Section: .. / papers / general /
| /// File Name: |
dtors.txt |
Description:
|
Overwriting the .dtors section - This paper presents a concise explanation of a technique to gain control of a C program's flow of execution given that it has been compiled with gcc. This exploit technique has several advantages over changing the stack pointer, including ease of determining the exact position where we want to write and point to our shellcode, and is simpler than a GOT patch.
| | Author: | Juan M. Bello Rivas | | Homepage: | http://www.synnergy.net | | File Size: | 10059 | | Last Modified: | Dec 12 22:53:04 2000 |
| MD5 Checksum: | f693cc32d668324c2205e77036aa3fd1 |
|
| /// File Name: |
ccla4.zip |
Description:
|
Computer Crime Law Archive Volume 4 - Tutorial on state computer crime laws for New Hampshire, New Jersey, New Mexico, New York, Ohio, Oklahoma, Oregon, Pennsylvania, Rhode Island, and South Carolina.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 943650 | | Last Modified: | Nov 29 23:35:30 2000 |
| MD5 Checksum: | 6f1c0cecbc5cdf90bae2ec5c456789e6 |
|
| /// File Name: |
oracle.security.txt |
Description:
|
Lots of good information on Oracle Database security. From the packet storm forums.
| | Author: | Daemon Root | | File Size: | 29834 | | Last Modified: | Nov 19 04:20:05 2000 |
| MD5 Checksum: | 1f52791b1d4b2027105f7a73d4f60273 |
|
| /// File Name: |
ccla3.zip |
Description:
|
Computer Crime Law Archive Volume 3 (v1.1) - Tutorial on state computer crime laws for Massachusetts, Michigan, Minnesota, Mississippi, Missouri, Montana, North Carolina, North Dakota, Nebraska, and Nevada.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 916308 | | Last Modified: | Nov 15 21:17:04 2000 |
| MD5 Checksum: | 201c547980897617631b57e8b4bdca30 |
|
| /// File Name: |
transparency.txt |
Description:
|
This paper discusses full disclosure, the necessity of legitimate network scanning, and the results of criminalizing security research and information. Overreactions to harmless activities not crossing legal boundaries are leading to a scenario where anyone acquiring basic information about a system needs to be afraid about potential consequences.
| | Author: | Mixter | | Homepage: | http://mixter.warrior2k.com | | File Size: | 10257 | | Last Modified: | Nov 13 16:29:15 2000 |
| MD5 Checksum: | 6392ac2ef70447827974be8b88605ec2 |
|
| /// File Name: |
kye-worm.txt |
Description:
|
Know Your Enemy: Worms at War - A Windows 98 honeypot machine was taken over by 2 different worms in a week. The worms spread via open file shares and installed the distributed.net RC5 client.
| | Author: | Lance Spitzner | | Homepage: | http://www.enteract.com/~lspitz | | File Size: | 24247 | | Last Modified: | Nov 10 15:53:16 2000 |
| MD5 Checksum: | 1f23b9b0bef894b514c2ff7775caa093 |
|
| /// File Name: |
ccla2.zip |
Description:
|
Computer Crime Law Archive Volume 2 - Tutorial on state computer crime laws for Hawaii, Idaho, Illinois, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maine, and Maryland.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 880034 | | Last Modified: | Nov 7 15:44:27 2000 |
| MD5 Checksum: | 10cac24fdd50ffcd2fcfd5f120e9996a |
|
| /// File Name: |
ccla1.zip |
Description:
|
Computer Crime Law Archive Volume 1 - Tutorial on state computer crime laws for Alabama, Alaska, Arizona, Arkansas, California, Colorado, Connecticut, Delaware, Florida, and Georgia.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 1027739 | | Last Modified: | Nov 7 15:43:30 2000 |
| MD5 Checksum: | 9adb175f799d87d8188b70c98c0648e6 |
|
| /// File Name: |
rfpolicy-2.0.txt |
Description:
|
RFPolicy 2.0 - rain forest puppy's policy on notifying vendors and releasing security vulnerabilities.
