Section: .. / papers / general /
| /// File Name: |
heap_off_by_one.txt |
Description:
|
A short paper discussing exploitation of vulnerabilities consisting of a null byte written passed the end of a dynamically allocated buffer.
| | Author: | qitest1 | | Homepage: | http://bespin.org/~qitest1/ | | File Size: | 13050 | | Last Modified: | Jun 24 23:48:01 2003 |
| MD5 Checksum: | 34476d3f8b558ed26ed7286d96e42509 |
|
| /// File Name: |
holland.ps |
Description:
|
Computer Break-ins: A Case Study: A study of multiple break-in attempts at Vrije Universiteit in Amsterdam
| | File Size: | 94107 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | b5421f49a366a40cf74ebd43ed9312f9 |
|
| /// File Name: |
how.defaced.apache.org.txt |
Description:
|
How www.apache.org was defaced. This paper does _not_ uncover any new vulnerabilities. It points out common (and slightly less common) configuration errors, which even the people at apache.org made. This is a general warning. Learn from it.Authored By {} and Hardbeat.
| | File Size: | 6220 | | Last Modified: | May 4 17:03:52 2000 |
| MD5 Checksum: | 6fcb5e9296d4d2412c8cd9e03a7ac4d4 |
|
| /// File Name: |
httpResponseSmuggle.txt |
Description:
|
Whitepaper entitled "HTTP Response Smuggling". It discusses evasion techniques to bypass anti-HTTP response splitting strategies.
| | Author: | Amit Klein | | File Size: | 23560 | | Last Modified: | Feb 25 17:15:15 2006 |
| MD5 Checksum: | 028a2ccfa04710b1e9b0329c14a9e4ee |
|
| /// File Name: |
i-bot.txt |
Description:
|
I, Bot, Taking Advantage Of Robots Power. A response to the original bot related article in Phrack written by Michal Zalewski.
| | Author: | Crossbower | | Homepage: | http://www.playhack.net/ | | File Size: | 15138 | | Last Modified: | May 16 22:26:14 2007 |
| MD5 Checksum: | 50a152ffdd28969e6ad885b444f34b17 |
|
| /// File Name: |
ICI.TXT |
Description:
|
Whitepaper discussing security problems and solutions in wireless cafes. Lots of good general info on security, attacks, tools, encryption, etc.
| | Homepage: | http://www.rootshell.be/~ad/ | | File Size: | 148874 | | Last Modified: | May 12 15:54:36 2008 |
| MD5 Checksum: | ae06c9445ebe7a64d20c3feb1ae95eb0 |
|
| /// File Name: |
IISUnicodeExplained.doc |
Description:
|
This paper goes into detail on Unicode exploitation with how it works and how to actually perform attacks against IIS servers that are vulnerable to this bug.
| | Author: | Gary Brooks | | File Size: | 167936 | | Last Modified: | Nov 17 12:47:34 2002 |
| MD5 Checksum: | ab7336660866d82a2bb7998a13278186 |
|
| /// File Name: |
Implementing_And_Detecting_A_PCI_Ro..> |
Description:
|
Whitepaper entitled "Implementing and Detecting a PCI Rootkit". This paper discusses means of persisting a rootkit on a PCI device containing a flashable expansion ROM.
| | Author: | John Heasman | | Homepage: | http://www.ngssoftware.com/ | | File Size: | 304132 | | Last Modified: | Nov 17 20:47:39 2006 |
| MD5 Checksum: | 7084bf1c02b55654aea3de77ef71ed9b |
|
| /// File Name: |
Inf_Pr_Ldap_Gar_Dumps.pdf |
Description:
|
The LDAP garbage dump that remains on web server results in information disclosure. Security of LDAP may be compromised, if for instance a search engine crawls through untamed directories on the web server and finds information through the ldap.xml file.
| | Author: | Aditya K Sood | | Homepage: | http://www.secniche.org/ | | File Size: | 436128 | | Last Modified: | Dec 4 00:27:02 2007 |
| MD5 Checksum: | 16a4b1bd047ad43f4255dac007b0a1f8 |
|
| /// File Name: |
InformationSecurity.pdf |
Description:
|
Whitepaper entitled "The Role of Modeling and Simulation in Information Security".
| | Author: | Mohammad Heidari | | File Size: | 414687 | | Last Modified: | Feb 9 00:02:52 2006 |
| MD5 Checksum: | 9a3b07d375e390281e4dc563bbebf6b8 |
|
| /// File Name: |
instrumental.pdf |
Description:
|
Whitepaper discussing how to generate runtime call graphs using certain GCC features.
| | Author: | Sebastian Krahmer | | File Size: | 406833 | | Last Modified: | Jun 26 23:39:35 2006 |
| MD5 Checksum: | 4406692f431765df98c31d321f8c9fcc |
|
| /// File Name: |
jolt2.c-analysis.txt |
Description:
|
Analysis of jolt2.c (Revision 2) - Technical analysis of the recent "IP Fragment Reassembly" Windows remote denial of service vulnerability described in ms00-029 which is effective against Win98, WinNT4/SP5,6, and Win2K. This attack is actually a network layer resource exhaustion attack.
| | Author: | Mikael Olsson | | Homepage: | http://www.enternet.se | | File Size: | 10878 | | Last Modified: | Jun 6 18:28:31 2000 |
| MD5 Checksum: | be284d3d976023be331b8c34be3afc2f |
|
| /// File Name: |
juggle.txt |
Description:
|
Juggling with packets: floating data storage - White paper discussing the use of network traffic as a storage medium for data and how this could be utilized to not leave an audit trail.
