Section: .. / papers / general /
| /// File Name: |
monitoring-Mar-25-2002.tar.gz |
Description:
|
Monitoring Network Traffic with Dsniff - This is a practical step by step guide showing how to use Dsniff, MRTG, IP Flow Meter, Tcpdump, NTOP, and Ngrep, and others. It also provides a discussion of how and why we should monitor network traffic. Updated version, sgml format.
| | Author: | Patrick Duane Dunston | | File Size: | 27895 | | Last Modified: | Mar 27 12:45:09 2002 |
| MD5 Checksum: | a88382cebd4c76a5098472547a4353ac |
|
| /// File Name: |
SQLInjectionWhitePaper.pdf |
Description:
|
SQL injection is a technique for exploiting web applications that use client-supplied data in SQL queries without stripping illegal characters first. Despite being remarkably simple to protect against, there is an astonishing number of production systems connected to the Internet that are vulnerable to this type of attack. The objective of this paper is to educate the professional security community on the techniques that can be used to take advantage of a web application that is vulnerable to SQL injection as well as make clear the correct mechanisms that should be put in place to protect against SQL injection, as well as input validations problems in general.
| | Author: | SPI Labs | | Homepage: | http://www.spidynamics.com | | File Size: | 816899 | | Last Modified: | Feb 2 03:20:35 2002 |
| MD5 Checksum: | e67624e3913f0dd2dea2ddbae0a5f3dd |
|
| /// File Name: |
hackingguide3.1.pdf |
Description:
|
A guide for breaking into computer networks from the Internet v3.1 - Includes host enumeration, scanners, custom tools, protocols, windows information, and much more. PDF format.
| | Author: | Roelof Temmingh | | Homepage: | http://www.sensepost.com | | File Size: | 1246523 | | Last Modified: | Oct 4 01:06:38 2001 |
| MD5 Checksum: | 184a6d6e97615dce942ead3a603062d0 |
|
| /// File Name: |
Altering_ARP_Tables_v_1.00.htm |
Description:
|
Altering ARP Tables v1.00 - This paper is dedicated to ARP tables and how to alter them remotely. Includes a couple of implementations of ARP poisoning in a bridge based segment and a couple of ways to protect yourself.
| | Author: | Data Wizard | | File Size: | 22573 | | Last Modified: | Sep 7 23:03:45 2001 |
| MD5 Checksum: | 2cddda46bc0102cac912313b0b33cd68 |
|
| /// File Name: |
dsniff_netmon.txt |
Description:
|
Network Monitoring with Dsniff - This is a practical step by step guide showing how to use Dsniff, MRTG, IP Flow Meter, Tcpdump, NTOP, and Ngrep, and others. It also provides a discussion of how and why we should monitor network traffic.
| | Author: | Duane Dunston | | Homepage: | http://www.linuxsecurity.com | | File Size: | 35792 | | Last Modified: | May 30 19:31:31 2001 |
| MD5 Checksum: | 7aef6c3ab9be70806f9c0895d74a0a5d |
|
| /// File Name: |
ssh_tunnels.txt |
Description:
|
Encrypted Tunnels using SSH and MindTerm - This paper will discuss using Secure Shell (SSH) and MindTerm to secure organizational communication across the Internet. Easy to setup and reliable software need to be used in order to allow the inexperienced users the ability to quickly establish secure communication channels.
| | Author: | Duane Dunston | | Homepage: | http://www.linuxsecurity.com | | File Size: | 34275 | | Last Modified: | May 30 19:25:25 2001 |
| MD5 Checksum: | c6f772e94054386472ab1a226d50571d |
|
| /// File Name: |
ccla5.zip |
Description:
|
Computer Crime Law Archive Volume 5 - Tutorial on state computer crime laws for South Dakota, Tennessee, Texas, Utah, Vermont, Virginia, Washington, Wisconsin, West Virginia, and Wyoming.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 1090277 | | Last Modified: | Feb 11 21:56:13 2001 |
| MD5 Checksum: | 62ba619a718bde513314efc679d36221 |
|
| /// File Name: |
cgisec.txt |
Description:
|
PERL/CGI Hacking - What makes CGI scripts insecure and how to exploit them.
| | Author: | Tonec | | File Size: | 37250 | | Last Modified: | Jan 15 00:50:21 2001 |
| MD5 Checksum: | 5649ad7dce8adccef9699054adbc31c0 |
|
| /// File Name: |
Footprinting-faq-v0_1.txt |
Description:
|
Footprinting FAQ - How to remotely determine the network addresses of a company.
| | Author: | Tag | | Homepage: | http://liun.hektik.org | | File Size: | 9292 | | Last Modified: | Jan 8 20:03:42 2001 |
| MD5 Checksum: | 4799e7a486e8e33828020f8e4a3c0a40 |
|
| /// File Name: |
freebsd.org-report.txt |
Description:
|
How Freebsd.org was hacked - By combining insecurities in two CGI scripts, www.freebsd.org was taken over by Nohican and Frank Van Vliet.
| | Author: | Joost Pol aka Nohican,Karin | | File Size: | 8658 | | Last Modified: | Dec 16 22:07:56 2000 |
| MD5 Checksum: | abb904a3dc90dec5904922b683308e4e |
|
| /// File Name: |
dtors.txt |
Description:
|
Overwriting the .dtors section - This paper presents a concise explanation of a technique to gain control of a C program's flow of execution given that it has been compiled with gcc. This exploit technique has several advantages over changing the stack pointer, including ease of determining the exact position where we want to write and point to our shellcode, and is simpler than a GOT patch.
| | Author: | Juan M. Bello Rivas | | Homepage: | http://www.synnergy.net | | File Size: | 10059 | | Last Modified: | Dec 12 22:53:04 2000 |
| MD5 Checksum: | f693cc32d668324c2205e77036aa3fd1 |
|
| /// File Name: |
ccla4.zip |
Description:
|
Computer Crime Law Archive Volume 4 - Tutorial on state computer crime laws for New Hampshire, New Jersey, New Mexico, New York, Ohio, Oklahoma, Oregon, Pennsylvania, Rhode Island, and South Carolina.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 943650 | | Last Modified: | Nov 29 23:35:30 2000 |
| MD5 Checksum: | 6f1c0cecbc5cdf90bae2ec5c456789e6 |
|
| /// File Name: |
oracle.security.txt |
Description:
|
Lots of good information on Oracle Database security. From the packet storm forums.
| | Author: | Daemon Root | | File Size: | 29834 | | Last Modified: | Nov 19 04:20:05 2000 |
| MD5 Checksum: | 1f52791b1d4b2027105f7a73d4f60273 |
|
| /// File Name: |
ccla3.zip |
Description:
|
Computer Crime Law Archive Volume 3 (v1.1) - Tutorial on state computer crime laws for Massachusetts, Michigan, Minnesota, Mississippi, Missouri, Montana, North Carolina, North Dakota, Nebraska, and Nevada.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 916308 | | Last Modified: | Nov 15 21:17:04 2000 |
| MD5 Checksum: | 201c547980897617631b57e8b4bdca30 |
|
| /// File Name: |
transparency.txt |
Description:
|
This paper discusses full disclosure, the necessity of legitimate network scanning, and the results of criminalizing security research and information. Overreactions to harmless activities not crossing legal boundaries are leading to a scenario where anyone acquiring basic information about a system needs to be afraid about potential consequences.
| | Author: | Mixter | | Homepage: | http://mixter.warrior2k.com | | File Size: | 10257 | | Last Modified: | Nov 13 16:29:15 2000 |
| MD5 Checksum: | 6392ac2ef70447827974be8b88605ec2 |
|
| /// File Name: |
kye-worm.txt |
Description:
|
Know Your Enemy: Worms at War - A Windows 98 honeypot machine was taken over by 2 different worms in a week. The worms spread via open file shares and installed the distributed.net RC5 client.
| | Author: | Lance Spitzner | | Homepage: | http://www.enteract.com/~lspitz | | File Size: | 24247 | | Last Modified: | Nov 10 15:53:16 2000 |
| MD5 Checksum: | 1f23b9b0bef894b514c2ff7775caa093 |
|
| /// File Name: |
ccla2.zip |
Description:
|
Computer Crime Law Archive Volume 2 - Tutorial on state computer crime laws for Hawaii, Idaho, Illinois, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maine, and Maryland.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 880034 | | Last Modified: | Nov 7 15:44:27 2000 |
| MD5 Checksum: | 10cac24fdd50ffcd2fcfd5f120e9996a |
|
| /// File Name: |
ccla1.zip |
Description:
|
Computer Crime Law Archive Volume 1 - Tutorial on state computer crime laws for Alabama, Alaska, Arizona, Arkansas, California, Colorado, Connecticut, Delaware, Florida, and Georgia.
