Vous êtes sur la page 1sur 16

Page 1 of 16

File Name:
Description:
Author:
File Size:
Last Modified:
MD5 Checksum:

9x_c1sco.zip
Kills all Cisco 7xx routers running IOS/700 v4.1(x).
Bosplaya of 9x.
3708
Aug 16 20:02:08 1999
e7eea454b42d0c00054933659f627e1e

anwrap.pl
anwrap is a wrapper for ancontrol that serves as a dictionary attack tool against
LEAP enabled Cisco Wireless Networks. It traverses a user list and password list
attempting authentication and logging the results to a file.
Author:
Brian Barto, Ron Sweeney
File Size:
2200
Last Modified: Nov 24 22:29:41 2002
MD5 Checksum: 93482aca62c5745ec9cf65ad1c4c462a

File Name:
Description:

File Name:
Description:
Author:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:
Author:
Homepage:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:
Author:
Homepage:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:

brute_cisco.exp
Brute force utility for Cisco password authentication.
Mr. Parinya Jutasen
3493
Feb 25 03:05:14 2005
eeb80f005ab5a1b5e8a116f897802833
c1zc0-mgx.pl
This is a basic cisco mgx scanner that scans for default passwords.
rotor rotor
http://www.c1zc0.com
747
Oct 26 17:55:26 2005
2b21758183c68db36649bc33d0c73c9e
cb4n6.c
This is a ipv6 banner grabber by c1zc0 Security
rotor rotor
http://c1zc0.com
1280
Oct 26 17:57:35 2005
64a6b14eb310e9d6411f70b649081612
ccsat.txt
CCSAT (Cisco Configuration Security Auditing Tool) is a script to allow automated

http://ciscointernals.com/download/

12/9/2011

Page 2 of 16

audit of configuration security of large numbers of Cisco routers and switches. The
tool is based upon industry best practices including Cisco, NSA and SANS security
guides and recommendations. It is flexible and can report details down to individual
device interfaces, lines, ACL's, AS's, etc.
Author:
Bill Zeng
Homepage:
http://hotunix.com/tools/
File Size:
30663
Last Modified: Feb 9 23:58:37 2004
MD5 Checksum: a6488a98b706e09c0e4077bb4e3d0e40
cge-13.tar.gz
Cisco Global Exploiter is a tool that demonstrates exploitation of the Cisco 677/678
Telnet Buffer Overflow Vulnerability, IOS Router Denial of Service Vulnerability,
IOS HTTP Auth Vulnerability and Cisco IOS HTTP Configuration Arbitrary
Administrative Access Vulnerability, Cisco Catalyst SSH Protocol Mismatch Denial
of Service Vulnerability, Cisco 675 Web Administration Denial of Service
Vulnerability, Cisco Catalyst 3500 XL Remote Arbitrary Command Vulnerability,
Cisco IOS Software HTTP Request Denial of Service Vulnerability, CiscoSecure
ACS for Windows NT Server Denial of Service Vulnerability, Cisco Catalyst
Memory Leak Vulnerability, Cisco CatOS CiscoView HTTP Server Buffer
Overflow Vulnerability, %u Encoding IDS Bypass Vulnerability (UTF), and Cisco
IOS HTTP Denial of Service Vulnerability.
Author:
Nemesis, E4m
Homepage:
http://www.blackangels.it
File Size:
9699
Last Modified: May 1 11:59:03 2004
MD5 Checksum: a236f742c3976c9864d84d55eb11ea7e
File Name:
Description:

cisco-ack-proof-concept.tgz
This document contains details on a proof-of-concept white paper on how to
circumvent Cisco access-lists which rely on only permitting "established" TCP
sessions by establishing communications between a client and server (included)
which never uses the SYN bit. Works on any firewall that accepts all packets
without the syn bit.
Author:
Codex
Homepage:
http://www.phate.net/docs/security/
File Size:
12711
Last Modified: May 31 18:23:32 2000
MD5 Checksum: e7c9032c77ac8938e06fd163cdc9e3fd
File Name:
Description:

