Section: .. / papers / general /
| /// File Name: |
ICI.TXT |
Description:
|
Whitepaper discussing security problems and solutions in wireless cafes. Lots of good general info on security, attacks, tools, encryption, etc.
| | Homepage: | http://www.rootshell.be/~ad/ | | File Size: | 154750 | | Last Modified: | Jul 9 17:40:58 2008 |
| MD5 Checksum: | 980651f5ff630c6a7b0fcd306147967d |
|
| /// File Name: |
igujv-guide.txt |
Description:
|
IGUJV - The Infection Guide Using Java/VbScript.
| | Author: | AnalyseR | | File Size: | 8500 | | Last Modified: | Dec 12 18:17:36 2008 |
| MD5 Checksum: | 5325bfd16a20d8177e616a137beb4bf4 |
|
| /// File Name: |
IISUnicodeExplained.doc |
Description:
|
This paper goes into detail on Unicode exploitation with how it works and how to actually perform attacks against IIS servers that are vulnerable to this bug.
| | Author: | Gary Brooks | | File Size: | 167936 | | Last Modified: | Nov 17 12:47:34 2002 |
| MD5 Checksum: | ab7336660866d82a2bb7998a13278186 |
|
| /// File Name: |
Implementing_And_Detecting_A_PCI_Ro..> |
Description:
|
Whitepaper entitled "Implementing and Detecting a PCI Rootkit". This paper discusses means of persisting a rootkit on a PCI device containing a flashable expansion ROM.
| | Author: | John Heasman | | Homepage: | http://www.ngssoftware.com/ | | File Size: | 304132 | | Last Modified: | Nov 17 20:47:39 2006 |
| MD5 Checksum: | 7084bf1c02b55654aea3de77ef71ed9b |
|
| /// File Name: |
Inf_Pr_Ldap_Gar_Dumps.pdf |
Description:
|
The LDAP garbage dump that remains on web server results in information disclosure. Security of LDAP may be compromised, if for instance a search engine crawls through untamed directories on the web server and finds information through the ldap.xml file.
| | Author: | Aditya K Sood | | Homepage: | http://www.secniche.org/ | | File Size: | 436128 | | Last Modified: | Dec 4 00:27:02 2007 |
| MD5 Checksum: | 16a4b1bd047ad43f4255dac007b0a1f8 |
|
| /// File Name: |
InformationSecurity.pdf |
Description:
|
Whitepaper entitled "The Role of Modeling and Simulation in Information Security".
| | Author: | Mohammad Heidari | | File Size: | 414687 | | Last Modified: | Feb 9 00:02:52 2006 |
| MD5 Checksum: | 9a3b07d375e390281e4dc563bbebf6b8 |
|
| /// File Name: |
instrumental.pdf |
Description:
|
Whitepaper discussing how to generate runtime call graphs using certain GCC features.
| | Author: | Sebastian Krahmer | | File Size: | 406833 | | Last Modified: | Jun 26 23:39:35 2006 |
| MD5 Checksum: | 4406692f431765df98c31d321f8c9fcc |
|
| /// File Name: |
InternetProtocol.pdf |
Description:
|
This document aims to raise awareness about the many security threats based on the IP protocol, those that we are currently facing, and those we may still have to deal with in the future. It provides advice for the secure implementation of the IP, and also insights about the security aspects of the IP that may be of help to the Internet operations community.
| | Author: | Fernando Gont | | Homepage: | http://www.cpni.gov.uk/ | | File Size: | 675316 | | Last Modified: | Aug 14 20:12:10 2008 |
| MD5 Checksum: | 8621c729eab84344f70a70121b88b710 |
|
| /// File Name: |
jolt2.c-analysis.txt |
Description:
|
Analysis of jolt2.c (Revision 2) - Technical analysis of the recent "IP Fragment Reassembly" Windows remote denial of service vulnerability described in ms00-029 which is effective against Win98, WinNT4/SP5,6, and Win2K. This attack is actually a network layer resource exhaustion attack.
| | Author: | Mikael Olsson | | Homepage: | http://www.enternet.se | | File Size: | 10878 | | Last Modified: | Jun 6 18:28:31 2000 |
| MD5 Checksum: | be284d3d976023be331b8c34be3afc2f |
|
| /// File Name: |
juggle.txt |
Description:
|
Juggling with packets: floating data storage - White paper discussing the use of network traffic as a storage medium for data and how this could be utilized to not leave an audit trail.
| | Author: | Wojciech Purczynski,Michal Zalewski | | Homepage: | http://isec.pl/ | | File Size: | 18363 | | Last Modified: | Oct 6 15:25:23 2003 |
| MD5 Checksum: | 2994c468e5e7ed30279735e471c26c4e |
|
| /// File Name: |
kernel-1.tbz |
Description:
|
Project Freedocs Volume 1 - A collection of tutorials regarding kernel programming.
| | Author: | Bugghy | | Homepage: | http://vaida.bogdan.googlepages.com/ | | File Size: | 13051902 | | Last Modified: | Sep 9 04:10:02 2004 |
| MD5 Checksum: | 4a12608dde411e4a41050e00821dcc61 |
|
| /// File Name: |
kernel-3.tbz |
Description:
|
Project Freedocs Volume 1 - A collection of tutorials regarding kernel programming.
| | Author: | Bugghy,Bugghy | | Homepage: | http://rootshell.be/~vaidab | | Changes: | Added more kernel related tutorials and tools. | | File Size: | 7595495 | | Last Modified: | May 22 14:47:08 2005 |
| MD5 Checksum: | 1b1f4c52eddd173f17806a73e96b2035 |
|
| /// File Name: |
kye-worm.txt |
Description:
|
Know Your Enemy: Worms at War - A Windows 98 honeypot machine was taken over by 2 different worms in a week. The worms spread via open file shares and installed the distributed.net RC5 client.
