Luigi Auriemma

aluigi@autistici.org

News
Advisories
Proof-of-concepts
Research
Fake_players_bug
MyToolz
Password_recovery
Patches
MyMusic
Amiga_ADF
TestingToolz
RSS
Video
About...
Forum
aluigi.org
backup.aluigi.org
mirror.aluigi.org
MYTOOLZ

Open source programs created by me for fun or requirement
read here if you don't know how to use my stuff


Sections:
multiplatform (Win/*nix/Mac):
  • unlzwx 0.1 (unlzwx)
    another implementation of LZW memory decompressor
  • hosts file/list DNS checker 0.1 (hostsdns)
    tool which checks if the hostnames listed in a file or contained in a hosts file can be resolved or not
    supports multi-threading, logging, delay between each query and allows to choose the type of primary query (A record by default) and a backup one in case the first fails (for example A and then NS)
    Thanx a lot to Andrew Short of Global Advert Servers Blocklist for all the ideas, suggestions and testing of the tool on over 100000 hosts
  • webimgms 0.1.1 (nrg2cue)
    experimental tool for refreshing the same or sequential images and for slide show, works on both local and remote web images and allows to dump them too
    uses SDL, SDL_image and SDL_resize to work (all the needed runtime files for Windows are already in the package)
    this tool is perfect to be used with the recorded streams of jmeetrec and awcamrec or with static URLs like those used to monitor the traffic and other webcams or collections of images
  • NRG2CUE generator 0.1 (nrg2cue)
    simple tool which generates a CUE file from a NRG one (both NRG v1 and v2 supported)
  • Mydown and mydownlib 0.2.3 (mydownlib)
    mydownlib is a HTTP client library I wrote for my tools and Mydown is a complete multi-thread command-line downloader
    it supports almost everything needed, included compression (deflate, gzip and compress) and chunks
    for the moment there is no support for large files (files bigger than 2 gigabytes)
  • MORSE2ASCII 0.1a (morse2ascii)
    experimental tool which decodes the morse codes from a PCM WAV file using a volume/peak based method, the tool can also decode the morse codes from text files
  • Morse generator 0.2 (morsegen)
    simple tool which converts an input file to morse notation (like ...___... for SOS)
  • DTMF2NUM 0.1c (dtmf2num)
    tool for decoding DTMF and MF tones from PCM wave files
    supports any type of wave file (frequencies, channels and 8, 16, 24 and 32 bits), automatic optimizations (DC bias adjust and normalization) and both WAV and raw PCM data
    the program has been successfully tested with many audio files and moreover with those highly dirt and damaged (for example recorded with a microphone in a room or at a very low volumes or with some noise)
    screenshot available here
  • myftpidx 0.1.3 (myftpidx)
    tool for indexing recursively any file available inside a FTP server or one of its folders with options for verbose output, full or relative URL, fields to visualize and HTML output as visible in this screenshot
    sometimes happens to need a specific file or a set of files available on a FTP server but we don't know in what folder they are located or if exist different and most updated versions and copies of that file, so this tool lists all the names and sizes of the files inside a specific FTP directory or just in the entire server for allowing an easy searching of these files in the local list
  • DAA2ISO 0.1.5a (daa2iso)
    program for converting the DAA files (Direct Access Archive, used by PowerISO) to ISO, support multipart files too
    on Windows the tool works from both command-line and GUI (double-click & use)
  • UIF2ISO 0.1.6 (uif2iso)
    program for converting the UIF files (Universal Image Format, used by MagicISO) to ISO, NRG or CUE/BIN depending by the input file
    on Windows the tool works from both command-line and GUI (double-click & use)
    - Proofs of GPL violations in MagicISO
  • Proxymini 0.2c (proxymini)
    a good http proxy server which supports HTTP, HTTP CONNECT (for HTTPS and so on), SOCKS4 (TCP and TCP bind) and SOCKS5 (TCP, TCP bind and UDP).
    it has been designed to be small and for being used in trusted environments where there is no need to complex options and other boring things, just launch it and it will work
  • unlzss 0.1 (unlzss)
    function for LZSS/LZ77 memory decompression
  • unlzw 0.1.2 (unlzw)
    simple LZW memory decompressor, it's compatible with the algorithm used in the compress (*.Z) utility
  • Signsrch 0.1.4 (signsrch)
    useful tool for finding signatures inside files. It can recognize tons of compression, multimedia and encryption algorithms and many other things like known strings and anti-debugging code which can be also manually added since it's all based on a text signature file read at runtime.
    supports also the scanning of the processes and their dumping, the loading of custom signature files and their automatic checking for avoiding errors.
