I write software for a profession but as a hobby I also enjoy taking programs apart and finding out how they work, writing small utilities for various purposes and improving on other people's work by attempting to write smaller and faster code.

Here are several utilities that I thought I might share with the world. Please be aware though that some of these are now quite outdated, obsolete, abandoned or limited in functionality due to changes in Windows operating systems over the years.

Also included are links to many utilities I've written for Foundstone and McAfee during my long employment at those companies, and most recently for my current employer, CrowdStrike. Since these are buried deep within their respective sites they often don't get the attention they deserve.

The majority of the utilities here are 32 bit Windows based programs, with the latest also being 64 bit compatible, written in straight Win32 API using Microsoft Visual C++ and released as freeware.


My own tools (some outdated/obsolete)

BossKey 2.00

A quick and simple virtual desktop switcher.

scrn_bosskey

More...

CD 1.01

A simple but fully functional CD player.

scrn_cd

More...

Emunge 1.01

A text search and replace tool for "munging" emails.

scrn_emunge

More...

Hash 1.04

Compute MD5, SHA1 and CRC32 hashes of files.

scrn_hash

More...

IP2 1.04

Find your WAN and LAN IPs.

scrn_ip2

More...

K9 1.28

Automatic spam email filtering for POP3 email.

scrn_k9

More...

MD5File 1.00

Command line utility for showing a file's MD5 digest.

More...

Neutron 1.07

A network time synchronization program.

scrn_neutron

More...

ProgFont

Programmers utility for creating Windows fonts in C.

scrn_progfont

More...

ScripTrap 1.03

Intercept potentially harmful scripts.

scrn_scriptrap

More...

Shed 1.01

An ultra-fast Windows shared resource scanner.

scrn_shed

More...

Timer 1.00

A visual stopwatch program.

scrn_timer

More...

VSSCrack 1.00

A command line tool to crack Microsoft Visual SourceSafe passwords.

More...

VStat 1.00

A visual netstat program.

scrn_vstat

More...

WotWeb 1.08

A custom web server scanner.

scrn_wotweb

More...

XIP 1.00

A command line tool for extracting IP addresses.

More...


CrowdStrike tools I authored

CrowdInspect 1.0.0.1

CrowdInspect 1.0.0.1 - An advanced and enhanced network status reporter with multiple process and hostname reputation sources.
CrowdInspect 1.0.0.1 (external link)

CrowdResponse 1.0.0.1

CrowdResponse 1.0.0.1 - A Windows console application intended to be used for digital forensics and incident response situations. The initial release includes modules for detailed directory enumeration including file hashes, certificate details etc, a comprehensive process listing feature and a fully fledged YARA scanning module to easily scan all process memory and associated binaries with rules of your choice. The package also includes a tool for easy conversion of the native XML output to CSV/TSV/HTML for easier consumption into other analysis tools such as Splunk. We will be releasing additional modules over the coming months so this is something to keep a constant eye on for updates.

CrowdResponse 1.0.0.1 (external link)


McAfee/Foundstone tools I authored

Attacker v3.0

Attacker v3.0 - A TCP/UDP port listener.
Attacker v3.0 (external link)

BinText 3.03

Finds Ascii, Unicode and Resource strings in a file.
BinText 3.03 (external link)

BOPing

A scanner for the infamous Back Orifice program.
BOPing (external link)

CIScan

Cisco IOS IPv4 Remote Denial of Service Vulnerability Detection Utility.
CIScan (external link)

Conficker Detection

Conficker Detection vulnerability in Microsoft Windows Server Service.
Conficker Detection (external link)

CSniffer v1.0.0.3

Scan your infrastructure to discover if you have unencrypted Perforce passwords which could be stolen and used to penetrate your source code library.
CSniffer v1.0.0.3 (external link)

DDosPing

A network admin utility for remotely detecting the most common DDoS programs.
DDosPing (external link)

DSScan

LSASS scanner.
DSScan (external link)

FileWatch

FileWatch v1.0 - A file change monitor. Used with BlackICE Defender.
FileWatch (external link)

FPipe 2.1

FPipe v2.1 - Port redirector.
Fpipe v2.1 (external link)

MessengerScan v1.05

Quickly and accurately identify Microsoft operating systems that are vulnerable to the messenger service buffer overflow released in the MS03-043 bulletin.
MessengerScan v1.05 (external link)

MS05-039 Scan

Microsoft UPnP MS05-039 Vulnerability Detection Utility.
MS05-039 Scan (external link)

MS05-051 Scan

Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution.
MS05-051 Scan (external link)

MydoomScanner

Mydoom worm scanner.
MydoomScanner (external link)

NetSchedScan

Remote Task Scheduler scanner.
NetSchedScan (external link)

Night Dragon Vulnerability Detection Tool

Free utility that helps identify systems affected by the "Night Dragon" malware.
Night Dragon Vulnerability Detection Tool (external link)

PatchIt v2.0

A binary file byte-patching program.
PatchIt v2.0 (external link)

RPCScan

Microsoft RPC(MS03-026) and RPCSS(MS03-039) Vulnerability Detection Utility.
RPCScan (external link)

ScanLine

Command line port scanner.
ScanLine (external link)

ShareScan v1.0.0.2

ShareScan is a free utility that enables IT security personnel to identify open Windows file shares available on the internal network.
ShareScan v1.0.0.2 (external link)

ShoWin v2.0

Show information about Windows, reveal passwords, and more.
ShoWin v2.0 (external link)

SNScan

SNMP Detection Utility.
SNScan (external link)

SuperScan

Powerful TCP port scanner, pinger, resolver.
SuperScan (external link)

SuperScan v3.0

Powerful TCP port scanner, pinger, resolver.
SuperScan v3.0 (external link)

Trout

Traceroute and Whois program.

Trout (external link)

UDPFlood

UDP packet sender utility.

UDPFlood (external link)


To answer a common question I receive, I do not give out the source code to any of my programs except in exceptional circumstances, nor can I afford the time to answer questions about the source code. Google is your friend!