns not just the
LANMAN password but the NT password up to 14 characters in length.
L0phtCrack includes the ability to dictionary attack or brute force the
network NT server challenge that is used to prevent the OWF (one-way format)
from going across the wire in its plain-text format. Sample network sniffed
challenges are in files sniff.txt and sniff2.txt. This means you can obtain
NT passwords without administrator privileges when you have network access
between the client and the server.
After examining Tripwire and deciding that it was *way* overkill for my
own purposes...
...L5 simply walks down Unix or DOS filesystems, sort of like "ls -R" or
"find" would, generating listings of anything it finds there. It tells
you everything it can about a file's status, and adds on an MD5 hash of
it. Its output is rather "numeric", but it is a very simple format and
is designed to be post-treated by scripts that call L5...
...Unlike Tripwire itself, this is NOT a complete toolkit -- one is
expected to use it as a small, reliable part of a larger system...
_H*
Andrew McNaughton <andrew@scoop.co.nz>
Deadlock is an open source user authentication/password protection
system written in PHP/MySQL and licensed under the GNU GPL. It uses
.htpasswd and .htaccess files to protect any web directory.
libGringotts is a small, easy-to-use, thread-safe C library originally
developed for Gringotts; its purpose is to encapsulate data (generic: ASCII,
but also binary data) in an encrypted and compressed structure, to be written
in a file or used elseway. It makes use of strong encryption algorithms, to
ensure the data are as safe as possible, and allow the user to have the
complete control over all the algorithms used in the process.
For encryptions, libGringotts makes use of the MCrypt and MHash libs by Nikos
Mavroyanopoulos.
COPYRIGHT ISSUES:
This version of 'libident' is hereby released into the
Public Domain. It may be distributed for a fee or without
a fee. We only ask you not to pretend you wrote it.
If you make any changes, please send sources or a diff of it to
us (pen@lysator.liu.se or pell@lysator.liu.se), so we can keep
_one_ unified version of libident available...
COMMENTS:
This is the second stab at a small library to interface to the Ident
protocol server. Maybe this will work correctly on some machines.. :-)
The ident-tester.c file is a small daemon (to be started from Inetd)
that does an ident lookup on you if you telnet into it. Can be used
to verify that your Ident server is working correctly.
I'm currently running this "ident-tester" on port 114 at lysator.liu.se
(130.236.254.1) if you wish to test your server.
This program watches over file creations and deletions in /tmp. Use it
to see how secure and predictable your favourite OS/applications are.
Prelude is a Universal "Security Information & Event Management" (SIEM)
system. Prelude collects, normalizes, sorts, aggregates, correlates and
reports all security-related events.
As well as being capable of recovering any type of log (system logs, syslog,
flat files, etc.), Prelude benefits from a native support with a number of
systems dedicated to enriching information even further (snort, samhain,
ossec, auditd, etc.).
This library provides a framework for easy access to the Prelude database.
Although the creator of scrypt has written an "example implementation", it
doesn't satisfy the "simple library" requirement that prompts developers to
implement it. Therefore, I've written my adaptation, which quite simply pulls
the relevant parts from the original implementation, then adds a number of
harnesses and simplified interfaces. The hope is that through this, any
developer can utilise scrypt.
libgnomesu is a library for providing superuser privileges to GNOME
applications. It supports consolehelper, PAM and su.
libgnomesu will use one the following services (in order of priority),
depending on which one is available:
- consolehelper
- PAM
- su
libgnomesu will use the su-based backend as final fallback, if no other
services are available. This service uses a backend which is a modified
version of GNU su.
libgnomesu comes with the GUI frontend 'gnomesu' and a Nautilus component
for Nautilus integration.
LibTomCrypt is a portable ANSI C cryptographic library that supports symmetric
ciphers, one-way hashes, pseudo-random number generators, public key
cryptography (via RSA,DH or ECC/DH) and a plethora of support routines.