.:[ packet storm ]:. - http://packetstormsecurity.org/

Section: .. / papers / protocols /

Page 2 of 3
<< 1 2 3 >> Files 25 - 50 of 54

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	host-detection.pdf
Description:	Advanced Host Detection - Techniques To Validate Host-Connectivity. (PDF) Security Engineers spend a tireless amount of effort to block and filter packet anomalies in an internetwork connected environment. Advanced host mapping bypasses many forms of intrusion detection systems, filters, and routers, essentially enabling an attacker to map and discover previously unknown firewalled hosts. Also available in TXT and DOC form.
Author:	Dethy
Homepage:	http://www.synnergy.net
File Size:	61012
Last Modified:	Jan 15 16:19:41 2001
MD5 Checksum:	2866b8e06c2e023af6d2353b6ac6c628

/// File Name:	anon_email.txt
Description:	The Design, Implementation and Operation of an Email Pseudonym Server - Attacks on servers that provide anonymity generally fall into two categories: attempts to expose anonymous users and attempts to silence them. This paper describes the design, implementation, and operation of nym. alias. net, a server providing untraceable email aliases.
Author:	David Mazi and M. Frans Kaashoek
File Size:	58457
Last Modified:	Apr 4 05:58:06 2000
MD5 Checksum:	faa6f6df7f4dc4c2ae3dfc8883f14559

/// File Name:	Unverified_Fields_1.0.pdf
Description:	The following problem (as discussed in this paper) has not yet been identified. Certain firewalls today, will not authenticate the validity of certain protocol fields within the packet they are processing. The risk is exposure of information, mainly unique patterns of behavior produced by the probed machines answering our crafted queries. Those patterns will help a malicious computer attacker to identify the operating systems in use. Postscript version available here.
Author:	Ofir Arkin
Homepage:	http://www.sys-security.com/archive/papers
File Size:	55847
Last Modified:	Oct 15 15:36:08 2000
MD5 Checksum:	1cbb363d9d632889d80b6632248e326e

/// File Name:	afs.ps
Description:	Highjacking AFS: A description of security weaknesses in the Andrew File System (AFS)
File Size:	54918
Last Modified:	Oct 1 17:22:48 1999
MD5 Checksum:	231b8143c6fa64e5d3a2dc8cdb755a7d

/// File Name:	host-detection.txt
Description:	Advanced Host Detection - Techniques To Validate Host-Connectivity. Security Engineers spend a tireless amount of effort to block and filter packet anomalies in an internetwork connected environment. Advanced host mapping bypasses many forms of intrusion detection systems, filters, and routers, essentially enabling an attacker to map and discover previously unknown firewalled hosts. Also available in PDF and DOC form.
Author:	Dethy
Homepage:	http://www.synnergy.net
File Size:	42776
Last Modified:	Jan 15 16:17:57 2001
MD5 Checksum:	29e1aa57dd7594aeb700b3e563f4579a

/// File Name:	OW-003-ssh-traffic-analysis.txt
Description:	Openwall Advisory - Passive Analysis of SSH Traffic. This advisory demonstrates several weaknesses in implementations of SSH protocols. When exploited, they let the attacker obtain sensitive information by passively monitoring encrypted SSH sessions. The information can later be used to speed up brute-force attacks on passwords, including the initial login password and other passwords appearing in interactive SSH sessions, such as those used with su(1) and Cisco IOS "enable" passwords. All attacks described in this advisory require the ability to monitor (sniff) network traffic between one or more SSH servers and clients.
Author:	Solar Designer
Homepage:	http://www.openwall.com/linux
File Size:	39118
Last Modified:	Mar 19 17:46:08 2001
MD5 Checksum:	a6971bfa7f65f86bca364b3a8b03a734

/// File Name:	mi008en.htm
Description:	SILENT CARRIERS AND LINK PROTOCOLS - As we all know, "wardialing" is one of the best entertainments for hacking/phreaking lovers. Sometimes this activity makes us desperate due to the usual "login: password:" repetition that appears in nearly every CARRIER. It's also usual to find Carriers that present us with no message... just a "CONNECT xxxxx". These ones are usually very interesting as you will see in this document.
Author:	BadreL
Homepage:	http://hispahack.ccc.de/en/
File Size:	37636
Last Modified:	Dec 22 17:29:25 1999
MD5 Checksum:	0c72c7ac9ae2dd127a007b857ad0968c

/// File Name:	newtcp.htm
Description:	Strange Attractors and TCP/IP Sequence Number Analysis - One Year Later. Includes cool 3D pictures of the sequence number distribution for several OS's and analyzes the predictability of each. Many OS's have very predictable sequence numbers, allowing non encrypted connections to be spoofed and enabling protocol attacks against encrypted connections.
Author:	Michal Zalewski
Homepage:	http://lcamtuf.coredump.cx/newtcp
File Size:	33449
Last Modified:	Sep 11 18:48:22 2002
MD5 Checksum:	010445ebec5632199f8b278f617c32ce

/// File Name:	portscan.txt
Description:	Examining port scan methods - Analyzing Audible Techniques. This paper attempts to enumerate a variety of ways to discover and map internal/external networks using signature-based packet replies and known protocol responses when scanning. Specifically, this document presents all known techniques used to determine open/closed ports on a host and ways an attacker may identify the network services running on arbitrary servers.
Author:	Dethy
Homepage:	http://www.synnergy.net
File Size:	32573
Last Modified:	Jan 5 03:24:32 2001
MD5 Checksum:	4608dc43a219fc1243b13e3e1ca6f75d

/// File Name:	intro_to_arp_spoofing.pdf
Description:	Introduction to Arp Spoofing, a method of exploiting the interaction between IP and Ethernet protocols. Includes discussion of switched sniffing, man in the middle attacks, hijacking, cloning, poisoning and more. Describes the operation of ARPoison, Ettercap, and Parasite.
Author:	Sean Whalen
File Size:	29400
Last Modified:	Apr 30 13:45:22 2001
MD5 Checksum:	d6e4ccb58a50fb399854112178df5955

/// File Name:	tcp.ps
Description:	A Weakness in the 4.2BSD TCP/IP Software: A description of a security weakness of the TCP/IP protocol suite as implemented in 4.2BSD UNIX
File Size:	27041
Last Modified:	Oct 1 17:22:48 1999
MD5 Checksum:	d598165b645dfb2897a5f66f68a1abcf

/// File Name:	gre.pdf.gz
Description:	This paper describes a possible way to attack hosts with RFC1918 IP addresses behind GRE Tunnels over the Internet.
Author:	FX
Homepage:	http://www.phenoelit.de
File Size:	26711
Last Modified:	Dec 23 18:17:50 2000
MD5 Checksum:	74238e97542ad3e67f91ef9f872afd20

/// File Name:	mi004en.htm
Description:	DNS Spoofing and Abuse - Lately on bugtraq there have been a number of DNS abuse related posts.
Homepage:	http://hispahack.ccc.de/en/
File Size:	17616
Last Modified:	Dec 22 17:28:37 1999
MD5 Checksum:	f038c15b2d68c642f88213b0c6035da7

/// File Name:	UDPRemoteControls.txt~
Description:	Unavailable.
File Size:	16565
Last Modified:	Apr 5 20:58:23 2003
MD5 Checksum:	2f58a7be9b71e80ca6a744a64e0a5e55

/// File Name:	UDPRemoteControls.txt
Description:	This paper illustrates how to control server with the UDP protocol. It covers UDP basics, how to spoof datagrams, and gives full source code with explanations. This paper can be used in conjunction with the udp-remote-final.tar.gz package.
Author:	Angelo Rosiello
File Size:	16544
Last Modified:	Apr 5 20:59:36 2003
MD5 Checksum:	2f58a7be9b71e80ca6a744a64e0a5e55

/// File Name:	ident.txt
Description:	Identification Protocol - RFC 1413: A description of the Identification Protocol, a means to determine the identity of the user of a particular TCP connection
File Size:	16292
Last Modified:	Oct 1 17:22:48 1999
MD5 Checksum:	ced71cd04dc21eda2d2a071d1af8b255

/// File Name:	tacacs.analysis.txt
Description:	This advisory presents an analysis of several vulnerabilities in the TACACS+ protocol. Unfortunately, only some of the vulnerabilities can be fixed without breaking the interoperability. Thus, the main purpose of this advisory is to identify the weaknesses, to allow for a conscious decision to be made on how much trust to place into the encryption offered by TACACS+.
Author:	Solar Designer
Homepage:	http://www.openwall.com/advisories/
File Size:	13904
Last Modified:	Jun 2 16:55:19 2000
MD5 Checksum:	e5a86ca81eae6b5aef909fd7e96bcc4b

