Events: Submitted by Wade on 09-Jan-08 at 12:14am
Pentestmonkey has a great tool called php-reverse-shell. It is for elevation from web server (PHP) upload access to a reverse bindshell. The script will open an outbound TCP connection from the webserver to a host and port of your choice.
Events: Submitted by Wade on 06-Nov-07 at 09:42am
Josh Abraham has added BeEF to BackTrack3. He has also created a tutorial with some of the basic functionality.
New password cracking tool Dnetj and updates to John The Ripper MPI
Events: Submitted by John on 08-Aug-07 at 05:51pm
For those people wanting to crack password hashes, there is a minor update (john-1.7.2-mpi5) to the MPI cluster patch for John The Ripper available Here as well as a completely new tool called Dnetj which is available Here
Dnetj is a client/server wrapper around John The Ripper that allows the use of a central server and any number of cracking nodes, in much the same way setiathome or distributed.net works.
The server loads a set of password hashes, and splits the available keyspace into "work units" of a configurable size. The clients connect and retrieve the hashes, as well as a set of work units to process. Once a client has processed some work units, it connects back to the server to submit the completed units as well as any passwords which have been cracked.
This is a very early release, and although functional there could well be bugs.
Events: Submitted by Wade on 19-Mar-07 at 10:16am
The new version of BeEF has been released. BeEF 0.3.1.6 has new modules employing cutting edge exploitation techiques. It is the first framework/tool that can perform Inter-Protocol Communication and Inter-Protocol Exploitation. It can reach behind hardened firewalls and IDSs to launch ported exploits at arbitrary servers.