Resources
CSRgroup has developed or modified several tools for use during pentesting and assessments. We are happy to release several of these tools to the security community at large, as our way of giving back to the community.
If you find a bug or have a modification you would like us to add, send an email to tools _@_csr-group.com. Please note, that these tools are provided "as is" and are intended to be used for legal purposes only. Unless otherwise noted, all are released under GPL
WARNING: Some of these tools contain files that may trigger Anti Virus programs.
ARB: is a Windows rootkit that is based on System Service Descriptor Table (SSDT) hooking and IRP_MJ hooking. Although this is considered a 1st generation technology, it works pretty well for pentesting. (Warning - AV may trigger on this tool)
ARPSPOOF: Originally written by Dug Song as part of the DSNIFF suite of tools, seems that (at least the version that we found) it is hard coded to work on eth0 only. Not a huge problem unless you want it to work over wireless! So, we modified it to work over any given interface. The catch is that it is old and requires a bunch of older files as dependencies. We have the modified arpspoof.c file and also a modified binary version that will work fine on BackTrack3 and Backtrack4.
DATAPIPE: Datapipe is a port redirector written by Jeff Lawson that runs on both Windows and Unix. The modified CSRGroup version of datapipe accepts standard input to increase stealth when datapipe is run on Unix
MOCAT: is a cross-platform multi-purpose backdoor. Based originally on cryptcat and some mods by shadowlair, we've added a few additional features to our version.. MOCAT works in client/server mode. In addition to the standard netcat/cryptcat functionality, mocat also has additional features. In order to work across various platforms, mocat has implemented a custom transport using a combination of tinyXML and a custom MoXML library. All communications are encrypted using the twofish algorithm.
SCRIPT TOOL: is a utility similar to the Unix version of "script" for use in a windows command shell. During pentesting, it is advisable to keep a copy of all your keystrokes for future reference. Unfortunately, we never could find a decent scripting tool to do this. Luckily, a friend of ours wrote this for us, and we are happy to provide a binary for your use. MD5: 67fc697f91e1c764cd2fc8a9955c4eb2
SPOT: is a program that is designed to conduct a remote "reconnaissance" survey of a Windows Operating System host. SPOT does not require any additional user arguments. SPOT is designed to be compact and run without the knowledge of any remote user. As such, SPOT will only run commands that natively exists on the particular operating system. When run, SPOT will determine the specific Windows Operating System and then run a series of commands that are on that particular O/S to enumerate various configurations and settings.
Wireless Scripts: Just a bunch of bash and perl scripts that we have created to make wireless pentesting a bit easier for us. Optimized for BackTrack3 and BackTrack4.