Index

Getdns.pl

Getdns.pl can be used to extract the huge list of dns servers that are stored in the-binary to a text file.

Raw.c

Raw.c can be used to listen for traffic using protocol 11 and decrypt any packets received it then outputs these decrypted packets as hex to stdout.

Explain.pl

This script reads decrypted packets as produced by raw.c and explains what they do. For example a typical session could be:

testbox:~/tool# ./raw | ./explain.pl
Set master IP to 65.66.67.68 decoymode 0
Exec '/bin/ls -al /root' and send results back.
Start flooding example.com using DNS floods
Stop all attacks

This tool can be used to get insight into what the hacker is trying to do to your system.