an easily configurable, feature-rich, portable command-line SQL tool (works with mysql, oracle, pgsql, mssql!, and more)

Click here for more info.

advanced packet sniffer/injector with the features of all sorts of programs from tcpdump to ngrep to dsniff

Click here for more info.

a calculator with userland namespace, list operations and advanced base conversion (ascii/bin/dec/hex/oct/dotted dec|hex|oct/bcd/packed bcd/etc)

Click here for more info.

C++ header I wrote for 'quantum superpositions'. this allows a layered data type for easy arithmetic comparisons. for example, when you include the header in your programs, you can now compare an array or list of numbers or chars to something else. good examples and description is in the header file, check it out! examples:

Click here for more info.

this is just a proof of concept I wanted to make which spoofs routes when someone traceroutes you. that means if someone traceroutes your host and you're running this program with any ips, the user tracerouting you will see those ips as routes before they see your ip as the last hop

Click here for more info.

this program attempts to kill all sniffers/network monitors/IDSs on your local network or a remote host by using different denial of service attacks on passive network monitors

Click here for more info.

program I wrote (still beta) that uses Packet:: to arp poisen a switch, meaning...say you're on a switch and you can't sniff/inject into anyone elses connections, you can use this to actually make all machines on the network think you are that IP, then your box forwards those packets to the real machine via eth packets (you'd have to use ip forwarding for that) enabling you to sniff them up without even setting your eth device in promiscuous mode

Click here for more info.

an advanced application for automated, remote CGI vulnerability discovery of CGIs with unknown code

Click here for more info.

old program I worked on as a simple 'replacement' of telnetd, has some nice things such as pty opening so all the good ANSI stuff can pass through the socket and some other fun stuff

Click here for more info.

program that uses Tk for a GUI, allows you to inject tcp/udp/icmp packets with a nice little interface

Click here for more info.

same as above but for console

Click here for more info.

this program is neat since it allows you to ping a host through multiple protocols such as ICMP, tcp, etc...but it doesn't always use the actual ICMP header all the time, it will use different methods to see if a host is up for systems that block off icmp requests

Click here for more info.

an identd daemon that controls it's connection raw, not using functions such as socket(), send()/recv(), etc. as an example 'base' for other raw daemons

Click here for more info.

an old 'backdoor' I made that doesn't open any ports and allows you to run programs remotely with a client that spoofs the source of the host and portscans will never find the backdoor since it only looks for certain types of packets and needs no 3way handshakes

Click here for more info.

this is a program that allows you to switch between using your microphone and playing random mp3s on a live mp3 server for anyone to connect to. you can have something like a small radio show, have people listen to music then switch over to microphone and talk about music and then play some more music when everyone starts disconnecting :)

Click here for more info.

RC4 encryption in 146 bytes of code

Click here for more info.

1st place winner in the toorcon password challenge. the challenge was to create an algorithm/program that generates passwords for users that are easy to remember for them but difficult to crack/brute force for others

Click here for more info.

2 functions to addon to programs, an encryption function and checking of a plain text password and encrypted password to see if they match

Click here for more info.

my version of the original 531-byte qrpff-fast (DeCSS descrambling code). i was able to cut it down to 504-bytes using the same algorithm so no speed cuts of any sort

Click here for more info.

my version of the original 526-byte qrpff (DeCSS descrambling code). i was able to cut it down to 500-bytes using the same algorithm so no speed cuts of any sort

Click here for more info.

an enigma 3 rotor simulation program...takes you back, doesn't it?

Click here for more info.

stand alone win32 executable for adding https support to a VNC+http server

Click here for more info.

converting perl code to 'nothing' and executing it from 'nothing'

Click here for more info.

this is an automated IRC bot from a few years back, it connects to an IRC server, joins a channel and automatically queues up specific files within DCC Fservs. has resume support and automates the downloading of files as quickly as possible from multiple sources

Click here for more info.

recursively scans Apache dir structures looking for MP3s and downloads them (doesn't go below specified directory unlike other programs) Win32 binary>

Click here for more info.

this is a program I made for Caezar's Challenge, 5B at DefCon 9. it recursively scans all pages it can find on a specified host and attempts to find CGI holes remotely and gives you an example CGI exploit for everyone it finds (see screamingCobra)

Click here for more info.

a replacement of perl's h2ph (C header to perl header), this does stuff like convert structs to hashes, create the %SIZEOF hash for the size in bytes of actual structs, and other stuff. to be used with Packet::

Click here for more info.

an IRC operator and channel service I specifically wrote for SUIDnet, an IRC network which I run a big chunk of (irc.LucidX.com:6667 or with SSL at irc.LucidX.com:9999). I do actaully spend a lot of time with this occasionally so it has evolved

Click here for more info.

program that takes a list of C/C++/header files and looks through all of them for a regexp but recursively, which can be neat. say you're looking for a certain function in a program, but it's not in that program, and it's not in any of the headers that program uses, it would have to be in one of the headers of one of the headers, or could even go further or further. greph.pl will look all through these and keep on looking recursively without repeating files

Click here for more info.

this allows you to run one command on multiple files when that command only allows you to run it on one file. an example is tar, say you want to tar -xvf a few different tarballs, but tar only allows you to do one at a time. with mass.pl you can easily do something like ./mass.pl 'tar -xvf *.tar'

Click here for more info.

this lets you take a normal perl program and easily convert it to a module, making the easy work easier :) good to use when you're doing this with a lot of programs and want something automated

Click here for more info.

program that uses Tk as a GUI to interface with mkisofs and burncd to easily burn cds

Click here for more info.

old and simple port scanner I made, first time I used Tk also

Click here for more info.

code for local Microsoft Outlook contact database security evasion (has not been successfully done before) to gain remote access to protected contact data

Click here for more info.

this is actually an old application that I just dug up. it's useful for easily creating small, easily distributable cracks/patches for win32 binaries

Click here for more info.

my algorithm for automatic bug/exploit discovery in CGIs for Caezar's Challenge (see screamingCobra)

Click here for more info.

algorithm for automatic bug/exploit discovery in remote software for Caezar's Challenge

Click here for more info.

a buffer overflow exploit generation program I recently wrote to take in certain data and create an exploit for a buffer overflow of a local program. has some neat features. check it out

Click here for more info.

code for the algorithm on bug/exploit discovery in remote software for Caezar's Challenge

Click here for more info.

this will take a binary program, find all of the environment variables, and fill them up with data to attempt to overflow it. it's good with use of `find / -perm -4000`. it will easily help you find some exploitable (through ENV variables) programs and it will also attempt to exploit the program with a basic arguement buffer overflow

Click here for more info.

this is a nice version of v9's getenv program. this retrieves environment variables from a binary program when you don't have the source to it. this can be helpful with finding buffer overflows, especially :)

Click here for more info.

an old advisory concerning infobot, an IRC automated chat bot

Click here for more info.

very old and ugly program I wrote when I started getting into sockets, it takes over IRC DCC connections before they get fully established

Click here for more info.