    The tool supports 8, 16, 32 and 64 bits, float and double plus automatic CRC table creation and C style strings
    here is available the latest signsrch.sig file: 22 Aug 2008
    feel free to send me your comments and other signatures if you like this tool
    A wrapper for Immunity Debugger is available on http://www.autistici.org/ratsoul/iss.html
  • CMDsock 0.1.2a (cmdsock)
    simple tool which acts like a telnet server (or shell binder) and should work on any Windows and *nix OS.
    Supports some options for setting a password, changing the listening port and interface, reverse shell (the tool connects to a specific host:port) available also over UDP and automatic LF to CR/LF conversion.
    NOTE that this program is experimental yet and exist some bugs, for example is not possible to stop the execution of the programs and on Windows is not possible to use stdin
  • MyWAV 0.1.1 (mywav)
    simple set of (uncommented) functions for reading and writing WAV headers
    an example of how to use them is WAVEhead in the TestingToolz section
  • BDE64 0.2 (bde64)
    very simple tool which does base64 decoding and encoding
    supports both stdin and stdout, automatic hex dump visualization if has not been specified an output file and automatically ignores spaces, bad chars and uuencode's begin (like begin-base64 644 file) from base64 files during reading
  • Lanfile 0.1.2 (lanfile)
    basic program for sending and receiving files with many features: MD5 hash, multiplatform, large file support, listen and connect mode for using it when is not possible to receive connections, file resuming, compression through LZO, password (APOP way), execution of commands when each file is received, allowed hosts, stdin and others
    Read the text file inside
  • ICMPInfo 0.2 (icmpinfo)
    tool that uses ICMP type 13 and 17 to retrieve the current time of a remote host and its netmask
  • Simple UDP proxy/pipe 0.3a (sudppipe)
    advanced UDP proxy/datapipe/packets forwarder and modifier with multiple functions.
    multiple clients allowed (you can connect many clients you want to this proxy), creation of ACP files (tcpdump capture files, just like a sniffer), packets forwarding (chat style, each packet is forwarded to all the other clients and server connected), packets injection (the tool opens a specific UDP port where you can send your customized packets which will be sent to the server), hexadecimal visualization and plugins support for the modification and visualization of the packets with some example plugins already included (Zdaemon huffman, Doom huffman, Half-life decoding and one for the replacement of the text strings).
    Plugins (which work on both Windows and Linux) are very basic to create and use, just take a look at example_sudp.c for more informations
  • DCE Messenger 0.1 (dcemsg)
    this tool is able to send the DCE messages become infamous due to their spamming usage (Windows XP users know them), as far as I know and in my tests SP2 no longer supports them
  • Net send spoofer 0.2.1 (netsends / netsendz)
    the name says all, it sends the winpopup messages with spoofed source.
    It contains a normal version for Windows and a Netbios-free version which can be used on any operating system since builds the packet in real-time
    Supports also some interesting options like the loading of the message from a file, multiple destinations (IP and hostnames) and the funny message flooding
  • THEGUI 0.3 (thegui)
    THEGUI is an universal front-end for many command-line programs (moreover my tools) which works on both Windows and Linux since uses the GTK library
    It has been successfully tested also versus programs like Nmap and Netcat and many others.
    It is also very easy to use and has tooltips so is enough to keep the mouse pointer over a button to know what it does
    On Windows you REQUIRE to install the GTK+ 2 Runtime Environment available here or here
    A screenshot of Zipweb loaded into THEGUI
  • sendto_spoof.h 0.1.2 (sendto_spoof)
    a sendto() replacement which automatically enables the spoofing of the UDP packets in any existent program.
    Perfect for adding spoofing capabilities to my proof-of-concept code in some seconds.
