A friend needed a quick and easy way to make backups using 'rsync'; new in 1.8 is support for testing that a file exists in the destination directory before trying to execute the backup. Helpful if the backup destination exists on e.g. NFS or SMB shares. Find the README here. Find the Perl utility here. If you want incremental backups, this tool is not for you.

Two sites provided some useful information on this subject. Here is a note to self.

I had a small issue trying to get a Windows XP .vmdk image to boot in VirtualBox. If you get a BSOD on boot, you might want to read the STOP 7B ERROR notes on how to recover from this problem. Note: You need to obtain a copy of ERD Commander, Hirens Boot CD or similar boot media.

nortel-rtp-stripper.pl is a little Perl hack that strips the RTP headers off Nortel voice streams so they can be imported into Audacity as A-Law, 8000Hz without the annoying "buzzing" you get (if imported directly from Wireshark). Useful if you have obtained voice intercepts on a Nortel VoIP network. (Keywords: UDP port 5200, RUDP, RTP)

This little Perl snippet will prune your directories (e.g. say you want to only have 10 directory entries in a directory and remove the oldest first). Use with care. I'll write a README later, in the meantime, do:

   prunedir.pl -h

This will give you some very basic help. It's probably not the most elegant way of pruning directories (especially as we're calling ls externally rather than using opendir()), but this was a quick hack for a friend who kept asking for more options!

NOTE: If you don't wish to prune certain directories, edit the @IGNORE array within the source code.

Ok, forget the "admin access" hack below. Enabling 'root' access directly is a far easier task and only requires a web browser and intercepting proxy of some kind (Paros, Burp, take your pick). Login with the 'admin' account and go to the "User Management" -> "Change Password" form. Select any user, and enter the password of your choice. Intercept the POST request to /usercp.php and change the value of the 'user' parameter to 'root'. That's it. Root's password has changed to something you know and has telnet access enabled. Login to the NAS directly by telnet'ing to port 2380/tcp. NOTE: My NS4300N is running firmware version 1.1.0.5; this may not work on later versions (let me know though!). You may want to try http://mike.makuch.org/?p=89 if you have a newer firmware.

I resurrected an old tool. The new version will test a bunch of different words and derivatives (e.g. "wwwa", "www-a", "www-01" and so forth). The Perl code still calls the Unix 'host' command though, which is pretty lame, but it works quite well. It still allows the use of wordlists, but not from STDIN. Try "-h" for help. Find it here.

So, I got myself a Promise SmartStor NS4300N, but didn't have much luck with the squashfs filesystem. Luckily Google came to the rescue and someone named "rosvall" posted an excellent solution! Thanks! You can find it here. In case that place disappears, I wrote a README. I also provide the binary I used to enable the login here.

This tool has been lying around in files/ since 2006, but I never wrote an introduction about it until today (July 2010). The 9k1-hijacker.pl tool is useful if you have access to a printer's configuration (usually unpassworded), or if you are able to spoof the printer's IP address (ARP poisoning). Basically, it is used to man-in-the-middle (MITM) print jobs -- it allows you to steal print jobs transparently (it makes a local copy before forwarding it to the printer).

This tool will try to brute force the Open System Lock (OSL) on PBX's that run the Siemens Realitis software. The README describes its use as well as requirements and also gives you a few hints on where to look for information leakage should you come across this thing on your travels.

A tool for *nix users of OpenVPN. It updates the DNS resolver configuration depending on whether you start or stop the OpenVPN process. Essentially, drop the Perl script in /usr/local/bin and add the following lines to your config.ovpn file:

   up /usr/local/bin/resolvfix.pl
   down /usr/local/bin/resolvfix.pl

In 2004, RainbowCrack didn't work on OpenBSD, so I wrote a patch.

SFV is a CRC checker. A friend wanted something that could execute SFV recursively for a given directory, so I wrote a Perl wrapper for it. To use the wrapper, you'll need the SFV tool itself (pdsfv is known to work).

I doubt anyone uses this asset management software anymore, but this is a tool I wrote that will recover the encrypted passwords (yay!).

I needed these ARM binaries for my Linux iPaq, so I built them and thought others might want them too. There could be ipkg's for these things now, so check that first before you use these old ones!

This is a tool to automate exploitation of the old HTTP authentication bypass bug in old Cisco IOS. For more information about the bug, check http://www.securiteam.com/securitynews/5PP0L2K4KY.html.

A piece of Perl that will display stock quotes on your HP printer (among other things).

I wrote this patch for Bourne Again Shell (Bash) v2.04 for someone who was using it as a login shell. There's a README and also some supporting documentation (thanks, Simon!) and a key generation tool for card management. It's a straightforward patch and shouldn't be too hard to port to newer versions if you need to. (It only asks for a challenge when Bash is run as a login shell.)

I was on a plane reading about Beale ciphers, so I wrote some Perl to help solve them (haha!) or make your own! Great fun.

This is a patched version of bindinfo.c by Joshua James Drake. All the patch does is set the source port to 53. I needed the tool to pass through a poorly configured packet filter one day. These days, use 'nmap -g53' with your service scan options set.