On TV.com: 2009's Most PIRATED TV Show
BNET Business Network:
BNET
TechRepublic
ZDNet

August 13th, 2007

Exploits, security tools disappear as German anti-hacker law takes effect

Posted by Ryan Naraine @ 10:51 am

Categories: Botnets, Browsers, Data theft, Exploit code, Hackers, Metasploit, Open source, Pen testing, Responsible disclosure, Rootkits, Spyware and Adware, Vulnerability research, Wi-Fi security, Wireless

Tags: Security, Law, Exploit, Tool, Security Tool, Ryan Naraine

Exploits, hacking tools disappear as German law takes effectSecurity professionals in Germany have started removing exploits and hacking tools from the Internet in response to a new German law that expressly forbids the distribution of any software that can be used in computer/network attacks.

Stefan Esser (left), the PHP security guru behind the recent Month of PHP Bugs project, has yanked all the proof-of-concept exploits from the project page because of legal concerns related to the new law.

“This new law renders the creation and distribution of software illegal that could be used by someone to break into a computer system or could be used to prepare a break in. This includes port scanners like nmap, security scanners like nessus and of course proof of concept exploits,” Esser explained.

[ SEE: Flaw trifecta kicks off Month of PHP bugs ]

He said the law explicitly forbids the creation, distribution and usage of tools that can be used to prepare for, or actively exploit computer systems. However, there is uncertainty about the law and how it applies to the work of security professionals in Germany.

The big problem is that the paragraph is not clearly written. It allows too much interpretation. While our government says that they do not want to punish for example hired penetration testers, this is NOT written down in the law. The written law does not know any exception. And that is the big problem.

Phenoelit, another German site that distributes hacking tools, has posted a goodbye note that refers to the new law. Phenoelit’s tools and security material have been moved to a different server outside Germany.

Kismac, a wireless network discovery and attack tool, has also disappeared.

* More from SecurityFocus.com’s Rob Lemos.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 25 Talkback(s)
rednecks
and you both should grab your guns and do a big favor to the rest of the world: use them on your selfs... (Read the rest)
Posted by: quimkaos@... Posted on: 08/16/07 You are currently: a Guest | | Terms of Use
For the "Super Wealthy" only.! As 8x broadband gets closer. . .  RobeTirm@... | 08/13/07
LOL.. sounds like pre ww2 germany is back.  Been_Done_Before | 08/13/07
Das machinkontrol is nicht for gefengerpoken und mittengrabben.  osreinstall | 08/13/07
Same old story  Cayble | 08/14/07
Prohibition.  osreinstall | 08/14/07
NRA should be all over this...  jasonp@... | 08/13/07
Well, if you could prove that...  flatliner | 08/13/07
Will MS have to remove Ping  voska | 08/13/07
WELL YOU CAN'T MAKE SOFTWARE ILLEGAL NOW CAN YOU  BALTHOR | 08/13/07
Yet Scat Porn & Underage Sex Vids Are Still Available  itanalyst | 08/13/07
Negative effect of German Law  yyuko@... | 08/13/07
I see this argument used a lot...  jasonp@... | 08/14/07
And, we hear that argument...  Dr. John | 08/14/07
Swing and a miss...  jasonp@... | 08/14/07
rednecks  quimkaos@... | 08/16/07
Now there is a strawman.  Cayble | 08/14/07
People doing illegal things  THEE WOLF | 08/13/07
Programming Tools  aureolin@... | 08/13/07
Not good enough! What about 'ping' and 'telnet'?  Resuna | 08/14/07
Yet another...  kcredden2 | 08/14/07
Hopefully misunderstanding...  jasonp@... | 08/14/07
tools  merc2dogs` | 08/14/07
Its a slippery slope.. the US is on its way to this kind of stupidity  Been_Done_Before | 08/14/07
on its way?  2WiReD | 08/15/07
They didn't move to the Netherlands, and ...  GreyGeek | 08/14/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here