.:[ packet storm ]:.
                               
reconnaissance for both sides
reconnaissance for both sides

 Section:  .. / papers / protocols  /

Page 1 of 3
<< 1 2 3 >> Files 1 - 25 of 54
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: afs.ps
Description:
 Highjacking AFS: A description of security weaknesses in the Andrew File System (AFS)
File Size:54918
Last Modified:Oct 1 17:22:48 1999
MD5 Checksum:231b8143c6fa64e5d3a2dc8cdb755a7d

 ///  File Name: analisis-remoto-de-sistemas.txt
Description:
 Port Scanning and OS Fingerprinting - In Spanish.
Author:Honoriak
File Size:97811
Last Modified:Jan 12 19:18:26 2001
MD5 Checksum:b4d894cbc192bce67cd91bc869bb0807

 ///  File Name: anon_email.txt
Description:
 The Design, Implementation and Operation of an Email Pseudonym Server - Attacks on servers that provide anonymity generally fall into two categories: attempts to expose anonymous users and attempts to silence them. This paper describes the design, implementation, and operation of nym. alias. net, a server providing untraceable email aliases.
Author:David Mazi and M. Frans Kaashoek
File Size:58457
Last Modified:Apr 4 05:58:06 2000
MD5 Checksum:faa6f6df7f4dc4c2ae3dfc8883f14559

 ///  File Name: cookleak.htm
Description:
 Since the invention of Web browser cookies by Netscape, the claim has always been made that they are anonymous and cannot be associated with any personal information unless someone provides this information. In this write-up, I will present a technique in which browser cookies can be matched to Email addresses without people's knowledge. The technique relies on a security hole that is present in both Microsoft's Internet Explorer browser and Netscape's Navigator browser. This technique can be used, for example, to allow a banner ad company to associate an Email address with a "anonymous" profile that has been created for a person as they surf the Web.
Author:Richard Smith
Homepage:http://www.tiac.net/users/smiths/privacy/
File Size:8846
Last Modified:Dec 8 20:23:10 1999
MD5 Checksum:f82c4516188734b8d1b25a7c65c33e7e

 ///  File Name: covert_paper.txt
Description:
 Exploitation of data streams authorized by a network access control system for arbitrary data transfers: tunneling and covert channels over the HTTP protocol.
Author:Alex Dyatlov, Simon Castro
Homepage:http://www.gray-world.net
File Size:68934
Last Modified:Jun 21 18:40:30 2003
MD5 Checksum:4536af34036f3ee2b3439ad7b5e85b8b

 ///  File Name: dns-writeup.txt
Description:
 Interesting write up discussing DNS cache poisoning then and now.
Author:Monsieur Aglie
File Size:10778
Last Modified:Jul 22 20:57:32 2008
MD5 Checksum:a0d975e9261838a800c2ee206625f579

 ///  File Name: dnsinfo.htm
Description:
 Information on testing your DNS server to see if it is vulnerable to corruption attacks. A lot of services depend on DNS information. Online test for this vulnerability here.
Author:Johannes Erdfelt
Homepage:http://www.apostols.org/
File Size:12952
Last Modified:Feb 16 18:00:24 2000
MD5 Checksum:e0b0a6af64faeab1e9961ec7104ef20a

 ///  File Name: e2e.ps
Description:
 An End-to-End Argument for Network Layer, Inter-Domain Access Controls: A method by which different administrative domains of an internetwork can interconnect without exposing their internal resources to unrestricted access
File Size:200874
Last Modified:Oct 1 17:22:48 1999
MD5 Checksum:7a67e3df55375e47eadf4cb8617dd5ad

 ///  Directory: / gif /
Description:
 Unavailable.
Total Files:19
Last Modified:Sep 15 22:08:10 2002

 ///  File Name: gre.pdf.gz
Description:
 This paper describes a possible way to attack hosts with RFC1918 IP addresses behind GRE Tunnels over the Internet.
Author:FX
Homepage:http://www.phenoelit.de
File Size:26711
Last Modified:Dec 23 18:17:50 2000
MD5 Checksum:74238e97542ad3e67f91ef9f872afd20

 ///  File Name: host-detection.doc
Description:
 Advanced Host Detection - Techniques To Validate Host-Connectivity. Security Engineers spend a tireless amount of effort to block and filter packet anomalies in an internetwork connected environment. Advanced host mapping bypasses many forms of intrusion detection systems, filters, and routers, essentially enabling an attacker to map and discover previously unknown firewalled hosts. Also available in PDF and TXT form.
Author:Dethy
Homepage:http://www.synnergy.net
File Size:145920
Last Modified:Jan 15 16:21:59 2001
MD5 Checksum:938010bc0d9b99eb9b35830b0f7a13e7

