Section: .. / papers / general /
| /// File Name: |
holland.ps |
Description:
|
Computer Break-ins: A Case Study: A study of multiple break-in attempts at Vrije Universiteit in Amsterdam
| | File Size: | 94107 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | b5421f49a366a40cf74ebd43ed9312f9 |
|
| /// File Name: |
fuat.ps |
Description:
|
Security Breaches: Five Recent Incidents at Columbia University: A detailed account of five break-ins at Columbia University, and the steps taken to stop them
| | File Size: | 93312 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 9c1282556e93fd564da6d7918e5e3fdb |
|
| /// File Name: |
ports.pdf |
Description:
|
White Paper on Automatic Protocol Identification on Scanned Ports. We examine the problem and propose a solution for automatically identifying the protocol run on ports that a previous network scan found to be open.
| | Author: | Izar Tarandach | | Homepage: | http://razor.bindview.com/publish/index.shtml | | File Size: | 89823 | | Last Modified: | Feb 24 20:29:28 2000 |
| MD5 Checksum: | eb71afe6cdb2a5cbb3de4a120f7fa752 |
|
| /// File Name: |
CogMetaSpamBug.pdf |
Description:
|
Whitepaper entitled the Cognitive Cause Of Metacharacter Spamindexing.
| | Author: | Aditya K Sood | | File Size: | 89056 | | Last Modified: | Jan 15 22:44:00 2007 |
| MD5 Checksum: | 71899baadfdc86bf5a190edde8cd69f7 |
|
| /// File Name: |
pnetext.ps |
Description:
|
Pseudo-Network Drivers and Virtual Networks: A method for creating pseudo-networks, much like the pseudo-terminals in use on many UNIX systems.
| | File Size: | 86678 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 394958ef114a0180372ad8da77496119 |
|
| /// File Name: |
berferd.ps |
Description:
|
An Evening With Berferd: In Which a Cracker is Lured, Endured, and Studied: A description of how the author kept an attacker ``on the line'' for several months in order to learn his methods.
| | File Size: | 81747 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 5cc030611fec89e1f717d00e76688835 |
|
| /// File Name: |
vuln-trends.txt |
Description:
|
The primary goal of this whitepaper is to provide analysis that studies research trends using publicly reported vulnerabilities.
| | Author: | Steven M. Christey | | Homepage: | http://cwe.mitre.org/ | | File Size: | 77213 | | Last Modified: | Oct 8 23:02:12 2006 |
| MD5 Checksum: | 72c0a21ea7ec0241752f95032c5650bf |
|
| /// File Name: |
TopologyDOS.pdf |
Description:
|
This paper re-examines the denial-of-service issue. It looks at the techniques used to accomplish denial of service including process recovery, resource destruction (crash), and resource overload. Looking at how DOS functions allows for the design of other DOS attacks aimed at the processes used by the operating system, the network protocols and the users.
| | Author: | Coretez Giovanni | | Homepage: | http://www.8thport.com | | File Size: | 74536 | | Last Modified: | Jul 12 14:42:31 2000 |
| MD5 Checksum: | 690a78612efc13f42762b3aaa8fca700 |
|
| /// File Name: |
bufferPeek.txt |
Description:
|
Buffer Overflows, A Peek Under The Hood volume 1.0.
| | Author: | Zapotek | | File Size: | 73880 | | Last Modified: | Aug 27 19:02:29 2006 |
| MD5 Checksum: | 4c4088bc8bacc069c8718d8be7293095 |
|
| /// File Name: |
netcash1.ps |
Description:
|
Electronic Currency for the Internet: A framework for electronic currency for the Internet that provides a real-time electronic payment system
| | File Size: | 71547 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | f65699219e8db97425c64266d5bb0efb |
|
| /// File Name: |
linux_kernel_do_brk.pdf |
Description:
|
Whitepaper discussing the do_brk() bug found in the Linux kernel versions 2.4.22 and below.