File Name:
Description:
File Size:
Last Modified:

Cisco-Conf-0.06.tar.gz
Cisco::Conf - A module and utility for managing Cisco configurations via TFTP.
13906
Aug 16 20:02:08 1999

http://ciscointernals.com/download/

12/9/2011

Page 3 of 16

MD5 Checksum: 17b245a3bd917364b2406c1230ed3de4


File Name:
Description:
File Size:
Last Modified:
MD5 Checksum:

Cisco-Conf-0.08.tar.gz
Cisco::Conf - A module and utility for managing Cisco configurations via TFTP.
15188
Aug 16 20:02:08 1999
01437534bc4dc27cb4663ba844776247

cisco-torch-0.3b.tar.bz2
Cisco Torch mass scanning, fingerprinting, and exploitation tool.
Arhont Team
http://www.arhont.com/
Significant code optimizations and improvements, CIDR notations now taken in as
input properly, more telnet fingerprints added.
File Size:
19386
Last Modified: Feb 25 18:12:50 2005
MD5 Checksum: 9260fe0f901cf84ce934d0dee8e413d0
File Name:
Description:
Author:
Homepage:
Changes:

cisco-torch-0.4b.tar.bz2
Cisco Torch mass scanning, fingerprinting, and exploitation tool was written while
working on the next edition of the "Hacking Exposed Cisco Networks", since the
tools availalbe on the market could not meet our needs. The main feature that makes
Cisco-torch different from similar tools is the extensive use of forking to launch
multiple scanning processes on the background for maximum scanning efficiency.
Also, it uses several methods of application layer fingerprinting simultaneously, if
needed.
Author:
Arhont Team
Homepage:
http://www.arhont.com/
File Size:
25340
Last Modified: Mar 24 02:47:57 2005
MD5 Checksum: 18abd02ebeacf6514b752c54813e6a0a
File Name:
Description:

File Name:
Description:
Author:
Homepage:
File Size:
Last Modified:
MD5 Checksum:

cisco-torch.tar.bz2
Cisco Torch mass scanning, fingerprinting, and exploitation tool. First alpha release.
Arhont Team
http://www.arhont.com/
15853
Jan 26 23:43:21 2005
10de93d7f6267f3ae9fc39a9a5f28ebc

File Name:
Description:

cisco.7xx.passwd.buffer.overflow
Cisco 7xx password buffer overflow; cause DoS and possible router access

http://ciscointernals.com/download/

12/9/2011

Page 4 of 16

compromise.
File Size:
15311
Last Modified: Aug 16 20:02:08 1999
MD5 Checksum: 7bae1d03f43d21588bd5a2bd7ad4597f
cisco.7xx.tcp.http.txt
Cisco 7xx TCP and HTTP vulnerabilities can result in remote Denial of Service
attacks, and with default configurations, remote attacker can use the HTTP server to
make changes to the router configuration, and/or to gain information about that
configuration.
File Size:
18720
Last Modified: Aug 16 20:02:08 1999
MD5 Checksum: 85f7d8a25521bbbdfff27439a3a2ffd2
File Name:
Description:

cisco.c
Snippet of code that will tell you whether remote device is a cisco router or not using
cisco's indent port (1999).
Author:
CyberPsychotic.
File Size:
5074
Last Modified: Aug 16 20:02:08 1999
MD5 Checksum: 6989be7342b251d6a0e411bed93fae94

File Name:
Description:

File Name:
Description:
File Size:
Last Modified:
MD5 Checksum:

cisco.decrypt.palm_pilot.pw_1-0.zip
Palm Pilot program used to decrypt Cisco passwd files.
7122
Aug 16 20:02:08 1999
c788e941a72fd28cc85d389a9e9f5257

File Name:
Description:
File Size:
Last Modified:
MD5 Checksum:

cisco.decrypt.tech.info.by.mudge.tx..>
Decrypting Cisco passwds, info from Mudge.
1522
Aug 16 20:02:08 1999
d369d6f140bc2fad70cea9f9d86b7542