| | Author: | Lance Spitzner | | Homepage: | http://www.enteract.com/~lspitz | | File Size: | 24247 | | Last Modified: | Nov 10 15:53:16 2000 |
| MD5 Checksum: | 1f23b9b0bef894b514c2ff7775caa093 |
|
| /// File Name: |
linux_kernel_do_brk.pdf |
Description:
|
Whitepaper discussing the do_brk() bug found in the Linux kernel versions 2.4.22 and below.
| | Author: | Paul Starzetz | | Homepage: | http://isec.pl | | File Size: | 60395 | | Last Modified: | Dec 5 07:22:00 2003 |
| MD5 Checksum: | 15510d93f5459f12cff4614494ae9be9 |
|
| /// File Name: |
locating-firewalls.txt |
Description:
|
Locating Stateless Firewalls focuses on methods to discern between stateful and stateless firewalls. It discusses about how stateless firewalls can be further exploited due to possible misconfigurations and the result of RFC ambiguities.
| | Author: | ithilgore | | Homepage: | http://sock-raw.homeunix.org/ | | File Size: | 24736 | | Last Modified: | Dec 8 23:28:11 2008 |
| MD5 Checksum: | ca1bfcdeca6c4e712760e4c6c7735449 |
|
| /// File Name: |
malware-trends.pdf |
Description:
|
What are the driving forces behind the rise of malware? Who is behind it, and what tactics do they use? How are vendors responding, and what should organizations, researchers, and end users keep in mind for the upcoming future? These and many other questions will be discussed in this article, combining security experience, business logic, a little bit of psychology, market trends, and personal chats with knowledgeable folks from the industry.
| | Author: | Dancho Danchev | | Homepage: | http://ddanchev.blogspot.com/ | | File Size: | 990531 | | Last Modified: | Jan 11 01:05:37 2006 |
| MD5 Checksum: | 3452a22642ccd435f41d3b4b964fec30 |
|
| /// File Name: |
mi018en.htm |
Description:
|
Shellcode programming for SCO. All examples are taken from a SCO OpenServer 5.0.4 machine so some of them may not work under another SCO type of Unix (like unixware) although I have tried to make it as portable as possible.
| | Author: | Renegade Master | | Homepage: | http://hispahack.ccc.de/en/index.html | | File Size: | 22438 | | Last Modified: | Jan 27 15:21:23 2000 |
| MD5 Checksum: | e2cf541e7912b8ad9f967cc885c076c9 |
|
| /// File Name: |
MiddleMan.pdf |
Description:
|
Paper explaining man-in-the-middle attacks, using a secure web connection as an example.
| | Author: | Coretez Giovanni | | Homepage: | http://www.8thport.com | | File Size: | 23949 | | Last Modified: | Feb 23 03:18:18 2000 |
| MD5 Checksum: | 973f3acfc65b90435e2c51884eef8682 |
|
| /// File Name: |
mime-dos.txt |
Description:
|
Write up discussing denial of service attacks on MIME-capable software via complex MIME emails.
| | Author: | Bernhard Brehm | | Homepage: | http://www.recurity-labs.com/ | | File Size: | 8340 | | Last Modified: | Dec 9 02:02:16 2008 |
| MD5 Checksum: | 8f2e0fba5de9b636f9e96f7393b1eac8 |
|
| /// File Name: |
mk.pdf |
Description:
|
Rights Amplification in Master-Keyed Mechanical Locks - This paper describes a relatively unknown procedure for obtaining a master key if given access to a tumbler based master keyed lock and any low level key in the system. No special skill or equipment beyond a small number of blank keys and a file is needed, and the attacker does not need to engage in any suspicious behavior at the locks location. Countermeasures are described with provide limited protection under certain circumstances.
| | Author: | Matt Blaze | | Homepage: | http://www.crypto.com | | File Size: | 4039567 | | Last Modified: | Jan 24 03:10:56 2003 |
| MD5 Checksum: | 203c6fc8532d603649f8a707002650ee |
|
| /// File Name: |
modsecips.html |
Description:
|
Securing LAMP - A whitepaper that discusses a methodology to configure, test, and run a Secure LAMP environment.
| | Author: | Jesus Oquendo | | Homepage: | http://www.infiltrated.net/ | | File Size: | 15428 | | Last Modified: | Nov 13 11:14:29 2006 |
| MD5 Checksum: | bcacccdeb14c1322732a9766c791d51a |
|
| /// File Name: |
monitoring-Mar-25-2002.tar.gz |
Description:
|
Monitoring Network Traffic with Dsniff - This is a practical step by step guide showing how to use Dsniff, MRTG, IP Flow Meter, Tcpdump, NTOP, and Ngrep, and others. It also provides a discussion of how and why we should monitor network traffic. Updated version, sgml format.
| | Author: | Patrick Duane Dunston | | File Size: | 27895 | | Last Modified: | Mar 27 12:45:09 2002 |
| MD5 Checksum: | a88382cebd4c76a5098472547a4353ac |
|
| /// File Name: |
MySQL.fingerprint.txt |
Description:
|
Small write-up discussing methodology for fingerprint the type of MySQL database being used when exploiting SQL injection vulnerabilities.
| | Author: | Tonu Samuel | | File Size: | 4317 | | Last Modified: | Feb 23 18:16:00 2004 |
| MD5 Checksum: | c8504f82b10ed47a972f6bbc43dd339e |
|
| /// File Name: |
netcash1.ps |
Description:
|
Electronic Currency for the Internet: A framework for electronic currency for the Internet that provides a real-time electronic payment system
| | File Size: | 71547 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | f65699219e8db97425c64266d5bb0efb |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
