Traditionally, a port scan with a spoofed source IP has been considered unreliable due to the fact that reply packets would not reach back the scanning system, but Dynamic Port Scanner (DPS) technique ensures the reliability of such spoofed scan. The spoofed source IP is dynamically generated at run time and it varies for every [...]

DNS Multiple Race Exploiter is a tool that exploits an inherent flaw in the DNS Server Cache. By sending many queries to a DNS server, that processes recursive queries, along with fake replies, an attacker can successfuly writes a fake new entry in the DNS cache. Also, this type of attack can overwrite an existing [...]

VNCcrack is a fast offline password cracker for the VNC challenge/response protocol. If one can somehow observe a VNC authentication, then VNCcrack can run a dictionary attack against the exchange and attempt to find the password.
It works by scanning a pcap file (as generated by the common tcpdump tool) for VNC challenge/response exchanges, then checks [...]

The sniffy project allows to trace/log the data of any pseudo terminal
in the system. Due to the way the terminal works, such a terminal trace
provides complete information of what happened on the terminal screen and
sniffy is able to display/replay this information.
The sniffy project consist of
- kernel module able to connect/hook on pseudo terminal
- program able [...]

sqlmap is an automatic SQL injection tool developed in Python. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, [...]