File Name:
Description:
File Size:
Last Modified:
MD5 Checksum:

cisco.pw.decrypt.opl
Cisco passwd decryption code.
3111
Aug 16 20:02:08 1999
013a94a678201559dedd88029c50b444

File Name:

cisco.tar.gz

http://ciscointernals.com/download/

12/9/2011

Page 5 of 16

Denial of service exploit for CiscoSecure ACS for Windows NT Server prior to
release 2.4(3), as described in cisco.00-09-21.ciscosecure. Sends an oversized URL
to TCP port 2002, causing the CSAdmin module to crash.
Author:
Doom and Netsym
Homepage:
http://www.8op.com/rsh
File Size:
7373
Last Modified: Sep 23 15:49:02 2000
MD5 Checksum: 77da9eae9471d12909fc69157a673334
Description:

cisco.txt
Enhancing network security through the use of inexpensive cisco routers. Describes
local router security, turning off the routers services, access-lists, dos protection, and
more.
Spender
Author:
File Size:
9983
Last Modified: Jun 21 15:42:36 2000
MD5 Checksum: 23c3dea35661fb4db5d7b701089cffeb
File Name:
Description:

Cisco6509_Reverse.tar.bz2
Simple C tool and binutils patch with step by step description
(HowTo_Reverse_engineering_Cisco_image.html) how to convert cisco image to
MIPSIV file for reverse engineering. Allows you to dump and disassemble the text
section, tested on a Cisco Catalyst 6509.
Author:
Milos Koprla
File Size:
5617
Last Modified: Nov 21 17:31:06 2004
MD5 Checksum: 69b035d8d5ac135be7f12daf7e8c93d6
File Name:
Description:

File Name:
Description:
Author:
Homepage:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:
Author:
File Size:
Last Modified:

cisco677.pl
Cisco 677/678 Telnet Overflow denial of service perl exploit.
DNV
http://mail.dhbit.ca
2143
May 5 01:32:17 2002
71acdbfebdc481e031687d06bbb810e7
cisco760.c
Cisco 760 Series Connection Overflow. Affected Systems: Routers Cisco 760
Series. Others not tested.
Tiz.Telesup.
5137
May 17 18:34:13 2000

http://ciscointernals.com/download/

12/9/2011

Page 6 of 16

MD5 Checksum: a4074a92cb0b32eac9e0680403c56ee5


File Name:
Cisco_crack.tar.gz
Description:
Cisco Crack is Cisco device login brute force tool.
B-root
Author:
File Size:
10189
Last Modified:
Aug 30 01:33:36 2001
MD5 Checksum:
faaddb2a5074bc9c27bd50bcf9050fcc
cisco_ddos.txt
File Name:
Description:
A PoC mirc script that uses a list of Cisco routers to perform a ddos attack against an
arbitrary IP.
Author:
Chris Turner
File Size:
3129
Last Modified: Apr 17 14:40:42 2006
MD5 Checksum: f422d0feb3763365591e1e75997eac2c
CiscoAuditingTool-v1.tar.gz
Cisco Auditing Tool - Perl script which scans cisco routers for common
vulnerabilities. Checks for default passwords, easily guessable community names,
and the IOS history bug. Includes support for plugins and scanning multiple hosts.
G0ne
Author:
Homepage:
http://www.scrypt.net/~g0ne/
File Size:
57594
Last Modified: May 24 15:37:07 2000
MD5 Checksum: 8d3a3e32c04648d29469a9f37e65caf3
File Name:
Description:

File Name:
Description:
Author:
Homepage:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:
Author:
Homepage:
Related File:
File Size:

ciscobnc.c
Cisco BNC server version 0.9.
chrak
http://www.chrakworld.com
10466
Oct 30 19:18:28 2005
151619f809e707e91d8e41376706fba5
CiscoCasumEst.tgz
Cisco IOS 12.x/11.x remote exploit for the HTTP integer overflow using a
malformed HTTP GET request and two gigabytes of data.
FX
http://www.phenoelit.de
cisco-sn-20030730-ios-2gb-get.shtml
18004

http://ciscointernals.com/download/

12/9/2011

Page 7 of 16

Last Modified: Aug 10 16:32:06 2003


MD5 Checksum: c9ac23b2148d2852017b34f6302f570b
File Name:
Description:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:
Author:
Homepage:
Related File:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:
Author:
File Size:
Last Modified:
MD5 Checksum:

ciscocrack.c
Decrypts encrypted Cisco passwd files.
4498
Aug 16 20:02:08 1999
3a4fc2dba806ec9a714758123883f2a3
ciscocrack2.c
Updated version of ciscocrack.c that works with newer versions of IOS.
Jerome Poggi
http://www.hsc.fr/
ciscocrack.c
7156
Oct 4 00:43:49 2005
164ff33aeb9af60a1ef6fcee097f7638
ciscoDOS.c
This is a denial of service attack against the Cisco 760 series router.
Tiz.Telesup
5185
May 16 17:35:31 2000
0da671f3b179a2e7354d420db7afdabe

cisconuke.c
cisconuke.c reboots cisco routers which have the web-server interface open by
sending invalid data to port 80.
Homepage:
http://www.hack.co.za
File Size:
3807
Last Modified: May 23 13:38:24 2000
MD5 Checksum: 6a5bc7332aeab4221a5c92bf3bcd7bf4
File Name:
Description:

ciscopack.tar.gz
This is the IOS binary image packing and unpacking for reverse engineering
program capable of calculating a correct checksum for these images.
Author:
Janis Vizulis - Arhont Ltd
Homepage:
http://www.hackingexposedcisco.com/
File Size:
3281
Last Modified: Apr 6 14:29:48 2006
MD5 Checksum: b9509e250839dcca02b3fb56fc524b06
File Name:
Description:

http://ciscointernals.com/download/

12/9/2011

Page 8 of 16

CiscoPasswordRevealer.rar
The Cisco Password Revealer - The Cisco VPN Client uses weak encryption to store
user and group passwords in your local profile file. This tool will reveal the saved
passwords from a given profile file.
Author:
HAL 9000
Homepage:
http://evilscientists.de/blog/?page_id=343
File Size:
152218
Last Modified: Oct 25 14:14:44 2005
MD5 Checksum: 55a61b70f4a9a2dcc32bc3a7915fc15b
File Name:
Description:

File Name:
Description:
File Size:
Last Modified:
MD5 Checksum:

ciscopix.txt
CISCO PIX Vulnerability, cracking the 48 bit DES keys that Cisco routers use.
23719
Aug 16 20:02:08 1999
343d71632229d42225246e77cba39c34

ciscos.c
Ciscos.c v1.3 scans class A, B, and C networks for cisco routers which have telnet
open and have not changed the default password from cisco.
Author:
Oki
File Size:
5512
Last Modified: Dec 31 15:14:22 2004
MD5 Checksum: c8d0bd0b1965c7973a76097d542488d6
File Name:
Description:

File Name:
Description:
Author:
File Size:
Last Modified:
MD5 Checksum:

ciscowebdos.pl
Cisco IOS Router DOS attack via a specially formatted web get request.
hypoclear of lUSt.
1932
May 24 15:49:30 2000
109cfbba4b4488a41ee544171aa0cfc5

crashrouter.mrc
Mirc script which crashes Cisco 600 series routers with CBOS of v2.4.2 or below.
Uses proxies.
Author:
Cokaine and Ewadoh.
File Size:
1915
Last Modified: Oct 25 02:23:19 2001
MD5 Checksum: 97fdf05e8a3345e4711fd06920999ae7
File Name:
Description:

File Name:
Description:

eigrp-tools.tar.gz
EIGRP Tools - This is a custom EIGRP packet generator and sniffer developed to

http://ciscointernals.com/download/

12/9/2011

Page 9 of 16

test the security and overall operation quality of this Cisco routing protocol. Using
this tool requires a decent level of knowledge of EIGRP operations, packets structure
and types, as well as the Layer 3 topology of an audited network.
Author:
Janis Vizulis - Arhont Ltd
Homepage:
http://www.hackingexposedcisco.com/
File Size:
10318
Last Modified: Apr 6 14:26:26 2006
MD5 Checksum: 2427a642dadcf7d5d7d931dc69bdadb2
enabler.c
Enabler.c attempts to find the enable password on a cisco system via brute force.
Tested on Cisco 2600's and 12008's and has support for login-pass as well as loginonly devices.
Norby
Author:
Homepage:
http://www.avatarcorp.org
File Size:
7749
Last Modified: Jan 12 19:35:11 2001
MD5 Checksum: 5a3644f71725f36ef010f4e0d84b33c4
File Name:
Description:

File Name:
Description:
File Size:
Last Modified:
MD5 Checksum:

fuckcisco.c
Remote cisco DoS attack.
7318
May 22 14:30:00 2000
ddb5d1742d875d692441b0679b5663b0

glFlow-0.0.2.tar.gz
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links.
The detection algorithm is based on realtime NetFlow traffic aggregation and
analysis. The code is portable across platforms, it should work on every system with
working md4/md5 and pcap implementations, with very little modifications.
Author:
Vlad GALU
Homepage:
http://night.rdslink.ro/dudu/glflow/
File Size:
16520
Last Modified: Jul 9 13:28:00 2004
MD5 Checksum: e534725d6b84adfcfa930cecdcb82289
File Name:
Description:

File Name:
Description:

Author:

glFlow-0.0.3.tar.gz
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links.
The detection algorithm is based on realtime NetFlow traffic aggregation and
analysis. The code is portable across platforms, it should work on every system with
working md4/md5 and pcap implementations, with very little modifications.
Vlad GALU

http://ciscointernals.com/download/

12/9/2011

Page 10 of 16

Homepage:
Changes:
File Size:
Last Modified:
MD5 Checksum:

http://night.rdslink.ro/dudu/glflow/
Added support for fragmented flood detection, using a little hack.
16822
Jul 17 17:49:00 2004
3e0afb9c1dabb7747995050c3dff3e07

glFlow-0.0.4.tar.gz
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links.
The detection algorithm is based on realtime NetFlow traffic aggregation and
analysis. The code is portable across platforms, it should work on every system with
working md4/md5 and pcap implementations, with very little modifications.
Author:
Vlad GALU
Homepage:
http://night.rdslink.ro/dudu/glflow/
Changes:
Fixed building with GCC 3.4.
File Size:
16874
Last Modified: Aug 13 10:20:45 2004
MD5 Checksum: 03f438f432d325440b17cb2dae94060c
File Name:
Description:

glFlow-0.1.1.tar.gz
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links.
The detection algorithm is based on realtime NetFlow traffic aggregation and
analysis. The code is portable across platforms, it should work on every system with
working md4/md5 and pcap implementations, with very little modifications.
Author:
Vlad GALU
Homepage:
http://night.rdslink.ro/dudu/glflow/
Changes:
The DSCP is printed out when there's an event. The IPs are printed in dotted
notation rather than as unsigned long integers.
File Size:
108654
Last Modified: Dec 11 17:09:19 2004
MD5 Checksum: 0294963a9fdda460d06a9980f5ab8e8b
File Name:
Description:

ios-w3-vul.c
Cisco IOS HTTP Server Vulnerability Scanner - This code scans a Cisco
router/switch for vulnerability, and as an option fetching the configuration, without
any authentication as described here. Cisco bug ID CSCdt93862. Tested on Linux
and OpenBSD.
Author:
Bashis
File Size:
4987
Last Modified: Nov 5 01:18:25 2001
MD5 Checksum: 876d41412190e66e4a720813673d4201
File Name:
Description:

File Name:

ioscommands.html

http://ciscointernals.com/download/

12/9/2011

Page 11 of 16

Description:
File Size:
Last Modified:
MD5 Checksum:

Simple command reference chart for Cisco IOS.


