.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / papers / general  /

Page 3 of 9
<< 1 2 3 4 5 6 7 8 9 >> Files 50 - 75 of 204
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: draft-larsen.tgz
Description:
 Recently, awareness has been raised about a number of "blind" attacks that can be performed against the Transmission Control Protocol (TCP) and similar protocols. The consequences of these attacks range from throughput-reduction to broken connections or data corruption. These attacks rely on the attacker's ability to guess or know the four- tuple (Source Address, Destination Address, Source port, Destination Port) that identifies the transport protocol instance to be attacked. This document describes a simple and efficient method for random selection of the client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. Both text and pdf formats of this paper are included.
Author:Fernando Gont,M. Larsen
File Size:33774
Last Modified:Feb 13 03:14:47 2007
MD5 Checksum:ea07aacce03e720b7693eb3d90822d48

 ///  File Name: Writing_nasl_scripts.pdf
Description:
 Small whitepaper discussing Nessus and the functions related to writing NASL scripts along with some debugging tips.
Author:Hemil Shah
File Size:33273
Last Modified:Jan 29 11:40:43 2007
MD5 Checksum:36b024263ba35ed9530a0e4f24d249a9

 ///  File Name: CogMetaSpamBug.pdf
Description:
 Whitepaper entitled the Cognitive Cause Of Metacharacter Spamindexing.
Author:Aditya K Sood
File Size:89056
Last Modified:Jan 15 22:44:00 2007
MD5 Checksum:71899baadfdc86bf5a190edde8cd69f7

 ///  File Name: vdwgreport.pdf
Description:
 The US Department of Homeland Security's "Vulnerability Disclosure Framework" document.
Homepage:http://www.dhs.gov/
File Size:307070
Last Modified:Jan 13 17:07:56 2007
MD5 Checksum:6bdc9752e2b650847982d521426669e4

 ///  File Name: Implementing_And_Detecting_A_PCI_Ro..>
Description:
 Whitepaper entitled "Implementing and Detecting a PCI Rootkit". This paper discusses means of persisting a rootkit on a PCI device containing a flashable expansion ROM.
Author:John Heasman
Homepage:http://www.ngssoftware.com/
File Size:304132
Last Modified:Nov 17 20:47:39 2006
MD5 Checksum:7084bf1c02b55654aea3de77ef71ed9b

 ///  File Name: modsecips.html
Description:
 Securing LAMP - A whitepaper that discusses a methodology to configure, test, and run a Secure LAMP environment.
Author:Jesus Oquendo
Homepage:http://www.infiltrated.net/
File Size:15428
Last Modified:Nov 13 11:14:29 2006
MD5 Checksum:bcacccdeb14c1322732a9766c791d51a

 ///  File Name: Continuity-2006.txt
Description:
 Continuity is a free security convention running from 1st to the 3rd December 2006 in Manchester, United Kingdom, open to anyone with a interest in computer security, hacking, phone phreaking, telephony, cryptography, internet security/privacy, urban exploration, social engineering and related subjects.
Homepage:http://www.continuity.org.uk
File Size:2599
Last Modified:Oct 27 17:45:57 2006
MD5 Checksum:491043a9ef2a444f724490559225cca4

 ///  File Name: virtualmachines.txt
Description:
 Paper discussing various ways of detecting virtual machines regardless of the OS used.
Author:Bipin Gautam
File Size:4678
Last Modified:Oct 27 15:33:01 2006
MD5 Checksum:21cbc35e13a2ab126eacb9eee82dd46d

 ///  File Name: SyscalltableAMD64EN.txt
Description:
 Whitepaper titled "How to get sys_call_table on amd64 under Linux".
Author:pouik
File Size:9327
Last Modified:Oct 18 19:35:23 2006
MD5 Checksum:cb8bcc65f01e76177ffea9b98ef6102c

 ///  File Name: binfmt-en.pdf
Description:
 Polluting sys_execve() in kernel space without depending on the sys_call_table[]: A paper discussing design weaknesses in the linux kernel's handling of simply linked lists used to register binary formats. English version.
Author:SHELLCODE Security Research TEAM
Homepage:http://www.shellcode.com.ar
File Size:387120
Last Modified:Oct 9 19:47:50 2006
MD5 Checksum:cbc9e056a14996a9afd144bb757b9ce5

 ///  File Name: binfmt-es.pdf
Description:
 Polluting sys_execve() in kernel space without depending on the sys_call_table[]: A paper discussing design weaknesses in the linux kernel's handling of simply linked lists used to register binary formats. Spanish Version.
Author:SHELLCODE Security Research TEAM
Homepage:http://www.shellcode.com.ar
File Size:392521
Last Modified:Oct 9 19:46:25 2006
MD5 Checksum:ed63f18b799338c8d20d7f13b9c637fe

 ///  File Name: vuln-trends.txt
Description:
 The primary goal of this whitepaper is to provide analysis that studies research trends using publicly reported vulnerabilities.
Author:Steven M. Christey
Homepage:http://cwe.mitre.org/
File Size:77213
Last Modified:Oct 8 23:02:12 2006
MD5 Checksum:72c0a21ea7ec0241752f95032c5650bf

 ///  File Name: RCE_PDF.zip
Description:
 This paper is intended as an introduction to reverse engineering for someone who has no experience on the subject.
Author:Craig Heffner
Homepage:http://www.craigheffner.com/
File Size:513936
Last Modified:Sep 7 04:14:14 2006
MD5 Checksum:d0323f4d500864e2a4fd71e1607fc5a1