 ///  File Name: host-detection.pdf
Description:
 Advanced Host Detection - Techniques To Validate Host-Connectivity. (PDF) Security Engineers spend a tireless amount of effort to block and filter packet anomalies in an internetwork connected environment. Advanced host mapping bypasses many forms of intrusion detection systems, filters, and routers, essentially enabling an attacker to map and discover previously unknown firewalled hosts. Also available in TXT and DOC form.
Author:Dethy
Homepage:http://www.synnergy.net
File Size:61012
Last Modified:Jan 15 16:19:41 2001
MD5 Checksum:2866b8e06c2e023af6d2353b6ac6c628

 ///  File Name: host-detection.txt
Description:
 Advanced Host Detection - Techniques To Validate Host-Connectivity. Security Engineers spend a tireless amount of effort to block and filter packet anomalies in an internetwork connected environment. Advanced host mapping bypasses many forms of intrusion detection systems, filters, and routers, essentially enabling an attacker to map and discover previously unknown firewalled hosts. Also available in PDF and DOC form.
Author:Dethy
Homepage:http://www.synnergy.net
File Size:42776
Last Modified:Jan 15 16:17:57 2001
MD5 Checksum:29e1aa57dd7594aeb700b3e563f4579a

 ///  File Name: ICMP_Scanning.pdf
Description:
 ICMP Usage in Scanning - The Internet Control Message Protocol is one of the most complex protocols in the TCP/IP protocol suite regarding its security hazards. This paper gives very in depth information, including discussion of all the ICMP types, ICMP sweeps, host detection using ICMP error messages, ACL detection, Inverse mapping, OS fingerprinting, filtering ICMP, and much more.
Author:Ofir Arkin
Homepage:http://www.sys-security.com/
File Size:327163
Last Modified:Jul 2 01:36:26 2000
MD5 Checksum:d51b747831adfbae8a290047e2e0f656

 ///  File Name: ICMP_Scanning_v2.01.pdf
Description:
 ICMP Usage in Scanning v2.01 - This paper outlines what can be done with the ICMP protocol regarding scanning. The paper deals with plain Host Detection techniques, Advanced Host Detection techniques, Inverse Mapping, Trace routing, OS fingerprinting methods with ICMP, and which ICMP traffic should be filtered on a Filtering Device.
Author:Ofir Arkin
Homepage:http://www.sys-security.com/
Changes:Quite a large number of new OS fingerprinting methods using ICMP, which I have discovered are introduced with this revision. Among those methods, some can be used in order to identify Microsoft Windows 2000 machines; One would allow us to distinguish between Microsoft Windows operating system machines and the rest of the world; Another would allow us to distinguish between SUN Solaris machines and the rest of the world. More methods are introduced in the paper.
File Size:564826
Last Modified:Sep 13 14:01:45 2000
MD5 Checksum:9664f0faa4fbc75852ba09891fb6f8fe

 ///  File Name: ICMP_Scanning_v2.5.pdf
Description:
 ICMP Usage in Scanning v2.5 - This paper outlines what can be done with the ICMP protocol regarding scanning. Although it may seem harmless at first glance, this paper includes details on plain Host Detection techniques, Advanced Host Detection techniques, Inverse Mapping, Trace routing, OS fingerprinting methods with ICMP, and which ICMP traffic should be filtered on a Filtering Device.
Author:Ofir Arkin
Homepage:http://www.sys-security.com/
Changes:This version introduces a few new OS fingerprinting methods, some of which use ICMP error messages, allowing a remote OS fingerprint even if all the ports are closed. Also a lot of information on ICMP error messages has been added. Also added some snort rules.
File Size:967146
Last Modified:Dec 23 17:51:15 2000
MD5 Checksum:eacfa193ec4f30313fbc8c46ca890eed

 ///  File Name: ICMP_Scanning_v3.0.zip
Description:
 ICMP Usage in Scanning v3.0 - This paper outlines what can be done with the ICMP protocol regarding scanning. Although it may seem harmless at first glance, this paper includes details on plain Host Detection techniques, Advanced Host Detection techniques, Inverse Mapping, Trace routing, OS fingerprinting methods with ICMP, and which ICMP traffic should be filtered on a Filtering Device.
Author:Ofir Arkin
Homepage:http://www.sys-security.com/
Changes:Version 3.0 introduces significant changes made to the text. Includes some host based security measures available with Linux based on Kernel 2.4.x and with Sun Solaris 8 and a snort rule base for dealing with the ICMP tricks illustrated within the text.
File Size:1845541
Last Modified:Jun 5 15:17:34 2001
MD5 Checksum:f60a05e7802e4364c022896d78730665

 ///  File Name: ident.txt
Description:
 Identification Protocol - RFC 1413: A description of the Identification Protocol, a means to determine the identity of the user of a particular TCP connection
File Size:16292
Last Modified:Oct 1 17:22:48 1999
MD5 Checksum:ced71cd04dc21eda2d2a071d1af8b255