| | Author: | rain forest puppy | | Homepage: | http://www.wiretrip.net | | Changes: | Less stringent on timeframes, more stringent on communication. Thanks to everyone who contributed. I also added some supporting notes (FAQ, etc) to help dispell some misconceptions on it. | | File Size: | 15498 | | Last Modified: | Oct 17 15:45:59 2000 |
| MD5 Checksum: | 4bb04bf50ab00e365ec966deb62c2a7a |
|
| /// File Name: |
overflow.txt |
Description:
|
overflow.txt is a paper written in Spanish which explains buffer overflows and includes sample code.
| | Author: | Venomous | | Homepage: | http://www.rdcrew.com.ar | | File Size: | 11650 | | Last Modified: | Jul 31 18:20:08 2000 |
| MD5 Checksum: | 8fd971431c1591e222406c4440ae125a |
|
| /// File Name: |
PBX-draft.doc |
Description:
|
Finding Holes in Your PBX Before Someone Else Does. Covers switching algorithms, susceptibility to tapping, conferencing, remote access, maintenance feature vulnerabilities, line testing capabilities, undocumented maintenance features, software loading and update tampering, tamper and error detection, crash-restart attacks, live microphone vulnerabilities, embedded login IDs and passwords, alarms and audit trails, silent monitoring, override (intrude), voice mail security, and denial of service.
| | Author: | National Institute of Standards and Technology | | Homepage: | http://csrc.nist.gov/publications | | File Size: | 440320 | | Last Modified: | Jul 12 17:47:25 2000 |
| MD5 Checksum: | 449ccc1c7ad6877d73a42e91fd094d08 |
|
| /// File Name: |
TopologyDOS.pdf |
Description:
|
This paper re-examines the denial-of-service issue. It looks at the techniques used to accomplish denial of service including process recovery, resource destruction (crash), and resource overload. Looking at how DOS functions allows for the design of other DOS attacks aimed at the processes used by the operating system, the network protocols and the users.
| | Author: | Coretez Giovanni | | Homepage: | http://www.8thport.com | | File Size: | 74536 | | Last Modified: | Jul 12 14:42:31 2000 |
| MD5 Checksum: | 690a78612efc13f42762b3aaa8fca700 |
|
| /// File Name: |
cw-biometric.txt |
Description:
|
Short paper on biometric authentication, including Finger Print Systems, Voice Systems, Handwriting Systems, Hand Geometry Systems, and Eye/Retina Scanner Systems.
| | Author: | Ashtar | | File Size: | 7906 | | Last Modified: | Jul 5 18:03:31 2000 |
| MD5 Checksum: | e0d7ceeffd63d247b6788d3eac3b3a95 |
|
| /// File Name: |
jolt2.c-analysis.txt |
Description:
|
Analysis of jolt2.c (Revision 2) - Technical analysis of the recent "IP Fragment Reassembly" Windows remote denial of service vulnerability described in ms00-029 which is effective against Win98, WinNT4/SP5,6, and Win2K. This attack is actually a network layer resource exhaustion attack.
| | Author: | Mikael Olsson | | Homepage: | http://www.enternet.se | | File Size: | 10878 | | Last Modified: | Jun 6 18:28:31 2000 |
| MD5 Checksum: | be284d3d976023be331b8c34be3afc2f |
|
| /// File Name: |
ZCsocksChainWin.txt |
Description:
|
Guide to Anonymity with MS-Windows. This little tutorial will explain step by step how to add support for socks chains to all your windows programs like telnet, ftp, irc, http, portscanners... (even if they don't support socks).
| | Author: | Zoa_chien | | File Size: | 6483 | | Last Modified: | May 22 18:20:04 2000 |
| MD5 Checksum: | ef3837f013583747982bf3e17bfb73a7 |
|
| /// File Name: |
cruciphux |
Description:
|
A paper written to describe and give a brief overview of events on the whole www.apache.org hack.
| | Author: | Cruciphux | | Homepage: | http://welcome.to/HWA.hax0r.news | | File Size: | 3336 | | Last Modified: | May 9 16:42:18 2000 |
| MD5 Checksum: | 9cd431acb07b6adb4e6aa2e57264b269 |
|
| /// File Name: |
how.defaced.apache.org.txt |
Description:
|
How www.apache.org was defaced. This paper does _not_ uncover any new vulnerabilities. It points out common (and slightly less common) configuration errors, which even the people at apache.org made. This is a general warning. Learn from it.
