Drainbamage.nl blog of Christiaan Ottow

Projects

I'm always working on some projects. Most are private, some are public. Here you'll find the public ones.

Pinta

Pinta is an AMF debugger. In order to use an AMF service, normally one has to write a Flash/Flex application. Using Pinta, the methods of the remote service can be called with specific arguments, and the output can be viewed without having to build a Flash/Flex app.

nschaind

Nschaind is a tool that detects if a certain dns resolver is vulnerable to bind 9 cache poisoning, as described in CVE-2007-2926 (by Amit Klein). The plan is to extend it to bind 8 cache poisoning. In order to detect if a resolver is vulnerable, you don't need to be able to query the resolver directly, but have to trick it into querying you. The tool acts as a DNS server, forces the victim to send a few more queries, and determines if it is vulnerable. It does not perform the poisoning itself (although this is pretty trivial from that point on).

visim

Visim is a website visitor simulator and benchmarking tool. It is a java program that spawns as many threads as you want visitors. Each visitor will repeatedly send a request you configure after waiting a configured time interval. POST requests and file uploads are supported. Response times are saved and compared to the requirements you set, so you can measure the effect of changes to your website or infrastructure.

arpguard

Arpguard is a half-finished tool to detect ARP poisoning attacks. ARP poisoning attacks are ridiculously easy on most LANs, and make for some pretty effective MITM attacks. Arpguard monitors ARP traffic and tries to detect anomalies that indicate ARP poisoning going on. It notifies using xmessage or Growl (Mac OS X) when available.

Tweet This Post