/// File Name:	dnsinfo.htm
Description:	Information on testing your DNS server to see if it is vulnerable to corruption attacks. A lot of services depend on DNS information. Online test for this vulnerability here.
Author:	Johannes Erdfelt
Homepage:	http://www.apostols.org/
File Size:	12952
Last Modified:	Feb 16 18:00:24 2000
MD5 Checksum:	e0b0a6af64faeab1e9961ec7104ef20a

/// File Name:	masquerading.html.txt
Description:	A simple guide on what IP masquerading is, what is it good for, how to work with it etc for newbies in that subject.
Author:	Gomorrah
Homepage:	http://blacksun.box.sk
File Size:	11807
Last Modified:	Nov 3 16:56:48 1999
MD5 Checksum:	8f87a9f1f803985e6fa2444f0199b1ef

/// File Name:	dns-writeup.txt
Description:	Interesting write up discussing DNS cache poisoning then and now.
Author:	Monsieur Aglie
File Size:	10778
Last Modified:	Jul 22 20:57:32 2008
MD5 Checksum:	a0d975e9261838a800c2ee206625f579

/// File Name:	SFTPtutorial.html
Description:	Whitepaper discussing the use and setup of SFTP in the business place.
Author:	John K. Norden
File Size:	9086
Last Modified:	Mar 29 01:36:44 2005
MD5 Checksum:	8126602bfbde02e90f2613928dbd6078

/// File Name:	cookleak.htm
Description:	Since the invention of Web browser cookies by Netscape, the claim has always been made that they are anonymous and cannot be associated with any personal information unless someone provides this information. In this write-up, I will present a technique in which browser cookies can be matched to Email addresses without people's knowledge. The technique relies on a security hole that is present in both Microsoft's Internet Explorer browser and Netscape's Navigator browser. This technique can be used, for example, to allow a banner ad company to associate an Email address with a "anonymous" profile that has been created for a person as they surf the Web.
Author:	Richard Smith
Homepage:	http://www.tiac.net/users/smiths/privacy/
File Size:	8846
Last Modified:	Dec 8 20:23:10 1999
MD5 Checksum:	f82c4516188734b8d1b25a7c65c33e7e

/// File Name:	SMB-RSVP.txt
Description:	Paper discussing how the Resource reSerVation Protocol (RSVP) is used within the Subnet Bandwidth Management protocol (RFC 2814) and is vulnerable to allowing a rogue host to hijack control of a server via the use of priority assignment.
Author:	STE Jones
Homepage:	http://www.networkpenetration.com
File Size:	8652
Last Modified:	Aug 12 21:37:00 2003
MD5 Checksum:	8ba022f0018a7724e3cbbb169de22180

/// File Name:	protocolhopping.txt
Description:	Whitepaper titled Protocol Hopping Covert Channels - Protocol Hopping Covert Channels (PHCC) are a way to realize covert channels that switch between different protocols while a covert channel is established. PHCCs even can use a randomized protocol order and a mixed packet order to transfer packets what makes them hard to detect.
Author:	Steffen Wendzel
Homepage:	http://doomed-reality.org/?sub=research&ssub=phcc_res
Related Exploit:	phcct-0.1.tgz
File Size:	8097
Last Modified:	Nov 13 21:10:46 2007
MD5 Checksum:	5d320776e626989ea1b25f67aac58b25

/// File Name:	UKdnsTest.txt
Description:	Network Penetration conducted a survey at the start of 2003 to check the status of the United Kingdom's DNS infrastructure. This paper discusses the second run of what was tested, the results, some sample zone transfers, and recommendations.
Author:	Ste Jones
Homepage:	http://NetworkPenetration.com
File Size:	7632
Last Modified:	Oct 16 02:13:58 2003
MD5 Checksum:	7841d7b80b30c00c25fb3d7f0498b3fb

/// Last 10 Files

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Advisories

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Exploits

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Tools

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Misc

[ Last 20 | Last 50 | Last 100 ]