首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全工具>其它工具>软件详细
软件名称:  0x333shadow.tar.gz
文件类型:  
界面语言:  简体中文
软件类型:  国产软件
运行环境:  Unix/Linux环境
授权方式:  共享软件
软件大小:  30K
软件等级:  ★★★★☆
发布时间:  2004-08-27
官方网址: http://www.0x333.org 作者:nsn
演示网址:
软件说明:  
擦PP很不错的工具,针对做了手脚的syslogd处理了一下
=============================================================================================================================
how to compile:

OS: Linux, FreeBSD, SunOS, IRIX

Linux:     gcc          0x333shadow.c -o 0x333shadow -D Linux
IRIX:      cc           0x333shadow.c -o 0x333shadow -D IRIX
FreeBSD:   gcc          0x333shadow.c -o 0x333shadow -D FreeBSD
SunOS:     cc/gcc       0x333shadow.c -o 0x333shadow -D SunOS -lsocket

=============================================================================================================================

ABOUT 0x333shadow.

0x333shadow is a tool, that allow you hide your track in a system, it's clean default dirs with a recursive scan
including subdirectory.
Clean all text files, automatic skip ELF or other binary file... clean only "known" binary logs as utmp, utmpx, wtmp,
wtmpx, lastlog.
Syslogd is killed watching in default pid files, so if it hasn't default name "syslogd" will be killed anyhow.
If pid is getted, will be getted binary of syslogd and if option -f exists, will be getted the extra conf, and so
0x333shadow will try read it, and search other logs, if -f doesn't exists, will watch default syslogd's confs, and
every log founded, will be cleaned if will not be empty.
If pid files will not be founded, it will try get pid in another way, opening a pipe to ps, executing a simple:

[*]  "ps -ef/aux | grep syslogd"

If output will not be empty, we get and kill it, same thing will be done for -f option, if exists.
When a log was clenaed, it will be renamed with true name file, and all permission, last access etc.  will be resetted
equal to those of old log.
In more check if acct and snoopy, are in the system, and alert you if are logging your action... and at the end, shadow
will check all interfaces on the system in use, and will try found interface in promisc mode, probable sniffer.

You can specify to 0x333shadow, what action execute, if clean all, only a file, other file, others dirs etc.  if search
in syslogd, or not, if clean to logout... and other stuff...

I included a feature, any system can log, your logout, then, you can use 0x333shadow with option -l and tell it a
numbers of secs that it have to sleep, then when you logout, it will try execute.

mail me davide@looker.it bugs, idea, or other :P

nsn of outsiders.
www.0x333.org
下载地址: 进入下载地址列表
下载说明: ☉推荐使用网际快车下载本站软件,使用 WinRAR v3.10 以上版本解压本站软件。
☉如果这个软件总是不能下载的请点击报告错误,谢谢合作!!
☉下载本站资源,如果服务器暂不能下载请过一段时间重试!
☉如果遇到什么问题,请到本站论坛去咨寻,我们将在那里提供更多 、更好的资源!
☉本站提供的一些商业软件是供学习研究之用,如用于商业用途,请购买正版。
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热门软件
·QQAV V3.1
·天意阿里巴巴企业商务网V3.7上传
·sqljnc.rar
·guanli.asp
·hotspotter-0.4.tar.gz
·svcs.rar
·xsidt-0_1_beta1.tar.gz
·dotNETHookLibrary.tgz
  相关软件
·天意阿里巴巴企业商务网V3.7上传
·hotspotter-0.4.tar.gz
·guanli.asp
·svcs.rar
·dotNETHookLibrary.tgz
·sqljnc.rar
·xsidt-0_1_beta1.tar.gz
·QQAV V3.1
 
  推荐广告
CopyRight © 2002-2018 VFocuS.Net All Rights Reserved