    Compatible with both Windows and other operating systems and little/big endian CPU
    Read the header of the file for all the needed informations
  • Calcc 0.1.3 (calcc)
    useful command-line calculator (32/64 bit numbers) which supports multiple input and output formats (hex, decimal, octal, base4, binary, string and IPv4/v6 addresses, base64, percentage, time), parenthesis and the following operators: complement, not, shift, rotate, xor, and, or, power, root, byte and bit swapping, multiplication, division, modulus, addition and substraction
    Can be used also like a quick and easy to use numbers converter
    Read the text file inside
  • MyBrute 0.2 (mybrute)
    sets of easy-to-use functions composed just by some lines of code for creating simple brute forcers.
    Supports also wordlists with different types of case scanning
    Read the text file inside and moreover the example (it's easier to use than explaining)
  • CmdDiz 0.1.2a (cmddiz)
    a console interface/translator for the huge amount of free dictionaries of The Dictionary Team
  • DirComp 0.2 (dircomp)
    tool for comparing the files contained in two or more directories
  • Byte2C 0.2a (byte2c)
    great tool for converting files into 8, 16, 32 and 64 bit numbers (float and double types too)
    Supports many options and the manual handling of the format string for the visualization of the numbers like hex, decimal, unsigned and all the various flags used in the printf() C function
    It's useful, for example, when you want to dump a crc table from an executable in a C array and so on
  • Lame Patcher 0.4.2 (lpatch)
    file patcher available with both GUI (on Windows) and command-line mode and a lot of features.
    It is composed by the main patcher (that must be launched by the user that wanna patch its file), the data file containing all the informations for the patch and the data file maker.
    From version 0.4 has been inserted a new mode which adopts text files as patches containing many functions. Read the text file inside
  • PackZip 0.1 (packzip)
    a nice tool to create raw zipped files or inject zip data in any file choosing all the possible options available in the zlib library (compression level, windowBits and strategy)
  • Web passwords and links checker 0.2 (webpwdchk)
    nice tool to check all the URLs in an input text file, scanning them sequentially. Its primary purpose is to check if the username and password for a website are valids but can also check if pages exist or not.
    Read the text file inside
  • Read/Write bits to buffer 0.1.1 (rwbits)
    two functions I wrote to use in my programs to read and write bits (max 32) into buffers, useful for bit packing
  • Offset file unzipper 0.3.1 (offzip)
    an extremely useful tool to unpack the zip (zlib/gzip/deflate) data contained in any type of file (like raw files, packets, zip files and anything else). You must specify the offset where the zip data starts or you can use the useful search options able to find any possible zip data contained into the provided file and the options to extract zipped data.
    It's also possible to choose a windowBits value for more compatibility (for example -15 for common zip files and so on)
  • ether_hdrlen 0.2 (ether_hdrlen)
    two simple functions that return the size of some data_link levels and ethernet types. I have collected the values while playing with Ethereal and Nmap and is enough useful to write simple ethernet sniffers.
  • Simple TCP proxy/pipe 0.4.3 (stcppipe)
    a simple datapipe for TCP connections. It supports multiple clients at the same time (it uses a thread for each client), binding of a specific local IP, a list of allowed hosts, multiple target hosts, reverse connection, dumping of the connections in tcpdump format, a stupid XORing function and more
  • Byte2hex 0.2 (byte2hex)
    converts any byte from a file or stdin to a format of your choice (hex is default but is possible to choice octal, decimal and more since the format string is controlled by you)
  • Hex2byte 0.2.1 (hex2byte)
    converts any formatted number from a file or stdin into bytes.
    The format is chosen by you (hex is default but is possible to choice octal, decimal and more since the format string is controlled by you)
  • show_dump.h 0.1.1a (show_dump)
    optimized function to show the hex dump of buffer to standard output or to write it into a file/stream
  • Formatted tabs to spaces 0.1 (tab2spc)
    useful tool to convert tab in spaces. You can also choice the number of space for each tab
  • Fcomp 0.3 (fcomp)
    binary file compare with support for multiple files and some options
  • Sleepy 0.2.4 (sleepy)
    this tool waits a custom amount of time (milliseconds, seconds, minutes, hours, days, weeks and local/UTC time) and then exits or executes a program specified by the user one or more times
  • Pings 0.2.3 (pings)
    ICMP packets customizer and basic monitor (NOT a spoofer)
  • ZipComp 0.4.1 (zipcomp)
    this tool compares the size and then the CRC32 checksum of the files contained in a zip archive with that of the files in the current directory or in one specified by the user, without lost of time and space
    It can also compare two zip files and also self-extractors
  • MyCRC 0.3 (mycrc)
    easy and fast tool to calculate the checksums CRC8, CRC16, BSD16, 2 types of FCS16, sum16, 4 types of CRC32, sum32, MD2, MD4, MD5 and SHA1 of a file or a stdin stream.