 ///  File Name: Insecurities_in_AoE.pdf
Description:
 ATA over Ethernet (AoE) is an open standards based protocol that allows direct network access to disk drives by client hosts. This paper investigates the insecurities present in the ATA over Ethernet (AoE) protocol and presents some attacks that exploit various vulnerabilities in the protocol.
Author:Morgan Marquis-Boire
Homepage:http://www.security-assessment.com/technical/whitepapers/
File Size:2154981
Last Modified:Oct 3 19:48:10 2006
MD5 Checksum:88b59f8845764d6106e7c2427f76b9c8

 ///  File Name: intro_to_arp_spoofing.pdf
Description:
 Introduction to Arp Spoofing, a method of exploiting the interaction between IP and Ethernet protocols. Includes discussion of switched sniffing, man in the middle attacks, hijacking, cloning, poisoning and more. Describes the operation of ARPoison, Ettercap, and Parasite.
Author:Sean Whalen
File Size:29400
Last Modified:Apr 30 13:45:22 2001
MD5 Checksum:d6e4ccb58a50fb399854112178df5955

 ///  File Name: ipext.ps
Description:
 Security Problems in the TCP/IP Protocol Suite: A description of several attacks on TCP/IP protocols including sequence number spoofing, routing attacks, source address spoofing, and authentication attacks
File Size:107383
Last Modified:Oct 1 17:22:48 1999
MD5 Checksum:7760088eaaf06bd48a87127499848369

 ///  File Name: lsacc.txt
Description:
 Legitimate Sites as Covert Channels: An Extension to the Concept of Reverse HTTP Tunnels. Legitimate sites that allow anonymous posting can be used to covertly send commands to systems behind firewalls.
Author:Errno Jones
File Size:2410
Last Modified:Feb 4 17:44:28 2000
MD5 Checksum:3452061a619b6f08adffd4a528c0cf5e

 ///  File Name: masquerading.html.txt
Description:
 A simple guide on what IP masquerading is, what is it good for, how to work with it etc for newbies in that subject.
Author:Gomorrah
Homepage:http://blacksun.box.sk
File Size:11807
Last Modified:Nov 3 16:56:48 1999
MD5 Checksum:8f87a9f1f803985e6fa2444f0199b1ef

 ///  File Name: mi004en.htm
Description:
 DNS Spoofing and Abuse - Lately on bugtraq there have been a number of DNS abuse related posts.
Homepage:http://hispahack.ccc.de/en/
File Size:17616
Last Modified:Dec 22 17:28:37 1999
MD5 Checksum:f038c15b2d68c642f88213b0c6035da7

 ///  File Name: mi008en.htm
Description:
 SILENT CARRIERS AND LINK PROTOCOLS - As we all know, "wardialing" is one of the best entertainments for hacking/phreaking lovers. Sometimes this activity makes us desperate due to the usual "login: password:" repetition that appears in nearly every CARRIER. It's also usual to find Carriers that present us with no message... just a "CONNECT xxxxx". These ones are usually very interesting as you will see in this document.
Author:BadreL
Homepage:http://hispahack.ccc.de/en/
File Size:37636
Last Modified:Dec 22 17:29:25 1999
MD5 Checksum:0c72c7ac9ae2dd127a007b857ad0968c
 

 ///  Last 10 Files
  1. :· ZDI-08-076.txt
  2. :· ZDI-08-075.txt
  3. :· toursmanager-blindsql.txt
  4. :· phprsgal-sql.txt
  5. :· MDVSA-2008-233.txt
  6. :· java2-malware.pdf
  7. :· natterchat-sql.txt
  8. :· php526-bypass.txt
  9. :· phpfusion7001-sql.txt
  10. :· social-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· ZDI-08-076.txt
  2. :· ZDI-08-075.txt
  3. :· MDVSA-2008-233.txt
  4. :· SSRT080059.txt
  5. :· MDVSA-2008-220-1.txt
  6. :· MDVSA-2008-232.txt
  7. :· USN-674-1.txt
  8. :· dsa-1667-1.txt
  9. :· PR08-09.txt
  10. :· secunia-streamripper.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· toursmanager-blindsql.txt
  2. :· phprsgal-sql.txt
  3. :· natterchat-sql.txt
  4. :· php526-bypass.txt
  5. :· phpfusion7001-sql.txt
  6. :· social-sql.txt
  7. :· vbulletin-xssxsrf.txt
  8. :· askpert-sql.txt
  9. :· backlinkspider-sql.txt
  10. :· exodus-injection.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· pysumpas-0.2.0.tar.gz
  2. :· framework-3.2.tar.gz
  3. :· tor.uclibc.i686.20081115.iso
  4. :· RFIDIOt-Windows-0.1u.zip
  5. :· RFIDIOt-0.1u.tgz
  6. :· dps-v1.5.tar.gz
  7. :· smbrelay3.zip
  8. :· mptrey.tar.gz
  9. :· dotnetsploitsrc-1.0.zip
  10. :· MultiInjectorV0.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice