'ruby' Category
-
A completely useless but fun-to-write program for checking webpage existence
December 14, 2007Code: #!/usr/bin/env ruby def fisher_yates_shuffle(a) (a.size-1).downto(1) { |i| j = rand(i+1) a[i], a[j] = a[j], a[i] if i != j } end lines = File.open(‘/usr/share/dict/words’).collect fisher_yates_shuffle(lines) lines.each { |word| puts “trying #{word.chomp}…” system(“wget -q #{ARGV[0]}/#{word.chomp}.html”) system(“wget -q #{ARGV[0]}/#{word.chomp}.htm”) system(“wget -q #{ARGV[0]}/#{word.chomp}.php”) sleep(1) } (The “sleep(1)” is so you don’t kill the server with traffic, remove […]
-
Network traffic IP Location aggregator (iploc)
December 14, 2007Have you ever been looking through your pcap files (or live captures) and wondered where all the traffic was coming from (or going to)? I have! Well, I’ve written a small (< 150 lines) script to aggregate all of the packet source addresses into a neatly separated CSV (comma-separated values) file. It includes <ip address>,<country>,<city […]
-
Blog layout/pages update
December 13, 2007Just a small update, I finally got around to creating static pages for the important things I’ve posted on my blog. You can view them on the right-hand column of the main page. I’ve created pages for the following projects/topics: About the author Aimsnarf NSM-Console Hopefully this makes it easier to link to a particular […]
-
NSM Console projected module list
November 28, 2007Here’s a list of all the planned modules and completed (struck-out) modules for nsm-console: (if a module is struck out, it’s because I’ve finished making a module for it, it isn’t necessarily in the tarball for download) aimsnarf ngrep (gif/jpg/pdf/exe/pe/ne/elf/3pg/torrent) tcpxtract tcpflow chaosreader bro-IDS snort tcpdstat capinfos tshark argus ragator racount rahosts hash (md5 & […]
-
NSM Console – A framework for running things
November 27, 2007Well, I’ve been hard at work for the last couple of days working on a (hopefully) useful tool for aiding in NSM file analysis (for pcap files, live analysis doesn’t work). Behold! I present NSM-Console! (read more about it here, watch a screencast here) Download the framework here. Keep in mind this framework only includes […]
-
aimsnarf version 0.11 released
November 12, 2007Yea yea, I know, it’s only been a few hours since the first release. Well, here’s the new release with a couple of major todos taken care of: Download the script here. Read about aimsnarf in the previous post about it. Changes in this version: Trillian is now supported, as well as AOL’s AIM client. […]
-
Introducing ‘aimsnarf.rb’ => A simple AIM sniffing tool written in Ruby
November 12, 2007[UPDATE 11/13/07] : version 0.11 released Firstly, download the script here. aimsnarf.rb is a small (~200 lines) Ruby script that I’ve written to sniff and dump AOL IM messages to STDOUT. I wrote this an as alternative to aimsniff, because I really dislike having to install aimsniff and all of it’s dependancies when all I […]
-
PHFOS/CIOSim in 3 languages
November 5, 2007I’ve spent the last week or so writing a customer emulation script for the QA group here to test some of our archiving products. If you’re unfamiliar with PHFOS/CIOSim, take a look here. In short, PHFOS/CIOSim is a small multi-threaded program that randomly selects files in a given directory to open and hold open. I […]