Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

ftp-spoof.pl

🗓️ 17 Aug 1999 00:00:00Reported by ManicXType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 22 Views

TCP server script listens on port 21 to spoof FTP connections and capture credentials.

Code
`# This is a simple tcp server that listens on port 21  
# unless another is specified.   
# The possible uses of this are;  
# Ftp has no encryption for passwords and they are  
# sent in plain text under the right conditions.  
# Most ftp programs have a text file called <program-name>.ini  
# which will store the info like site-name, user-name, encrypted  
# password and account-name. Instead of trying to decrypt the   
# password for each different application (ws_ftp etc)  
# do this.   
# Edit the <program-name>.ini   
# Wherever there is a site-name change it to 127.0.0.1  
# Start your this perl scipt  
# Open your ftp program and click connect  
  
# Most of this coding was already in the /perl/eg/ folder  
# you can find the orginal version there ..   
  
print "===========================\n";  
print " Manicx local FTP spoofer\n";  
print " www.infowar.co.uk/manicx/\n";  
print "===========================\n";  
  
($port) = @ARGV;  
$port = 21 unless $port; # Are port is 21 unless specified  
  
$AF_INET = 2;  
$SOCK_STREAM = 1;  
  
$sockaddr = 'S n a4 x8';  
  
($name, $aliases, $proto) = getprotobyname('tcp');  
if ($port !~ /^\d+$/) { ($name, $aliases, $port) = getservbyport($port, 'tcp');}  
  
print "Port = $port\n";  
  
$this = pack($sockaddr, $AF_INET, $port, "\0\0\0\0");  
  
select(NS); $| = 1; select(stdout);  
  
socket(S, $AF_INET, $SOCK_STREAM, $proto) || die "socket: $!";  
bind(S,$this) || die "bind: $!";  
listen(S,5) || die "connect: $!";  
  
select(S); $| = 1; select(stdout);  
  
print "Listening for connection..\n";  
  
($addr = accept(NS,S)) || die $!;  
  
print "Accept ok\n";  
  
($af,$port,$inetaddr) = unpack($sockaddr,$addr);  
@inetaddr = unpack('C4',$inetaddr);  
  
print NS "220\n"; # We are ok for login (send username)  
$user = <NS>;  
print $user;  
  
print NS "331\n"; # user ok send password  
$pass = <NS>;  
print $pass;  
  
print NS "331\n"; # password ok send account  
$acco = <NS>;  
print $acco;  
  
print NS "200\n"; # account ok send what you want.  
  
$resp = <NS>;  
print $resp;  
  
print NS "451\n"; # bye bye baby`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Aug 1999 00:00Current
7.4High risk
Vulners AI Score7.4
tcp serverftp spoofingcapture credentialsport 21plain text passwords
22