mSec - Macintosh Security: Software

mSec Software

Name: Malevolence 2.0
Author: Marukka
Size: 24 KB
Released: 11.22.01
Description: Malevolence is a tool that allows unprivileged users to view a unshadowed version of the NetInfo password database on a Mac OS X and Mac OS X Server machines. It has multiple ways of doing this. It can either get it from the local NetInfo database, from a remote NetInfo domain, or by exploiting another bug. The reason that the third option is available is because on some systems the administrator may have not given you access to programs that are needed such as nidump and nidomain. If you do not have access to either of these programs then you will not be able to get NetInfo password databases from remote machines.

Name: Disengage 1.0
Author: mSec
Size: 74 KB
Released: 08.10.01
Description: Disengage 1.0 is an application that decrypts the user information stored by FileGuard 4.0 and DiskGuard 1.9.

Name: FWSucker 1.0
Author: mSec
Size: 63 KB
Released: 08.10.01
Description: With the FirmWare Update 4.1.7, Apple has made it possible for certain models to use a password protection before the system boots up. This protection method is similar to the BIOS password protection found on WinTel computers. mSec has already issued an advisory on how to reset the FW password by physical means. FWSucker on the other hand can be used to displays the existing Firmware password on a computer that is already running.

Name: Single-User Patch
Author: Marukka
Size: 53 KB
Released: 04.28.01
Description: This patch disables the ability to boot into single-user mode under Mac OS X. If single-user mode is NOT disabled on the computer then any security measures that are in place could be easily disabled.

Name: DiskOffGuard 1.0
Author: mSec
Size: 32 KB
Released: 04.28.01
Description: DiskOffGuard is a small application that is designed to display the password that is set by the security application DiskGuard 1.9. For more information about DiskGuard security breaches please refer to the mSec advisory on DiskGuard.

Name: Malevolence 1.0
Author: Marukka
Size: 68 KB
Released: 03.28.01
Description: This application allows a user to dump a unshadowed version of the /etc/passwd file regardless of any set privileges. Malevolence is very easy to use, in either Terminal.app or though a telnet session, just run Malevolence and it will create a file called "index.html" in the same directory as Malevolence. Then just open up the web browser of your choosing and view the index.html file that Malevolence created...

Name: n0Guard 2.0
Author: mSec
Size: 196 KB
Released: 05.24.00
Description: nOGuard 2.0 is a program that generates emergency passwords for OnGuard 3.1 and 3.3... These are passwords generated by the program in case the admin forgets his password. They usually give the user complete access to a computer. In theory you'll need all sorts of software registration information for the company to give away the emergency password. In reality you only need to find the algorithm used to be able to generate the emergency password...

Name: PassSecGen 1.0
Author: mSec
Size:194 KB
Released: 03.22.00
Description: This program generates emergency passwords for the Password Security Control Panel. The Password Security Control Panel can be used by PowerBook users to protect their computers. Providing a dialogbox requiring a password every time the Hard Drive is mounted, Password Security provides a convenient security measure. As pointed out by us in a previous advisory on Password Security, it generates an emergency password every time it displays the password dialogbox. This emergency password gives the same access level to the laptop as the owner's password. This is of course a huge security breach allowing anyone, who can figure out the emergency password, to access the computer and even change the owner's password...

Name: CrackIt 2.0
Author: ProZaq
Size: 524 KB
Released: 10.22.99
Description: This program lets users practice "cracking" program registration methods safely and easily. It offers five different registration schemes, similar to those used by commercial software. The idea is then to try to crack these schemes. The different schemes are of different complexity. RegType 1 being the easiest and RegType 5 being the hardest to crack. The beauty of it all is that it's completely legal to crack the different schemes...

Name: DBEX Patch
Author: Epic
Size: 240 KB
Released: 12.13.98
Description: The DBEX Patch will modify your System Suitcase in your System Folder in such a way that this Macintosh will not disable System Extensions at Startup if the Shift Key is Down. Disabling Extensions at Startup Negate the Security that Some Macintosh Security Packages such as Fool Proof Provide because they achieve security by the use of Extensions. However, the User can still boot up off a Floppy or CD to gain full access to your Data...

