Complemento v0.7.6 - Collection of Tools

A collection of tools, just for fun. It includes LetDown, ReverseRaider and Httsquash.

  • LetDown is a tcp flooder I have programmed after reading Fyodor article "TCP Resource Exhaustion and Botched Disclosure" (you can read it at http://insecure.org/stf/tcp-dos-attack-explained.html).
    It has an (experimental) userland TCP/IP stack, and supports multistage payloads for complex protocols, fragmentation of packets and variable tcp window.

NOTE: LetDown is based on Fyodor NDos, it’s not about vulnerabilities disclosed by Outpost24 team.

  • ReverseRaider is a domain scanner that uses brute force wordlist scanning for finding a target subdomains or reverse resolution for a range of ip (thanks to Jeremy Brown and his tool DomainScanner for the idea. His blog is: http://jbrownsec.blogspot.com/).

It supports permutation on wordlist, IPv6 and some DNS options.

  • Httsquash is an http server scanner, banner grabber and data retriever (there’s a GUI interface for it). It can be used for scanning large ranges of ip for finding devices or http servers.

It supports IPv6, various http requests and experimental fingerprint, based on httprecon signatures (http://www.computec.ch/projekte/httprecon/).

Required libraries:

LetDown:

  • libnet (http://www.packetfactory.net/libnet/).
  • libpcap (http://www.tcpdump.org/).
  • python-dev (http://www.python.org/).

ReverseRaider:

  • c-ares (http://c-ares.haxx.se/).

HttSquash:

  • posix threads (pthread).
  • libcurl (http://curl.haxx.se/libcurl/).

More information: here

Post scriptum

Compliance Mandates

  • Network Discovery :

    PCI DSS 11.2, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Related Articles

Complemento
Network Discovery
Vulnerability Scanner