| | Author: | Paul Starzetz | | Homepage: | http://isec.pl | | File Size: | 60395 | | Last Modified: | Dec 5 07:22:00 2003 |
| MD5 Checksum: | 15510d93f5459f12cff4614494ae9be9 |
|
| /// File Name: |
forensic.ps |
Description:
|
Software Forensics: Can We Track Code to its Authors? An idea that it may be possible to identify the authors of malicious software by the style and features of their programs
| | File Size: | 55685 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 5018d4d563a55cc02e45ec51023319a1 |
|
| /// File Name: |
clientexp.tgz |
Description:
|
Paper on exploiting security issues in client and other non-server software. Includes a sample exploit against tar.
| | Author: | Mixter | | File Size: | 54408 | | Last Modified: | Dec 17 17:18:15 1999 |
| MD5 Checksum: | 12a081e6bef3be60e4b9c4e5f4f087d9 |
|
| /// File Name: |
code_auditing_in_c.txt |
Description:
|
A small whitepaper discussing code auditing in C.
| | Author: | Tal0n | | File Size: | 52888 | | Last Modified: | Aug 11 18:29:07 2007 |
| MD5 Checksum: | 25bd0a787a7800bcf71980d9c707f205 |
|
| /// File Name: |
AveOfAttack.pdf |
Description:
|
A New Avenue of Attack: Event-Driven System Vulnerabilities. This paper gives more technical details to security vulnerabilities in event-driven systems and relates it to Information Warfare.
| | Author: | Simos Xenitellis | | Homepage: | http://www.isg.rhul.ac.uk/~simos/event_demo/ | | File Size: | 51408 | | Last Modified: | Aug 11 19:06:53 2002 |
| MD5 Checksum: | f75606876872b209db3c27c173b8f830 |
|
| /// File Name: |
botnet.tgz |
Description:
|
KYE: Tracking Bots. A whitepaper produced by the German Honeynet Project that looks at the individuals and organization that run botnets.
| | Homepage: | http://www.honeynet.org/ | | File Size: | 50375 | | Last Modified: | Mar 17 02:22:27 2005 |
| MD5 Checksum: | 00408e62b61746075b189692d8332ac7 |
|
| /// File Name: |
draft-ietf-tsvwg-port-randomization..> |
Description:
|
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
| | Author: | Michael Vittrup Larsen,Fernando Gont | | Homepage: | http://www.ietf.org/ | | Changes: | This new revision of the document addresses the feedback we got from Amit Klein, Matthias Bethke, and Alfred Hoenes. | | File Size: | 49484 | | Last Modified: | Sep 2 23:27:10 2008 |
| MD5 Checksum: | 7148e6b60b79983dd6d3afc806fb28d5 |
|
| /// File Name: |
agents.txt |
Description:
|
The Evolution of Malicious Agents. This paper examines the evolution of malicious agents by analyzing features and limitations of popular viruses, worms, and trojans, detailing the possibility of a new breed of malicious agents currently being developed on the Internet.
| | Author: | Lenny Zeltser | | Homepage: | http://www.zeltser.com/agents | | File Size: | 48331 | | Last Modified: | May 3 18:20:38 2000 |
| MD5 Checksum: | badaef580cc6781fc436d7fe02f5cce9 |
|
| /// File Name: |
041607.html |
Description:
|
The Web Application Security Consortium is proud to present 'The Importance of Application Classification in Secure Application Development'.
| | Author: | Rohit Sethi | | Homepage: | http://www.webappsec.org/ | | File Size: | 44216 | | Last Modified: | Apr 18 20:40:46 2007 |
| MD5 Checksum: | 067f062ee0605f2c9e32f8a6614d533c |
|
| /// File Name: |
draft-ietf-tsvwg-port-randomization..> |
Description:
|
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
| | Author: | Michael Vittrup Larsen,Fernando Gont | | Homepage: | http://www.ietf.org/ | | File Size: | 43889 | | Last Modified: | Jul 16 20:13:04 2008 |
| MD5 Checksum: | 3169ae2876e24bcbe919b97c4fecdeb4 |
|
| /// File Name: |
seh-paper.txt |
Description:
|
Playing around with SEH (the Structured Exception Handler).
| | Author: | suN8Hclf | | Homepage: | http://www.dark-coders.pl/ | | File Size: | 41425 | | Last Modified: | Aug 18 20:00:12 2008 |
| MD5 Checksum: | 679821c48bb8441a75d5ed76b003bd45 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