Under Development

**mSec Software**
	Name: Malevolence 2.0 Author: Marukka Size: 24 KB Released: 11.22.01 Description: Malevolence is a tool that allows unprivileged users to view a unshadowed version of the NetInfo password database on a Mac OS X and Mac OS X Server machines. It has multiple ways of doing this. It can either get it from the local NetInfo database, from a remote NetInfo domain, or by exploiting another bug. The reason that the third option is available is because on some systems the administrator may have not given you access to programs that are needed such as nidump and nidomain. If you do not have access to either of these programs then you will not be able to get NetInfo password databases from remote machines.
	Name: Disengage 1.0 Author: mSec Size: 74 KB Released: 08.10.01 Description: Disengage 1.0 is an application that decrypts the user information stored by FileGuard 4.0 and DiskGuard 1.9.
	Name: FWSucker 1.0 Author: mSec Size: 63 KB Released: 08.10.01 Description: With the FirmWare Update 4.1.7, Apple has made it possible for certain models to use a password protection before the system boots up. This protection method is similar to the BIOS password protection found on WinTel computers. mSec has already issued an advisory on how to reset the FW password by physical means. FWSucker on the other hand can be used to displays the existing Firmware password on a computer that is already running.
	Name: Single-User Patch Author: Marukka Size: 53 KB Released: 04.28.01 Description: This patch disables the ability to boot into single-user mode under Mac OS X. If single-user mode is NOT disabled on the computer then any security measures that are in place could be easily disabled.
	Name: DiskOffGuard 1.0 Author: mSec Size: 32 KB Released: 04.28.01 Description: DiskOffGuard is a small application that is designed to display the password that is set by the security application DiskGuard 1.9. For more information about DiskGuard security breaches please refer to the mSec advisory on DiskGuard.
	Name: Malevolence 1.0 Author: Marukka Size: 68 KB Released: 03.28.01 Description: This application allows a user to dump a unshadowed version of the /etc/passwd file regardless of any set privileges. Malevolence is very easy to use, in either Terminal.app or though a telnet session, just run Malevolence and it will create a file called "index.html" in the same directory as Malevolence. Then just open up the web browser of your choosing and view the index.html file that Malevolence created...
	Name: n0Guard 2.0 Author: mSec Size: 196 KB Released: 05.24.00 Description: nOGuard 2.0 is a program that generates emergency passwords for OnGuard 3.1 and 3.3... These are passwords generated by the program in case the admin forgets his password. They usually give the user complete access to a computer. In theory you'll need all sorts of software registration information for the company to give away the emergency password. In reality you only need to find the algorithm used to be able to generate the emergency password...
	Name: PassSecGen 1.0 Author: mSec Size:194 KB Released: 03.22.00 Description: This program generates emergency passwords for the Password Security Control Panel. The Password Security Control Panel can be used by PowerBook users to protect their computers. Providing a dialogbox requiring a password every time the Hard Drive is mounted, Password Security provides a convenient security measure. As pointed out by us in a previous advisory on Password Security, it generates an emergency password every time it displays the password dialogbox. This emergency password gives the same access level to the laptop as the owner's password. This is of course a huge security breach allowing anyone, who can figure out the emergency password, to access the computer and even change the owner's password...
	Name: CrackIt 2.0 Author: ProZaq Size: 524 KB Released: 10.22.99 Description: This program lets users practice "cracking" program registration methods safely and easily. It offers five different registration schemes, similar to those used by commercial software. The idea is then to try to crack these schemes. The different schemes are of different complexity. RegType 1 being the easiest and RegType 5 being the hardest to crack. The beauty of it all is that it's completely legal to crack the different schemes...
	Name: DBEX Patch Author: Epic Size: 240 KB Released: 12.13.98 Description: The DBEX Patch will modify your System Suitcase in your System Folder in such a way that this Macintosh will not disable System Extensions at Startup if the Shift Key is Down. Disabling Extensions at Startup Negate the Security that Some Macintosh Security Packages such as Fool Proof Provide because they achieve security by the use of Extensions. However, the User can still boot up off a Floppy or CD to gain full access to your Data...

	Name: Proximity 0.1 Size: 508 KB Description: Proxy Utility
	Name: mCracker 0.1 Size: 72 KB Description: Unix Password Cracker

Copyright © 1998-2001 mSEC
About	Advisories	Contact	Links	Software