 ///  File Name: VT-belva-dekay-final.pdf
Description:
 Whitepaper titled "Creating Business Through Virtual Trust: How to Gain and Sustain a Competitive Advantage Using Information Security".
Author:Kenneth F. Belva,Sam H. Dekay
Homepage:http://www.ftusecurity.com/
File Size:187709
Last Modified:Aug 28 23:09:56 2006
MD5 Checksum:7f6b399cf8ffbbe96ca5477648dc7c60

 ///  File Name: bufferPeek.txt
Description:
 Buffer Overflows, A Peek Under The Hood volume 1.0.
Author:Zapotek
File Size:73880
Last Modified:Aug 27 19:02:29 2006
MD5 Checksum:4c4088bc8bacc069c8718d8be7293095

 ///  File Name: z4ck-book_final.pdf
Description:
 Z4CK is a cyber thriller which includes a gripping story line with an insight into realistic hacker tools and techniques. The main story is about a hacker who creates the ultimate security tool capable of breaching any network security. Other tools such as Nmap, Nessus, Hydra, and Netcat are also put to good use in this novel. The PDF is completely free to download.
Author:Kev Milne
Homepage:http://www.z4ck.org
Related File:digiforce-isbn-0955292905.pdf
File Size:1406687
Last Modified:Jun 28 22:22:11 2006
MD5 Checksum:daa81c32eef55724ce130f8638bbcb2b

 ///  File Name: digiforce-isbn-0955292905.pdf
Description:
 Digital Force is the follow-up to Z4CK. Again realistic hacker techniques and tools in this cyber-thiller which has several twists. Duncan Steele must work for the UK Government elite hacker unit 'cyber-secure'.
Author:Kev Milne
Homepage:http://www.z4ck.org
Related File:z4ck-book_final.pdf
File Size:850618
Last Modified:Jun 28 22:20:06 2006
MD5 Checksum:bbe57037954b16f5997f8b1f313c672e

 ///  File Name: bbpaint.pdf
Description:
 Whitepaper describing how ptrace() might be used to build a Control Flow Integrity system.
Author:Sebastian Krahmer
File Size:2150784
Last Modified:Jun 26 23:40:45 2006
MD5 Checksum:b4fc325a07b02849e37e300fd38f2b7f

 ///  File Name: instrumental.pdf
Description:
 Whitepaper discussing how to generate runtime call graphs using certain GCC features.
Author:Sebastian Krahmer
File Size:406833
Last Modified:Jun 26 23:39:35 2006
MD5 Checksum:4406692f431765df98c31d321f8c9fcc

 ///  File Name: stakkato.pdf
Description:
 Paper discussing the Stakkato intrusions which ultimately resulted in the theft of IOS source code released by one of the affected sites detailing how they caught stakkato.
Author:Micheal Turner
Homepage:http://www.nsc.liu.se/~nixon/stakkato.pdf
File Size:163111
Last Modified:May 25 21:30:34 2006
MD5 Checksum:3a6f5bc541aea4bfd352fdd6d8431aeb

 ///  File Name: Becoming_a_Hacker_-_Part_1.pdf
Description:
 An introductory paper for would-be hackers. It could also prove useful for network admins and hackers that want to improve themselves. Chapters include: The OS, Understanding TCP/IP, Becoming a Hacker, WHOIS Databases, Basic Tracerouting and Path Analysis, Mapping with DNS and Geolocation and more.
Author:Elite Nabukadnezar
File Size:937329
Last Modified:Apr 28 19:58:49 2006
MD5 Checksum:a1f9344215ff0a8ba83d3479fe01d821

 ///  File Name: AnonMoney.zip
Description:
 An interesting paper on using the TOR network to anonymously collect funds with eGold.
Author:Mr Babs
File Size:27881
Last Modified:Apr 28 12:47:57 2006
MD5 Checksum:dd9e819d06c9b8ad5e1c6d1b4d87ce5c

 ///  File Name: A_Modular_Approach_to_Data_Validati..>
Description:
 This paper presents a modular approach to performing thorough data validation in modern web applications so that the benefits of modular component based design; extensibility, portability and re-use can be released. The paper begins with an explanation of the vulnerabilities introduced through poor validation and then goes on to discuss the merits of a number of common data validation methodologies. A modular approach is introduced together with practical examples of how to implement such a scheme in a web application. It also provides information on common attack vectors, principles of validation, a modular solution and implementation of that solution.
Author:Stephen de Vries
Homepage:http://www.corsaire.com/
File Size:382808
Last Modified:Apr 12 14:59:25 2006
MD5 Checksum:a0b2f3ac1b5d56c1eb5b580c14a11f16

 ///  File Name: researchreport_2006-02-15_final2.pd..>
Description:
 Whitepaper discussing various research regarding network-based covert channels.
Author:Marc Smeets,Matthijs Koot
File Size:781325
Last Modified:Mar 2 03:53:43 2006
MD5 Checksum:9904a950d4a7bdd98ae767a26693c779

 ///  File Name: report.pdf
Description:
 Whitepaper discussing how DNS can be used for detecting and monitoring in a network.
Author:Antoine Schonewille,Dirk-Jan van Helmond
File Size:244923
Last Modified:Feb 25 20:34:33 2006
MD5 Checksum:741418521669132f0fd03db71e85f5c9
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice