Pandora Pandora is a project that was developed by Simple Nomad and sponsored by the Nomad Mobile Research Centre. The goal of Pandora is to provide the tools for the opening of Novell's Netware Directory Services. Once thought to be impervious from prying eyes, Pandora goes where noone outside the red gates of Provo has ventured before -- into the heart of Novell's premier product offering, NDS. That, and Pandora is just a cool name for some simple hacking tools. What is Pandora? Pandora is a set of tools for hacking, intruding, and testing the security and insecurity of Novell Netware. It works on versions 4 and 5. Pandora consists of two distinct sets of programs -- an "online" version and an"offline" version. Pandora Online is intended to be used for direct attack against a live Netware 4 or 5 server. Pandora Offline is intended to be used for password cracking after you have obtained copies of NDS. Pandora Status Jitsu-Disk and Simple Nomad have completed Pandora v4.0 Beta 2.1. General features include: * Freeware. * Windows 95/98/NT GUI, for point and click Netware hacking fun. * Offline (password cracking) and online (server attacking) executables. * Netware 5 support for both offline and online programs. * Uses the ever-cool Pandora Toolkit API. * Full source code. * Did we mention it is free? * 100% built with freeware compilers and libraries, as a statement for and in support of open source software solutions. See the bottom of this page for a list of programming resources. Offline features: * A true password auditing tool for Netware 4 and 5. * Importing and sorting of password data from different sources, including BACKUP.DS, BACKUP.NDS, and DSREPAIR.DIB files for Netware 4 and 5. * Limited extraction of password material from damaged NDS files. * Multiple simultaneous cracking of passwords for different accounts. * All configuration, password, and restore files compatible between the Windows and Linux versions. No dependence on that damned registry. * Roll your own key space. * Built in NDS browser for viewing all objects within the NDS tree. * Includes a C port of The Ruiner's Remote Console Decryption algorithm. Online features: * Attach to server with password hashes extracted from Offline program. * Search for target servers. * Attach to a server and grab user accounts without logging in. * Dictionary attack against user account. * Multiple Denial of Service attacks. * Improved spoofing and hijacking by using realtime sniffing. * Works against Netware 4 and 5 (depending on patch revision). * Silently snarf files as they are downloaded from server to client. * Improved packet drivers for Windows 95/98/NT. Open Issues/To Do List with Pandora v4.0 Beta 2.1 * Pandora Online for Linux bugs have been ironed out (the ones we know about). The problems with the spoof/sniff attacks not working properly have been fixed, as well as a threads problem. Let us know if you have problems. * Reports of Windows 98 problems, from crashes with the new driver to MFileSelection (part of MGui) not working under Win98 with option pack or Win98SR2. We're working with Vincenzo Morello (the MGui maintainer) on this. * Jitsu added panmount code to Pandora Online for Linux, but it looks like NW 4.11 SP7 might break some of the bindery attacks. Still testing, but the NDS attaching stuff still works. * Jitsu replaced underlying drivers with libnet/libpcap for Pandora Online for Linux. If we were able to do this under NT, it would keep the same source code tree for both platforms, so we are considering porting libnet to NT (although that's not definite, because we anticipate it flagrantly not working properly because of the way NT handles its networking code). We actually might do the port to Win2K instead. Unsure at this point. The Pandora homepage is located at: http://www.nmrc.org/pandora/ Cryptographic signatures and checksums may be provided by the developers at the URL(s) above. Wiretapped recommends that users check these before use of the software/information.