| | Author: | Wojciech Purczynski, Michal Zalewski | | Homepage: | http://isec.pl/ | | File Size: | 18363 | | Last Modified: | Oct 6 15:25:23 2003 |
| MD5 Checksum: | 2994c468e5e7ed30279735e471c26c4e |
|
| /// File Name: |
kernel-1.tbz |
Description:
|
Project Freedocs Volume 1 - A collection of tutorials regarding kernel programming.
| | Author: | Buggy | | Homepage: | http://vaida.bogdan.googlepages.com/ | | File Size: | 13051902 | | Last Modified: | Sep 9 04:10:02 2004 |
| MD5 Checksum: | 4a12608dde411e4a41050e00821dcc61 |
|
| /// File Name: |
kernel-3.tbz |
Description:
|
Project Freedocs Volume 1 - A collection of tutorials regarding kernel programming.
| | Author: | Bugghy, Bugghy | | Homepage: | http://rootshell.be/~vaidab | | Changes: | Added more kernel related tutorials and tools. | | File Size: | 7595495 | | Last Modified: | May 22 14:47:08 2005 |
| MD5 Checksum: | 1b1f4c52eddd173f17806a73e96b2035 |
|
| /// File Name: |
kye-worm.txt |
Description:
|
Know Your Enemy: Worms at War - A Windows 98 honeypot machine was taken over by 2 different worms in a week. The worms spread via open file shares and installed the distributed.net RC5 client.
| | Author: | Lance Spitzner | | Homepage: | http://www.enteract.com/~lspitz | | File Size: | 24247 | | Last Modified: | Nov 10 15:53:16 2000 |
| MD5 Checksum: | 1f23b9b0bef894b514c2ff7775caa093 |
|
| /// File Name: |
linux_kernel_do_brk.pdf |
Description:
|
Whitepaper discussing the do_brk() bug found in the Linux kernel versions 2.4.22 and below.
| | Author: | Paul Starzetz | | Homepage: | http://isec.pl | | File Size: | 60395 | | Last Modified: | Dec 5 07:22:00 2003 |
| MD5 Checksum: | 15510d93f5459f12cff4614494ae9be9 |
|
| /// File Name: |
malware-trends.pdf |
Description:
|
What are the driving forces behind the rise of malware? Who is behind it, and what tactics do they use? How are vendors responding, and what should organizations, researchers, and end users keep in mind for the upcoming future? These and many other questions will be discussed in this article, combining security experience, business logic, a little bit of psychology, market trends, and personal chats with knowledgeable folks from the industry.
| | Author: | Dancho Danchev | | Homepage: | http://ddanchev.blogspot.com/ | | File Size: | 990531 | | Last Modified: | Jan 11 01:05:37 2006 |
| MD5 Checksum: | 3452a22642ccd435f41d3b4b964fec30 |
|
| /// File Name: |
mi018en.htm |
Description:
|
Shellcode programming for SCO. All examples are taken from a SCO OpenServer 5.0.4 machine so some of them may not work under another SCO type of Unix (like unixware) although I have tried to make it as portable as possible.
| | Author: | Renegade Master | | Homepage: | http://hispahack.ccc.de/en/index.html | | File Size: | 22438 | | Last Modified: | Jan 27 15:21:23 2000 |
| MD5 Checksum: | e2cf541e7912b8ad9f967cc885c076c9 |
|
| /// File Name: |
MiddleMan.pdf |
Description:
|
Paper explaining man-in-the-middle attacks, using a secure web connection as an example.
| | Author: | Coretez Giovanni | | Homepage: | http://www.8thport.com | | File Size: | 23949 | | Last Modified: | Feb 23 03:18:18 2000 |
| MD5 Checksum: | 973f3acfc65b90435e2c51884eef8682 |
|
| /// File Name: |
mk.pdf |
Description:
|
Rights Amplification in Master-Keyed Mechanical Locks - This paper describes a relatively unknown procedure for obtaining a master key if given access to a tumbler based master keyed lock and any low level key in the system. No special skill or equipment beyond a small number of blank keys and a file is needed, and the attacker does not need to engage in any suspicious behavior at the locks location. Countermeasures are described with provide limited protection under certain circumstances.
| | Author: | Matt Blaze | | Homepage: | http://www.crypto.com | | File Size: | 4039567 | | Last Modified: | Jan 24 03:10:56 2003 |
| MD5 Checksum: | 203c6fc8532d603649f8a707002650ee |
|
| /// File Name: |
modsecips.html |
Description:
|
Securing LAMP - A whitepaper that discusses a methodology to configure, test, and run a Secure LAMP environment.
| | Author: | Jesus Oquendo | | Homepage: | http://www.infiltrated.net/ | | File Size: | 15428 | | Last Modified: | Nov 13 11:14:29 2006 |
| MD5 Checksum: | bcacccdeb14c1322732a9766c791d51a |
|
| /// File Name: |
monitoring-Mar-25-2002.tar.gz |
Description:
|
Monitoring Network Traffic with Dsniff - This is a practical step by step guide showing how to use Dsniff, MRTG, IP Flow Meter, Tcpdump, NTOP, and Ngrep, and others. It also provides a discussion of how and why we should monitor network traffic. Updated version, sgml format.
| | Author: | Patrick Duane Dunston | | File Size: | 27895 | | Last Modified: | Mar 27 12:45:09 2002 |
| MD5 Checksum: | a88382cebd4c76a5098472547a4353ac |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