| | Author: | Yavo Slavenski | | Homepage: | http://www.acst.org | | File Size: | 1027739 | | Last Modified: | Nov 7 15:43:30 2000 |
| MD5 Checksum: | 9adb175f799d87d8188b70c98c0648e6 |
|
| /// File Name: |
rfpolicy-2.0.txt |
Description:
|
RFPolicy 2.0 - rain forest puppy's policy on notifying vendors and releasing security vulnerabilities.
| | Author: | rain forest puppy | | Homepage: | http://www.wiretrip.net | | Changes: | Less stringent on timeframes, more stringent on communication. Thanks to everyone who contributed. I also added some supporting notes (FAQ, etc) to help dispell some misconceptions on it. | | File Size: | 15498 | | Last Modified: | Oct 17 15:45:59 2000 |
| MD5 Checksum: | 4bb04bf50ab00e365ec966deb62c2a7a |
|
| /// File Name: |
overflow.txt |
Description:
|
overflow.txt is a paper written in Spanish which explains buffer overflows and includes sample code.
| | Author: | Venomous | | Homepage: | http://www.rdcrew.com.ar | | File Size: | 11650 | | Last Modified: | Jul 31 18:20:08 2000 |
| MD5 Checksum: | 8fd971431c1591e222406c4440ae125a |
|
| /// File Name: |
PBX-draft.doc |
Description:
|
Finding Holes in Your PBX Before Someone Else Does. Covers switching algorithms, susceptibility to tapping, conferencing, remote access, maintenance feature vulnerabilities, line testing capabilities, undocumented maintenance features, software loading and update tampering, tamper and error detection, crash-restart attacks, live microphone vulnerabilities, embedded login IDs and passwords, alarms and audit trails, silent monitoring, override (intrude), voice mail security, and denial of service.
| | Author: | National Institute of Standards and Technology | | Homepage: | http://csrc.nist.gov/publications | | File Size: | 440320 | | Last Modified: | Jul 12 17:47:25 2000 |
| MD5 Checksum: | 449ccc1c7ad6877d73a42e91fd094d08 |
|
| /// File Name: |
TopologyDOS.pdf |
Description:
|
This paper re-examines the denial-of-service issue. It looks at the techniques used to accomplish denial of service including process recovery, resource destruction (crash), and resource overload. Looking at how DOS functions allows for the design of other DOS attacks aimed at the processes used by the operating system, the network protocols and the users.
| | Author: | Coretez Giovanni | | Homepage: | http://www.8thport.com | | File Size: | 74536 | | Last Modified: | Jul 12 14:42:31 2000 |
| MD5 Checksum: | 690a78612efc13f42762b3aaa8fca700 |
|
| /// File Name: |
cw-biometric.txt |
Description:
|
Short paper on biometric authentication, including Finger Print Systems, Voice Systems, Handwriting Systems, Hand Geometry Systems, and Eye/Retina Scanner Systems.
| | Author: | Ashtar | | File Size: | 7906 | | Last Modified: | Jul 5 18:03:31 2000 |
| MD5 Checksum: | e0d7ceeffd63d247b6788d3eac3b3a95 |
|
| /// File Name: |
jolt2.c-analysis.txt |
Description:
|
Analysis of jolt2.c (Revision 2) - Technical analysis of the recent "IP Fragment Reassembly" Windows remote denial of service vulnerability described in ms00-029 which is effective against Win98, WinNT4/SP5,6, and Win2K. This attack is actually a network layer resource exhaustion attack.
| | Author: | Mikael Olsson | | Homepage: | http://www.enternet.se | | File Size: | 10878 | | Last Modified: | Jun 6 18:28:31 2000 |
| MD5 Checksum: | be284d3d976023be331b8c34be3afc2f |
|
| /// File Name: |
ZCsocksChainWin.txt |
Description:
|
Guide to Anonymity with MS-Windows. This little tutorial will explain step by step how to add support for socks chains to all your windows programs like telnet, ftp, irc, http, portscanners... (even if they don't support socks).
| | Author: | Zoa_chien | | File Size: | 6483 | | Last Modified: | May 22 18:20:04 2000 |
| MD5 Checksum: | ef3837f013583747982bf3e17bfb73a7 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