    I use a lot this tool to know what type of checksum is used in the network packets of the applications that use them (the real purpose of the tool)
  • Xor 0.2 (xor)
    simple tool for XORing an input file with a key chosen by the user (can be a file, a string or a sequence of hex bytes)
  • Zipweb 0.4.1 (zipweb)
    utility for viewing the index of remote ZIP packages located on HTTP servers without downloading them.
    The program supports proxy and automatic keep-alive and has a lot of options and useful functions as the interactive download of the files in the ZIP package or their download based on part of filenames (so for example is possible to download a text file of 2 kilobytes from a ZIP file of 3 gigabytes in a couple of seconds) and the CRC32 comparison between the remote files in the ZIP and the local files on the disk.
    It works with both ZIP and auto-extracting ZIP files so use it also with EXE files and can be used also to show only the size of any remote file
  • Charcount 0.1.4 (charcount)
    gives the number of ASCII chars contained in one or more files

    others old or very small tools:
  • Sendtest and Recvtest 0.1 (sendrecvtest)
    these 2 toolz are useful to know how much time is consumed to send and receive a specific amount of megabytes of data between 2 computers (sendtest = client, recvtest = server)
  • CHD 0.1 (chd)
    a very small tool (just some lines of C) that displays each given string in hex, decimal, octal and binary mode
  • POSTStrike 0.1 (poststrike)
    this tool has 2 features, it is an upload bandwidth meter and it is also an alternative type of Netstrike attack, in fact instead of continuely download data (html pages or images) it uses the POST method to upload data and to consume the server bandwidth (old stuff no longer supported)
  • GetCookie 0.2 (getcookie)
    very simple tool to retrieve cookies from specific URLs. It can also show the full header, both header and data or only the data after the header
  • Bincat 0.1 (bincat)
    binary files concatenator (similar to copy /b of Win)
  • TcpCRLF 0.1.1a (tcpcrlf)
    simple TCP tool that uses 2 threads and lets you to use a lot of carriage-return formats (CR, LF, CRLF, LFCR, or none). I have written it only because sometimes I need CRLF when I wanna test some servers
  • Rot13 0.1.1 (rot13)
    Rot13 program, also called "cifrario di Cesare". It simply sets all the bytes of a file to a higher or lower byte (default are 13 positions, but you can choose a custom value and naturally you can also decode the files encoded with this method)
  • GetHEAD 0.1.2 (gethead)
    simple tool to see the HTTP headers of the web servers
  • Cutfile 0.2a (cutfile)
    simple utility for viewing and dumping specific portions of a file. It also supports stdin and stdout
  • Kazaamsg 0.1.1 (kazaamsg)
    Kazaa (Fasttrack protocol) customized messenger: this program sends customized messages to hosts that support the Fasttrack protocol (Morpheus, Kazaa, Grokster, Imesh, etc..). However seems that the current versions of these programs doesn't use this protocol, check it and let me know (old stuff no longer supported)
  • Swapfile 0.2.2 (swapfile)
    this tool can reverse the bytes and also the bits of a file (for example the first byte/bit will be the last)
  • Webcompare 0.1 (webcomp)
    this tool is useful for people that make a lot of updates to their website but are never sure if the material on it is the latest or if there are differences between local and remote files. The comparision is between local and remote filesize only
  • Pdown 0.1.5 (pdown)
    this useful tool is a sequential file downloader to download sequential files from each sequential directory specified by the user. Supports HTTP proxy servers, download recovery and starting of downloads by a specific byte of the file (this option is very useful if you wanna download only a part of a file instead of all!). For sequential filenames uses C language formatters as %d, %02d, %x, and so on
  • HTMLRef 0.2.2 (htmlref)
    very simple tool for checking local HREF and SRC links in local html files with some other functions like MD5 calculation and filesize (old stuff no longer supported)
  • WADExt 0.1.1 (wadext)
    A simple, tiny extractor for the old ID-Software data files (.wad), with identification of MUS files
  • Addmac 0.2 (addmac)
    Utility for adding hosts in the target's ARP table (Win32 need Winpcap)
  • Winarp 0.3 (winarp)
    DoS attack versus Windows machines in LAN using fake ARP packets (Win32 need Winpcap)
  • Rmchar 0.1.1 (rmchar)
    removes all the occurences of a specific byte in a file
  • SplitALL 0.7.1 (splitall)
    tiny utility for splitting and reassembling files in some formats (italian)
  • vBulletin Forum Attachments Downloader (vbfdown) 0.5 (vbfdown)
    good utility to download all or only some of the attachments in the threads of vBulletin forums. The options availables are a lot and the utility is very flexible (with the -x option it should work on a lot of vBulletin forums)
  • POPrmft 0.1.1 (poprmft)
    POP3 remove mails FROM and TO: This tool is very useful to remove a range of mails (typical mass mail or mail bombing) from mailboxes on POP3 servers. It also supports APOP (secure authentication)
    Note that this tool is old and I wrote it only for an occasion in which I needed a similar program.