| | Author: | Karin,Hardbeat | | File Size: | 6220 | | Last Modified: | May 4 17:03:52 2000 |
| MD5 Checksum: | 6fcb5e9296d4d2412c8cd9e03a7ac4d4 |
|
| /// File Name: |
agents.txt |
Description:
|
The Evolution of Malicious Agents. This paper examines the evolution of malicious agents by analyzing features and limitations of popular viruses, worms, and trojans, detailing the possibility of a new breed of malicious agents currently being developed on the Internet.
| | Author: | Lenny Zeltser | | Homepage: | http://www.zeltser.com/agents | | File Size: | 48331 | | Last Modified: | May 3 18:20:38 2000 |
| MD5 Checksum: | badaef580cc6781fc436d7fe02f5cce9 |
|
| /// File Name: |
hacker_society.txt |
Description:
|
Hacker Society Whitepaper - Rarely does the media explain the ethics, codes, rules and regulations that govern this mysterious society. A society that exists known solely amongst underground. A professional approach has not been taken in analysing this mysterious sub culture.
| | Author: | Gilbert Alaverdian | | File Size: | 22417 | | Last Modified: | Apr 18 18:26:21 2000 |
| MD5 Checksum: | 54d79d3a9903f99483b036f02bfd7768 |
|
| /// File Name: |
NetIntro.txt |
Description:
|
Introduction to Internetworking - Inspired by a cisco class, here is some information on how todays high bandwidth network connections work, and how packets get to thier destination.
| | Author: | RatDance | | Homepage: | http://neoerudition.hypermart.net | | File Size: | 9121 | | Last Modified: | Apr 11 16:04:00 2000 |
| MD5 Checksum: | c7d0a9e9d217aa3f5a8db30735432070 |
|
| /// File Name: |
compvuln_draft.pdf |
Description:
|
Online copy of the book "Computer Vulnerabilities" covers a complete description of how vulnerabilities can be catagoried, adding great detail to previous works on vulnerability taxonomies. This book is a draft, but because of the dynamic nature of network publications, can be revised at any time.
| | Author: | Eric Knight | | Homepage: | http://www.securityparadigm.com | | File Size: | 399694 | | Last Modified: | Mar 11 02:42:20 2000 |
| MD5 Checksum: | c0bbb76448c755c0f05135d0f9e7297d |
|
| /// File Name: |
ports.pdf |
Description:
|
White Paper on Automatic Protocol Identification on Scanned Ports. We examine the problem and propose a solution for automatically identifying the protocol run on ports that a previous network scan found to be open.
| | Author: | Izar Tarandach | | Homepage: | http://razor.bindview.com/publish/index.shtml | | File Size: | 89823 | | Last Modified: | Feb 24 20:29:28 2000 |
| MD5 Checksum: | eb71afe6cdb2a5cbb3de4a120f7fa752 |
|
| /// File Name: |
MiddleMan.pdf |
Description:
|
Paper explaining man-in-the-middle attacks, using a secure web connection as an example.
| | Author: | Coretez Giovanni | | Homepage: | http://www.8thport.com | | File Size: | 23949 | | Last Modified: | Feb 23 03:18:18 2000 |
| MD5 Checksum: | 973f3acfc65b90435e2c51884eef8682 |
|
| /// File Name: |
check_for_dos.txt |
Description:
|
Paper explaining how to begin to check a home wndows box for the presence of ddos tools or trojans.
| | Author: | D Evans | | File Size: | 5640 | | Last Modified: | Feb 14 17:50:58 2000 |
| MD5 Checksum: | 94e70342d0dd8af0da39be689de985f4 |
|
| /// File Name: |
acros.txt |
Description:
|
CaIRA: Computer and Internet-Related Acronyms. 1,725 acronyms and abbreviations with definitions and explanations. Includes a listing of all internet country abbreviations.
| | Author: | Raven | | Homepage: | http://blacksun.box.sk | | File Size: | 119341 | | Last Modified: | Feb 3 11:35:16 2000 |
| MD5 Checksum: | 81861a7a8afc090fb589e09620587a27 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
