Section: .. / papers / general /
| /// File Name: |
handbook.txt |
Description:
|
Site Security Handbook - RFC 1244: The product of the Site Security Policy Handbook Working Group of the Internet Engineering Task Force
| | File Size: | 253471 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | b2408d2354d2ddbcdc5f0339fee5eaa8 |
|
| /// File Name: |
heap_off_by_one.txt |
Description:
|
A short paper discussing exploitation of vulnerabilities consisting of a null byte written passed the end of a dynamically allocated buffer.
| | Author: | qitest1 | | Homepage: | http://bespin.org/~qitest1/ | | File Size: | 13050 | | Last Modified: | Jun 24 23:48:01 2003 |
| MD5 Checksum: | 34476d3f8b558ed26ed7286d96e42509 |
|
| /// File Name: |
holland.ps |
Description:
|
Computer Break-ins: A Case Study: A study of multiple break-in attempts at Vrije Universiteit in Amsterdam
| | File Size: | 94107 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | b5421f49a366a40cf74ebd43ed9312f9 |
|
| /// File Name: |
HomeSecurityMethodologyVacationGuid..> |
Description:
|
This is the Home Security Methodology Vacation Guide, written to help secure your home before you go on holiday.
| | Homepage: | http://www.isecom.org/ | | File Size: | 1986916 | | Last Modified: | Jul 18 17:26:27 2008 |
| MD5 Checksum: | 346bf0939e1448e386c2e17f4862ea61 |
|
| /// File Name: |
how.defaced.apache.org.txt |
Description:
|
How www.apache.org was defaced. This paper does _not_ uncover any new vulnerabilities. It points out common (and slightly less common) configuration errors, which even the people at apache.org made. This is a general warning. Learn from it.
| | Author: | Karin, Hardbeat. | | File Size: | 6220 | | Last Modified: | May 4 17:03:52 2000 |
| MD5 Checksum: | 6fcb5e9296d4d2412c8cd9e03a7ac4d4 |
|
| /// File Name: |
html5whitepaper.pdf |
Description:
|
Abusing HTML 5 Structured Client-Side Storage - A whitepaper analyzing security implications of this technology and how showing how different attacks can be conducted.
| | Author: | Alberto Trivero | | Homepage: | http://www.codebug.org | | File Size: | 572736 | | Last Modified: | Jul 21 17:56:20 2008 |
| MD5 Checksum: | cd342087438c5a1b591b57870b770d41 |
|
| /// File Name: |
httpResponseSmuggle.txt |
Description:
|
Whitepaper entitled "HTTP Response Smuggling". It discusses evasion techniques to bypass anti-HTTP response splitting strategies.
| | Author: | Amit Klein | | File Size: | 23560 | | Last Modified: | Feb 25 17:15:15 2006 |
| MD5 Checksum: | 028a2ccfa04710b1e9b0329c14a9e4ee |
|
| /// File Name: |
i-bot.txt |
Description:
|
I, Bot, Taking Advantage Of Robots Power. A response to the original bot related article in Phrack written by Michal Zalewski.
| | Author: | Crossbower | | Homepage: | http://www.playhack.net/ | | File Size: | 15138 | | Last Modified: | May 16 22:26:14 2007 |
| MD5 Checksum: | 50a152ffdd28969e6ad885b444f34b17 |
|
| /// File Name: |
ICI.TXT |
Description:
|
Whitepaper discussing security problems and solutions in wireless cafes. Lots of good general info on security, attacks, tools, encryption, etc.
| | Homepage: | http://www.rootshell.be/~ad/ | | File Size: | 148874 | | Last Modified: | May 12 15:54:36 2008 |
| MD5 Checksum: | ae06c9445ebe7a64d20c3feb1ae95eb0 |
|
| /// File Name: |
IISUnicodeExplained.doc |
Description:
|
This paper goes into detail on Unicode exploitation with how it works and how to actually perform attacks against IIS servers that are vulnerable to this bug.
| | Author: | Gary Brooks | | File Size: | 167936 | | Last Modified: | Nov 17 12:47:34 2002 |
| MD5 Checksum: | ab7336660866d82a2bb7998a13278186 |
|
| /// File Name: |
Implementing_And_Detecting_A_PCI_Ro..> |
Description:
|
Whitepaper entitled "Implementing and Detecting a PCI Rootkit". This paper discusses means of persisting a rootkit on a PCI device containing a flashable expansion ROM.
| | Author: | John Heasman | | Homepage: | http://www.ngssoftware.com/ | | File Size: | 304132 | | Last Modified: | Nov 17 20:47:39 2006 |
| MD5 Checksum: | 7084bf1c02b55654aea3de77ef71ed9b |
|
| /// File Name: |
Inf_Pr_Ldap_Gar_Dumps.pdf |
Description:
|
The LDAP garbage dump that remains on web server results in information disclosure. Security of LDAP may be compromised, if for instance a search engine crawls through untamed directories on the web server and finds information through the ldap.xml file.
| | Author: | Aditya K Sood | | Homepage: | http://www.secniche.org/ | | File Size: | 436128 | | Last Modified: | Dec 4 00:27:02 2007 |
| MD5 Checksum: | 16a4b1bd047ad43f4255dac007b0a1f8 |
|
| /// File Name: |
InformationSecurity.pdf |
Description:
|
Whitepaper entitled "The Role of Modeling and Simulation in Information Security".
| | Author: | Mohammad Heidari | | File Size: | 414687 | | Last Modified: | Feb 9 00:02:52 2006 |
| MD5 Checksum: | 9a3b07d375e390281e4dc563bbebf6b8 |
|
| /// File Name: |
instrumental.pdf |
Description:
|
Whitepaper discussing how to generate runtime call graphs using certain GCC features.
| | Author: | Sebastian Krahmer | | File Size: | 406833 | | Last Modified: | Jun 26 23:39:35 2006 |
| MD5 Checksum: | 4406692f431765df98c31d321f8c9fcc |
|
| /// File Name: |
InternetProtocol.pdf |
Description:
|
This document aims to raise awareness about the many security threats based on the IP protocol, those that we are currently facing, and those we may still have to deal with in the future. It provides advice for the secure implementation of the IP, and also insights about the security aspects of the IP that may be of help to the Internet operations community.
| | Author: | Fernando Gont | | Homepage: | http://www.cpni.gov.uk/ | | File Size: | 675316 | | Last Modified: | Aug 14 20:12:10 2008 |
| MD5 Checksum: | 8621c729eab84344f70a70121b88b710 |
|
| /// File Name: |
jolt2.c-analysis.txt |
Description:
|
Analysis of jolt2.c (Revision 2) - Technical analysis of the recent "IP Fragment Reassembly" Windows remote denial of service vulnerability described in ms00-029 which is effective against Win98, WinNT4/SP5,6, and Win2K. This attack is actually a network layer resource exhaustion attack.
| | Author: | Mikael Olsson | | Homepage: | http://www.enternet.se | | File Size: | 10878 | | Last Modified: | Jun 6 18:28:31 2000 |
| MD5 Checksum: | be284d3d976023be331b8c34be3afc2f |
|
| /// File Name: |
juggle.txt |
Description:
|
Juggling with packets: floating data storage - White paper discussing the use of network traffic as a storage medium for data and how this could be utilized to not leave an audit trail.
| | Author: | Wojciech Purczynski, Michal Zalewski | | Homepage: | http://isec.pl/ | | File Size: | 18363 | | Last Modified: | Oct 6 15:25:23 2003 |
| MD5 Checksum: | 2994c468e5e7ed30279735e471c26c4e |
|
| /// File Name: |
kernel-1.tbz |
Description:
|
Project Freedocs Volume 1 - A collection of tutorials regarding kernel programming.
| | Author: | Buggy | | Homepage: | http://vaida.bogdan.googlepages.com/ | | File Size: | 13051902 | | Last Modified: | Sep 9 04:10:02 2004 |
| MD5 Checksum: | 4a12608dde411e4a41050e00821dcc61 |
|
| /// File Name: |
kernel-3.tbz |
Description:
|
Project Freedocs Volume 1 - A collection of tutorials regarding kernel programming.
| | Author: | Bugghy, Bugghy | | Homepage: | http://rootshell.be/~vaidab | | Changes: | Added more kernel related tutorials and tools. | | File Size: | 7595495 | | Last Modified: | May 22 14:47:08 2005 |
| MD5 Checksum: | 1b1f4c52eddd173f17806a73e96b2035 |
|
| /// File Name: |
kye-worm.txt |
Description:
|
Know Your Enemy: Worms at War - A Windows 98 honeypot machine was taken over by 2 different worms in a week. The worms spread via open file shares and installed the distributed.net RC5 client.
| | Author: | Lance Spitzner | | Homepage: | http://www.enteract.com/~lspitz | | File Size: | 24247 | | Last Modified: | Nov 10 15:53:16 2000 |
| MD5 Checksum: | 1f23b9b0bef894b514c2ff7775caa093 |
|
| /// File Name: |
linux_kernel_do_brk.pdf |
Description:
|
Whitepaper discussing the do_brk() bug found in the Linux kernel versions 2.4.22 and below.
| | Author: | Paul Starzetz | | Homepage: | http://isec.pl | | File Size: | 60395 | | Last Modified: | Dec 5 07:22:00 2003 |
| MD5 Checksum: | 15510d93f5459f12cff4614494ae9be9 |
|
| /// File Name: |
malware-trends.pdf |
Description:
|
What are the driving forces behind the rise of malware? Who is behind it, and what tactics do they use? How are vendors responding, and what should organizations, researchers, and end users keep in mind for the upcoming future? These and many other questions will be discussed in this article, combining security experience, business logic, a little bit of psychology, market trends, and personal chats with knowledgeable folks from the industry.
| | Author: | Dancho Danchev | | Homepage: | http://ddanchev.blogspot.com/ | | File Size: | 990531 | | Last Modified: | Jan 11 01:05:37 2006 |
| MD5 Checksum: | 3452a22642ccd435f41d3b4b964fec30 |
|
| /// File Name: |
mi018en.htm |
Description:
|
Shellcode programming for SCO. All examples are taken from a SCO OpenServer 5.0.4 machine so some of them may not work under another SCO type of Unix (like unixware) although I have tried to make it as portable as possible.
| | Author: | Renegade Master | | Homepage: | http://hispahack.ccc.de/en/index.html | | File Size: | 22438 | | Last Modified: | Jan 27 15:21:23 2000 |
| MD5 Checksum: | e2cf541e7912b8ad9f967cc885c076c9 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