  • Windows 9x/NT4(old) generic TCP connections spoofer 0.2.1 (tcps)
    nice tool to create spoofed TCP connections to a Win9x/NT system precalculating SYN numbers and could work versus other time based ISN too
    the source code of the previous version is available here

Win32:
  • Mini Winamp input plugins player/converter 0.1 (wampmini)
    basic command-line tool which takes a Winamp input plugin and an input file and plays it or write a wave file or shot the raw pcm data to stdout, very useful in case you want to write a wrapper too
  • QuickRVA 0.1.2 (quickrva)
    cool and easy to use RVA converter with many functions like drag'n'drop, files and processes loading, C style text/binary search, hex visualization of the data at current offset and more
  • Mylibaow32 0.1 (mylibaow32)
    a simple libao clone which works on Windows using waveOut
    Some functions like ao_open_file have not implemented because useless
    Many thanx to David Overton for his great Windows waveOut tutorial
  • Winamp plug-in info 0.1.1 (wainfo)
    useful tool which shows all the informations about the plugins for Winamp, XMPlay, MusikCube and The Core Media Player
    It's extremely useful when you want to update a specific plugin without loosing time to know what is its version, for example you have two plug-ins with the same name and don't know what is the most recent
  • Registry values patterns changer 0.1.1 (regpatt)
    this nice tool lets you to change all the occurrencies of a specific pattern into any value of the Windows registry.
    Read the text file inside and use it ONLY if you know what you are doing
  • Winerrmsg 0.1.1 (winerrmsg)
    some lines of code to convert Windows error codes into comprehensible error messages in your language, supports also socket errors
  • Show Interfaces 0.1 (showifaces)
    simple program to show available network interfaces on Windows
  • MD5 on the fly 0.1 (md5fly)
    simple utility for Win32 that calculates CRC32 and MD5 checksum of a file and shows the result in a MessageBox.
    To use it: copy or link the file md5fly.exe in the SendTo folder of Windows (example "c:\windows\sendto" or "C:\Documents and Settings\USERNAME\SendTo") or use drag'n drop
  • Driverfinder 0.1.1 (driverfinder)
    this simple utility gets the files used by a specific driver (.inf files) so you can reuse the same driver on other computers that don't have it. The best usage of this tool is on pre-installed systems or in case you don't have the drivers of a pre-installed device. It has a list option letting you to see the drivers currently installed (I have tested it only on Win9x!) so you can just choose one of them but you can also choose other INF files manually. I have used this tool some times and it has been very useful.
  • Winerr.h (winerr)
    this is a very useful function I have written to use in Windows programs to manage Winsock and normal console errors (using errno). If you wanna use it remember to add #include "winerr.h" and void std_err(void); in your program. Take a look to some of my toolz as examples.
  • Findadapter 0.2 (findadapter)
    simple utility that shows your Winpcap adapters (need Winpcap)

*nix:
  • Bestsite (tcp pinger) 0.1.1 (bestsite)
    this tool is like an alternative ping program. Instead of using ICMP it uses TCP connections and simply gives you the delay in seconds/100 needed to establish a connection to each server given as command-line argument. It could be useful to choose the best mirror to download a file.