47841
Jun 10 12:30:47 2004
62461d73352f0e55dcf35f5295e2405d

iosniff.tgz
Cisco Systems IOS 11.x UDP echo memory leak remote sniffer. The UDP echo
service (UDP port 7) has to be enabled on the device. The bug will cause the Cisco
router to send about 20 kilobytes of data from the interface buffer pools containing
packets in the send/recv/forward queues. This tool will identify IOS memory blocks,
find the router specific offset for packets in the block and decode the packet to the
screen. Note that this is not a full dump of the traffic through the remote router but
rather a subset of received data. Features include a packet checksum cache to
prevent repeated output of the same packet, auto identification of packets and buffer
offsets, and IPv4 decoding.
FX
Author:
Homepage:
http://www.phenoelit.de
File Size:
14594
Last Modified: Aug 10 16:35:45 2003
MD5 Checksum: ad960f073fda285b82dea6d8225ec6f8
File Name:
Description:

IRM_Cisco_IOS_Shellcode_Videos.zip
Three videos from IRM demonstrating the execution of Cisco IOS shellcode in
action.
Homepage:
http://www.irmplc.com/
File Size:
2664914
Last Modified: Oct 22 18:48:53 2007
MD5 Checksum: f2e24002b36bacf97f08dcdcbe8493be
File Name:
ncat-0.1.tar.gz
Description:
ncat is a network config Audit Tool for IOS (and other) configs. ncat reads a master
config file (default ./ncat.conf) and checks one or more config files specified on the
command line against rules found in the master. Rules specify that a particular
chunk of text is either required or forbidden. Once all rules have been checked, a
report is output listing violations.
Homepage:
http://ncat.sourceforge.net
File Size:
35292
Last Modified: Dec 7 00:45:59 2000
MD5 Checksum: 6425ce92fa026fd987c73c76239051ca
File Name:
Description:

File Name:
Description:

nipper-0.10.0.tgz
nipper is a Network Infrastructure Configuration Parser. nipper takes a network
infrastructure device configuration, processes the file and details security-related
issues with the configuration together with detailed recommendations. nipper was
previous known as CiscoParse. nipper currently supports Cisco switches (IOS),

http://ciscointernals.com/download/

12/9/2011

Page 12 of 16

Cisco Routers (IOS), Cisco Firewalls (PIX/ASA/FWSM) and Juniper NetScreen


(ScreenOS). Output is in HTML, Latex, XML and Text. Encrypted passwords can
be output to a John-the-Ripper file for strength testing.
Author:
Ian Ventura-Whiting
Homepage:
http://sourceforge.net/projects/nipper
Changes:
This release introduces support for Cisco Content Service Switch (CSS) devices,
massively enhances IOS support and includes all round improvements to the report
output. This release also includes improved documentation. See the changelog for a
full list of changes.
File Size:
190565
Last Modified: Jun 28 23:59:44 2007
MD5 Checksum: b57200e2f0c153f01c44d906c3f2f494
nipper-0.9.1.tgz
nipper is a Network Infrastructure Configuration Parser. nipper takes a network
infrastructure device configuration, processes the file and details security-related
issues with the configuration together with detailed recommendations. nipper was
previous known as CiscoParse. nipper currently supports Cisco switches (IOS),
Cisco Routers (IOS), Cisco Firewalls (PIX/ASA/FWSM) and Juniper NetScreen
(ScreenOS). Output is in HTML, Latex, XML and Text. Encrypted passwords can
be output to a John-the-Ripper file for strength testing.
Author:
Ian Ventura-Whiting
Homepage:
http://sourceforge.net/projects/nipper
File Size:
139588
Last Modified: Apr 10 02:21:03 2007
MD5 Checksum: ed7f650c4e44664fa8d73035681ace32
File Name:
Description:

nipper-0.9.2.tgz
nipper is a Network Infrastructure Configuration Parser. nipper takes a network
infrastructure device configuration, processes the file and details security-related
issues with the configuration together with detailed recommendations. nipper was
previous known as CiscoParse. nipper currently supports Cisco switches (IOS),
Cisco Routers (IOS), Cisco Firewalls (PIX/ASA/FWSM) and Juniper NetScreen
(ScreenOS). Output is in HTML, Latex, XML and Text. Encrypted passwords can
be output to a John-the-Ripper file for strength testing.
Author:
Ian Ventura-Whiting
Homepage:
http://sourceforge.net/projects/nipper
Changes:
Maintenance release.
File Size:
140429
Last Modified: Apr 12 14:44:44 2007
MD5 Checksum: 32b4883318a7d39b37b0d4880fbea830
File Name:
Description:

File Name:
Description:

nipper-0.9.3.tgz
nipper is a Network Infrastructure Configuration Parser. nipper takes a network

http://ciscointernals.com/download/

12/9/2011

Page 13 of 16

infrastructure device configuration, processes the file and details security-related


issues with the configuration together with detailed recommendations. nipper was
previous known as CiscoParse. nipper currently supports Cisco switches (IOS),
Cisco Routers (IOS), Cisco Firewalls (PIX/ASA/FWSM) and Juniper NetScreen
(ScreenOS). Output is in HTML, Latex, XML and Text. Encrypted passwords can
be output to a John-the-Ripper file for strength testing.
Author:
Ian Ventura-Whiting
Homepage:
http://sourceforge.net/projects/nipper
Changes:
Maintenance release.
File Size:
140184
Last Modified: Apr 22 23:58:21 2007
MD5 Checksum: 6911d8dde1975b046f3d4257370dd097
nipper-0.9.5.tgz
nipper is a Network Infrastructure Configuration Parser. nipper takes a network
infrastructure device configuration, processes the file and details security-related
issues with the configuration together with detailed recommendations. nipper was
previous known as CiscoParse. nipper currently supports Cisco switches (IOS),
Cisco Routers (IOS), Cisco Firewalls (PIX/ASA/FWSM) and Juniper NetScreen
(ScreenOS). Output is in HTML, Latex, XML and Text. Encrypted passwords can
be output to a John-the-Ripper file for strength testing.
Author:
Ian Ventura-Whiting
Homepage:
http://sourceforge.net/projects/nipper
Changes:
Multiple bug fixes.
File Size:
140413
Last Modified: May 15 02:51:13 2007
MD5 Checksum: a1d171709336a1cfd4a0784a9a7d9640
File Name:
Description:

File Name:
Description:
Author:
Homepage:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:

Author:
Homepage:

ocs.c
Compact mass scanner for Cisco routers with default telnet/enable passwords.
OverIP
http://www.hacklab.tk
6829
Jan 30 17:55:14 2005
5ee92e30989dae45e18bf56d7d61ffc9
pixlog-1.0.tgz
pixlog is a utility for compiling useful reports from the syslog messages of a Cisco
PIX firewall. As tens of megabytes of data can be generated by a PIX firewall per
minute, pixlog cooperates with syslogd to parse the data as it comes in, generating
nice looking HTML reports. Screenshot available here.
Matt Post
http://cs.calvin.edu/~mpost89/pixlog

http://ciscointernals.com/download/

12/9/2011

Page 14 of 16

File Size:
6450
Last Modified: Jul 31 18:26:43 2000
MD5 Checksum: beea4fe379972fc95f38c9e39e63faf2
pla-1.01.tar.gz
PIX Logging Architecture is a project allowing for correlation of Cisco PIX Firewall
traffic, IDS, and informational logs. It parses Cisco PIX logs from syslog files, then
pushes the parsed data to a database. It contains a Web-based front end for
displaying and searching the Cisco PIX Firewall logs.
Author:
Kris Philipsen
Homepage:
http://pixla.sourceforge.net/
File Size:
24697
Last Modified: Jul 1 19:58:10 2005
MD5 Checksum: 05544e760c175441ffa10714dfbd8f5a
File Name:
Description:

pla-v2.00.tar.gz
PIX Logging Architecture is a project allowing for correlation of Cisco PIX Firewall
traffic, IDS, and informational logs. It parses Cisco PIX logs from syslog files, then
pushes the parsed data to a database. It contains a Web-based front end for
displaying and searching the Cisco PIX Firewall logs.
Author:
Kris Philipsen
Homepage:
http://pixla.sourceforge.net/
File Size:
85182
Last Modified: Mar 26 23:24:40 2007
MD5 Checksum: fcb1bed53928eba37e1796fcd7ff154c
File Name:
Description:

File Name:
Description:
Author:
File Size:
Last Modified:
MD5 Checksum:
File Name:
Description:

Author:
Homepage:
File Size:

simple.pl
Simple brute forcing utility to audit Cisco network devices.
fugi
3494
Jul 22 18:18:29 2003
08a3fb3f466f8cfe500251aab01abe92
The_Trivial_Cisco_IP_Phones_Comprom..>
The Cisco SIP-based IP Phone 7960 contains severe vulnerabilities which allow
complete control of a user's credentials; total subversion of a user's settings for the IP
Telephony network, and the ability to subvert the entire IP Telephony environment.
Malicious access to a user's credentials enables "Call Hijacking", "Registration
Hijacking", "Call Tracking", and other voice related attacks.
Ofir Arkin
http://www.sys-security.com
214344

http://ciscointernals.com/download/

12/9/2011

Page 15 of 16

Last Modified: Sep 21 04:30:10 2002


MD5 Checksum: a930349ff7419447cdae5e60a6e27c99
thong.pl
Thong.pl is a perl script which exploits several vulnerabilities found in Cisco
products. Includes the Cisco Catalyst ssh Protocol Mismatch dos, Cisco 675 Web
Administration dos, Cisco Catalyst 3500 XL command execution, and the Cisco IOS
Software HTTP Request dos.
Author:
Hypoclear
Homepage:
http://hypoclear.cjb.net
File Size:
3311
Last Modified: Jan 25 02:17:55 2001
MD5 Checksum: d98c376f39aee68581c072f95ed01b71
File Name:
Description:

tomas.zip
Too Many Secrets v0.7beta is a commandline tool to crack the enable secret
passwords on Cisco routers. You need the md5 password hash from the config to run
this tool. It contents dictionary and brute force attacks and a nice feature to combine
brute forcing with a partial known password string.
Author:
Michael Thumann
Homepage:
http://www.ernw.de
File Size:
110960
Last Modified: May 5 01:11:47 2002
MD5 Checksum: 57c254e53082db7dcda8e97ae18e0e02
File Name:
Description:

ttt-1.3r.tar.gz
Modified version of Cisco CIAG's TCP Test Tool ttt. This tool can generate TCP
segments with arbitrary values for any field in the IP or TCP headers. A TCP
payload can be added to the segment by specifying the file with the payload in the
command line or by passing the payload via standard input.
Author:
Cisco Systems Critical Infrastructure Assurance Group
Homepage:
http://www.cisco.com/
Related File:
SlippingInTheWindow_v1.0.doc
File Size:
15559
Related CVE(s): CAN-2004-0230
Last Modified: Apr 23 20:02:33 2004
MD5 Checksum: 7b7dfece36616dda2f4f9647e58d071c
File Name:
Description:

File Name:
Description:

UltimaRatioVegas.c
Phenoelit Ultima Ratio - a Cisco IOS exploitation of a heap overflow and using
actual shell code to upload a new config; all in one UDP packet. Exploits an issue in
the 11.x IOS TFTP server. Works against Cisco 1600 and 1000 series routers, but is
designed as PoC.

http://ciscointernals.com/download/

12/9/2011

Page 16 of 16

Author:
Homepage:
File Size:
Last Modified:
MD5 Checksum:

FX
20909
Aug 18 16:02:33 2002
c89c9794e4f50e92e03e8170a6cdb8ee

http://ciscointernals.com/download/

12/9/2011