.:[ packet storm ]:.
                           
know better
know better

 Section:  .. / papers / general  /

Page 4 of 13
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 >> Files 75 - 100 of 315
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: domain-traversal.pdf
Description:
Whitepaper entitled Using Parent Domain Traversal In Drive By Attacks.
Author:hkm
File Size:149814
Last Modified:Nov 9 16:10:56 2008
MD5 Checksum:152aadbe147f9533b4ea621f6cafb24e

 ///  File Name: dont-trust.pdf
Description:
Whitepaper called Don't Trust In Technology. Written in Italian.
Author:IHTeam
Homepage:http://www.ihteam.net/
File Size:210987
Last Modified:Jun 3 00:29:48 2009
MD5 Checksum:65b8997e564db4141a13dae80abbd6cb

 ///  File Name: dquist_valsmith_further_down_the_vm..>
Description:
Presentation called Further Down the VM Spiral.
Author:Danny Quist,Val Smith
Homepage:http://www.offensivecomputing.net/
File Size:42917
Last Modified:Jan 4 15:55:22 2009
MD5 Checksum:35bb70e808912b43b632474926f4e244

 ///  File Name: draft-gont-opsec-ip-security-01.txt
Description:
This is the IETF Internet-Draft entitled "Security Assessment of the Internet Protocol version 4", which is heavily based on the "Security Assessment of the Internet Protocol".
Author:Fernando Gont
Homepage:http://www.ietf.org/
File Size:166263
Last Modified:Sep 2 23:30:05 2008
MD5 Checksum:8df28368bfb0390ab4b35fd2f97b23a2

 ///  File Name: draft-gont-tcpm-urgent-data-01.txt
Description:
This is the IETF Internet-Draft entitled "On the implementation of TCP urgent data". This document describes current issues relevant to the implementation and use of TCP urgent data, aims to change the IETF specifications so that they accommodate what virtually all implementations have been doing with urgent data.
Author:Fernando Gont
Homepage:http://www.ietf.org/
File Size:23200
Last Modified:Feb 27 17:21:45 2009
MD5 Checksum:159a184cd58a0d138051732e2abf043f

 ///  File Name: draft-ietf-tsvwg-port-randomization..>
Description:
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
Author:Michael Vittrup Larsen,Fernando Gont
Homepage:http://www.ietf.org/
File Size:38321
Last Modified:Dec 7 19:38:08 2007
MD5 Checksum:a6d891234260fe58cfc46cda8aea2f7c

 ///  File Name: draft-ietf-tsvwg-port-randomization..>
Description:
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
Author:Michael Vittrup Larsen,Fernando Gont
Homepage:http://www.ietf.org/
File Size:43889
Last Modified:Jul 16 20:13:04 2008
MD5 Checksum:3169ae2876e24bcbe919b97c4fecdeb4

 ///  File Name: draft-ietf-tsvwg-port-randomization..>
Description:
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
Author:Michael Vittrup Larsen,Fernando Gont
Homepage:http://www.ietf.org/
Changes:This new revision of the document addresses the feedback we got from Amit Klein, Matthias Bethke, and Alfred Hoenes.
File Size:49484
Last Modified:Sep 2 23:27:10 2008
MD5 Checksum:7148e6b60b79983dd6d3afc806fb28d5

 ///  File Name: draft-larsen.tgz
Description:
Recently, awareness has been raised about a number of "blind" attacks that can be performed against the Transmission Control Protocol (TCP) and similar protocols. The consequences of these attacks range from throughput-reduction to broken connections or data corruption. These attacks rely on the attacker's ability to guess or know the four- tuple (Source Address, Destination Address, Source port, Destination Port) that identifies the transport protocol instance to be attacked. This document describes a simple and efficient method for random selection of the client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. Both text and pdf formats of this paper are included.
Author:Fernando Gont,M. Larsen
File Size:33774
Last Modified:Feb 13 03:14:47 2007
MD5 Checksum:ea07aacce03e720b7693eb3d90822d48

 ///  File Name: dragons.ps
Description:
There Be Dragons: A description of the wide variety of attacks attempted on the AT&T Internet firewall
File Size:185040
Last Modified:Oct 1 17:22:48 1999
MD5 Checksum:8371b4bd6f034127760bcbf6aeb3f12a

 ///  File Name: dsniff_netmon.txt
Description:
Network Monitoring with Dsniff - This is a practical step by step guide showing how to use Dsniff, MRTG, IP Flow Meter, Tcpdump, NTOP, and Ngrep, and others. It also provides a discussion of how and why we should monitor network traffic.
Author:Duane Dunston
Homepage:http://www.linuxsecurity.com
File Size:35792
Last Modified:May 30 19:31:31 2001
MD5 Checksum:7aef6c3ab9be70806f9c0895d74a0a5d

 ///  File Name: dtors.txt
Description:
Overwriting the .dtors section - This paper presents a concise explanation of a technique to gain control of a C program's flow of execution given that it has been compiled with gcc. This exploit technique has several advantages over changing the stack pointer, including ease of determining the exact position where we want to write and point to our shellcode, and is simpler than a GOT patch.
Author:Juan M. Bello Rivas
Homepage:http://www.synnergy.net
File Size:10059
Last Modified:Dec 12 22:53:04 2000
MD5 Checksum:f693cc32d668324c2205e77036aa3fd1

