Section: .. / papers / general /
| /// File Name: |
CogMetaSpamBug.pdf |
Description:
|
Whitepaper entitled the Cognitive Cause Of Metacharacter Spamindexing.
| | Author: | Aditya K Sood | | File Size: | 89056 | | Last Modified: | Jan 15 22:44:00 2007 |
| MD5 Checksum: | 71899baadfdc86bf5a190edde8cd69f7 |
|
| /// File Name: |
pnetext.ps |
Description:
|
Pseudo-Network Drivers and Virtual Networks: A method for creating pseudo-networks, much like the pseudo-terminals in use on many UNIX systems.
| | File Size: | 86678 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 394958ef114a0180372ad8da77496119 |
|
| /// File Name: |
berferd.ps |
Description:
|
An Evening With Berferd: In Which a Cracker is Lured, Endured, and Studied: A description of how the author kept an attacker ``on the line'' for several months in order to learn his methods.
| | File Size: | 81747 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 5cc030611fec89e1f717d00e76688835 |
|
| /// File Name: |
vuln-trends.txt |
Description:
|
The primary goal of this whitepaper is to provide analysis that studies research trends using publicly reported vulnerabilities.
| | Author: | Steve Christey | | Homepage: | http://cwe.mitre.org/ | | File Size: | 77213 | | Last Modified: | Oct 8 23:02:12 2006 |
| MD5 Checksum: | 72c0a21ea7ec0241752f95032c5650bf |
|
| /// File Name: |
TopologyDOS.pdf |
Description:
|
This paper re-examines the denial-of-service issue. It looks at the techniques used to accomplish denial of service including process recovery, resource destruction (crash), and resource overload. Looking at how DOS functions allows for the design of other DOS attacks aimed at the processes used by the operating system, the network protocols and the users.
| | Author: | Coretez Giovanni | | Homepage: | http://www.8thport.com | | File Size: | 74536 | | Last Modified: | Jul 12 14:42:31 2000 |
| MD5 Checksum: | 690a78612efc13f42762b3aaa8fca700 |
|
| /// File Name: |
bufferPeek.txt |
Description:
|
Buffer Overflows, A Peek Under The Hood volume 1.0.
| | Author: | Zapotek | | File Size: | 73880 | | Last Modified: | Aug 27 19:02:29 2006 |
| MD5 Checksum: | 4c4088bc8bacc069c8718d8be7293095 |
|
| /// File Name: |
netcash1.ps |
Description:
|
Electronic Currency for the Internet: A framework for electronic currency for the Internet that provides a real-time electronic payment system
| | File Size: | 71547 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | f65699219e8db97425c64266d5bb0efb |
|
| /// File Name: |
linux_kernel_do_brk.pdf |
Description:
|
Whitepaper discussing the do_brk() bug found in the Linux kernel versions 2.4.22 and below.
| | Author: | Paul Starzetz | | Homepage: | http://isec.pl | | File Size: | 60395 | | Last Modified: | Dec 5 07:22:00 2003 |
| MD5 Checksum: | 15510d93f5459f12cff4614494ae9be9 |
|
| /// File Name: |
forensic.ps |
Description:
|
Software Forensics: Can We Track Code to its Authors? An idea that it may be possible to identify the authors of malicious software by the style and features of their programs
| | File Size: | 55685 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 5018d4d563a55cc02e45ec51023319a1 |
|
| /// File Name: |
clientexp.tgz |
Description:
|
Paper on exploiting security issues in client and other non-server software. Includes a sample exploit against tar.
| | Author: | Mixter | | File Size: | 54408 | | Last Modified: | Dec 17 17:18:15 1999 |
| MD5 Checksum: | 12a081e6bef3be60e4b9c4e5f4f087d9 |
|
| /// File Name: |
code_auditing_in_c.txt |
Description:
|
A small whitepaper discussing code auditing in C.
| | Author: | Tal0n | | File Size: | 52888 | | Last Modified: | Aug 11 18:29:07 2007 |
| MD5 Checksum: | 25bd0a787a7800bcf71980d9c707f205 |
|
| /// File Name: |
AveOfAttack.pdf |
Description:
|
A New Avenue of Attack: Event-Driven System Vulnerabilities. This paper gives more technical details to security vulnerabilities in event-driven systems and relates it to Information Warfare.
| | Author: | Simos Xenitellis | | Homepage: | http://www.isg.rhul.ac.uk/~simos/event_demo/ | | File Size: | 51408 | | Last Modified: | Aug 11 19:06:53 2002 |
| MD5 Checksum: | f75606876872b209db3c27c173b8f830 |
|
| /// File Name: |
botnet.tgz |
Description:
|
KYE: Tracking Bots. A whitepaper produced by the German Honeynet Project that looks at the individuals and organization that run botnets.
| | Homepage: | http://www.honeynet.org/ | | File Size: | 50375 | | Last Modified: | Mar 17 02:22:27 2005 |
| MD5 Checksum: | 00408e62b61746075b189692d8332ac7 |
|
| /// File Name: |
agents.txt |
Description:
|
The Evolution of Malicious Agents. This paper examines the evolution of malicious agents by analyzing features and limitations of popular viruses, worms, and trojans, detailing the possibility of a new breed of malicious agents currently being developed on the Internet.
| | Author: | Lenny Zeltser | | Homepage: | http://www.zeltser.com/agents | | File Size: | 48331 | | Last Modified: | May 3 18:20:38 2000 |
| MD5 Checksum: | badaef580cc6781fc436d7fe02f5cce9 |
|
| /// File Name: |
041607.html |
Description:
|
The Web Application Security Consortium is proud to present 'The Importance of Application Classification in Secure Application Development'.
| | Author: | Rohit Sethi | | Homepage: | http://www.webappsec.org/ | | File Size: | 44216 | | Last Modified: | Apr 18 20:40:46 2007 |
| MD5 Checksum: | 067f062ee0605f2c9e32f8a6614d533c |
|
| /// File Name: |
draft-ietf-tsvwg-port-randomization..> |
Description:
|
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
| | Author: | Michael Vittrup Larsen, Fernando Gont | | Homepage: | http://www.ietf.org/ | | File Size: | 43889 | | Last Modified: | Jul 16 20:13:04 2008 |
| MD5 Checksum: | 3169ae2876e24bcbe919b97c4fecdeb4 |
|
| /// File Name: |
seh-paper.txt |
Description:
|
Playing around with SEH (the Structured Exception Handler).
| | Author: | suN8Hclf | | Homepage: | http://www.dark-coders.pl/ | | File Size: | 41425 | | Last Modified: | Aug 18 20:00:12 2008 |
| MD5 Checksum: | 679821c48bb8441a75d5ed76b003bd45 |
|
| /// File Name: |
draft-ietf-tsvwg-port-randomization..> |
Description:
|
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
| | Author: | Michael Vittrup Larsen, Fernando Gont | | Homepage: | http://www.ietf.org/ | | File Size: | 38321 | | Last Modified: | Dec 7 19:38:08 2007 |
| MD5 Checksum: | a6d891234260fe58cfc46cda8aea2f7c |
|
| /// File Name: |
cgisec.txt |
Description:
|
PERL/CGI Hacking - What makes CGI scripts insecure and how to exploit them.
| | Author: | Tonec. | | File Size: | 37250 | | Last Modified: | Jan 15 00:50:21 2001 |
| MD5 Checksum: | 5649ad7dce8adccef9699054adbc31c0 |
|
| /// File Name: |
dsniff_netmon.txt |
Description:
|
Network Monitoring with Dsniff - This is a practical step by step guide showing how to use Dsniff, MRTG, IP Flow Meter, Tcpdump, NTOP, and Ngrep, and others. It also provides a discussion of how and why we should monitor network traffic.
| | Author: | Duane Dunston | | Homepage: | http://www.linuxsecurity.com | | File Size: | 35792 | | Last Modified: | May 30 19:31:31 2001 |
| MD5 Checksum: | 7aef6c3ab9be70806f9c0895d74a0a5d |
|
| /// File Name: |
blackmagic.txt |
Description:
|
Practical guide to advanced network attack and reconnaissance techniques using Python. Includes topics such as firewalking, port scanning, ARP poisoning, and DNS poisoning.
| | Author: | detach | | Homepage: | http://hackaholic.org/ | | File Size: | 35177 | | Last Modified: | Mar 29 00:14:10 2005 |
| MD5 Checksum: | 97334b9d53d7c7dff332a3214a16bd86 |
|
| /// File Name: |
ssh_tunnels.txt |
Description:
|
Encrypted Tunnels using SSH and MindTerm - This paper will discuss using Secure Shell (SSH) and MindTerm to secure organizational communication across the Internet. Easy to setup and reliable software need to be used in order to allow the inexperienced users the ability to quickly establish secure communication channels.
| | Author: | Duane Dunston | | Homepage: | http://www.linuxsecurity.com | | File Size: | 34275 | | Last Modified: | May 30 19:25:25 2001 |
| MD5 Checksum: | c6f772e94054386472ab1a226d50571d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