 ///  File Name: elf-1.tbz
Description:
Project Freedocs Volume 3 - A collection of tutorials regarding elf programming.
Author:Bugghy
Homepage:http://vaida.bogdan.googlepages.com/
File Size:650891
Last Modified:Sep 9 04:05:32 2004
MD5 Checksum:1e8c74bcb9a66fd9d469b5f26afa165e

 ///  File Name: End_Point_Mal.pdf
Description:
Short paper entitled "End Point Malfeasance".
Author:Aditya K Sood
Homepage:http://zeroknock.metaeye.org/
File Size:73898
Last Modified:Mar 5 23:12:22 2007
MD5 Checksum:ef88adc110f5336847e9d6318043adcb

 ///  File Name: ENG_in_a_nutshell.pdf
Description:
Exploit Creation - The Random Approach. A paper about using Encore Next Generation techniques to create exploits.
Author:Nelson Brito
File Size:165713
Last Modified:Oct 6 22:24:31 2008
MD5 Checksum:dd9d916dd9cd088ebacdbac525cd7a78

 ///  File Name: enterprise_specific_security.sxw.pd..>
Description:
White-paper that discusses how large enterprises use a different class of software than small companies. This software and the environment it is purchased in is subject to particular constraints that often require a different strategy. This paper presents the problems with concrete and current examples and suggests some solutions.
Author:Dave Aitel
Homepage:http://www.immunitysec.com/
File Size:292287
Last Modified:Apr 2 05:54:00 2004
MD5 Checksum:f08fdd20ce1f278a7a74b4d4494b495b

 ///  File Name: estcsirc.ps
Description:
Establishing a Computer Security Incident Response Capability: Procedures and issues for establishing a computer security incident response team
File Size:292992
Last Modified:Oct 1 17:22:48 1999
MD5 Checksum:82e372f26332e3e0945c8805f2ad381c

 ///  File Name: Evad-XSS-Filter-MSWord.pdf
Description:
Whitepaper called Evading Web XSS Filters through Word (Microsoft Office and Open Office in Enterprise Web Applications.
Author:Aditya K Sood
Homepage:http://www.secniche.org/
File Size:619832
Last Modified:Apr 1 23:52:32 2009
MD5 Checksum:f76e72f4a3743def423d7e1772986353

 ///  File Name: evilBushLovingMachines.txt
Description:
Apparently some voting machines in New Mexico have decided to pick the opposite candidate of the ones early voters are choosing. More proof that electronic voting systems cannot be used in such an infant stage.
Author:Jim Ludwick
Homepage:http://abqjournal.com/elex/246845elex10-22-04.htm
File Size:5000
Last Modified:Oct 27 00:32:07 2004
MD5 Checksum:4bab988931293345f41299af59140d96

 ///  File Name: ewdd.pdf
Description:
Exploiting Windows Device Drivers - this paper introduces device driver exploitation techniques, provides detailed descriptions of techniques used and includes full exploit code with sample vulnerable driver code for testing purposes.
Author:Piotr Bania
Homepage:http://pb.specialised.info/
File Size:232971
Last Modified:Oct 18 19:40:44 2005
MD5 Checksum:c5eaa08dfb7ca0000e1705388a72e1a3

 ///  File Name: explin.pdf
Description:
Whitepaper called Phishing on XSS way. Written in Arabic.
Author:Xss mAn
File Size:1293034
Last Modified:Feb 12 01:13:12 2010
MD5 Checksum:4c88558e4c4babe8eda4cc38e7ec57a0

 ///  File Name: exploit-writing-tutorial-part-1-sta..>
Description:
Stack-based Overflows - Direct RET Overwrite. Part 1 of a series of tutorials.
Author:Peter Van Eeckhoutte
Homepage:http://www.corelan.be/
File Size:722744
Last Modified:Nov 18 09:48:47 2009
MD5 Checksum:7439ac51e73cb5866cd0a96edff57845

 ///  File Name: exploit-writing-tutorial-part-5-how..>
Description:
Using Debuggers To Speed Up Exploit Development. Part 5 of a series of tutorials.
Author:Peter Van Eeckhoutte
Homepage:http://www.corelan.be/
File Size:1052903
Last Modified:Nov 18 09:48:47 2009
MD5 Checksum:da2402ddc6a06f837214cb75b60eeb7e

 ///  File Name: exploit-writing-tutorial-part-6-byp..>
Description:
Bypassing Stack Cookies, Safeseh, NX/DEP and ASLR. Part 6 in a series of tutorials.
Author:Peter Van Eeckhoutte
Homepage:http://www.corelan.be/
File Size:3212812
Last Modified:Nov 18 09:48:47 2009
MD5 Checksum:777945279f3fd550a74d5ae50a7cf3c3

 ///  File Name: exploit-writing-tutorial-part-7-uni..>
Description:
Write Stack-based Unicode Exploits. Part 7 in a series of tutorials.
Author:Peter Van Eeckhoutte
Homepage:http://www.corelan.be/
File Size:633643
Last Modified:Nov 18 09:48:47 2009
MD5 Checksum:551de38c6e0fc4bed61c1cc7d46335f6