Section: .. / papers / general /
| /// File Name: |
exploration.pdf |
Description:
|
Whitepaper entitled Exploration In The Cross Territory, a follow up paper to the Cross Site Scripting - Attack and Defense Guide.
| | Author: | Xylitol | | Homepage: | http://xylitol.free.fr/ | | File Size: | 4920754 | | Last Modified: | Nov 11 21:09:53 2008 |
| MD5 Checksum: | 2ad3142ce0b9f02072eabf88d662ab3f |
|
| /// File Name: |
domain-traversal.pdf |
Description:
|
Whitepaper entitled Using Parent Domain Traversal In Drive By Attacks.
| | Author: | hkm | | File Size: | 149814 | | Last Modified: | Nov 9 16:10:56 2008 |
| MD5 Checksum: | 152aadbe147f9533b4ea621f6cafb24e |
|
| /// File Name: |
banking-flaws.pdf |
Description:
|
Whitepaper entitled Internet Banking Flaws In India.
| | Author: | webDEViL | | File Size: | 312348 | | Last Modified: | Nov 4 00:46:42 2008 |
| MD5 Checksum: | 4f9d8bbb8f81dae1a06b4b258f70a18e |
|
| /// File Name: |
HS-P005_ReflectiveDllInjection.pdf |
Description:
|
Whitepaper on reflective DLL injection. Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process. As such the library is responsible for loading itself by implementing a minimal Portable Executable (PE) loader.
| | Author: | Stephen Fewer | | Homepage: | http://www.harmonysecurity.com/ | | File Size: | 165921 | | Last Modified: | Oct 31 14:53:30 2008 |
| MD5 Checksum: | 9dcfe4b1a13f2b6430c44bf6ea224287 |
|
| /// File Name: |
server_security.txt |
Description:
|
Whitepaper discussing a lockdown methodology for a Cent OS 5 server with Apache installed.
| | Author: | QKrun1x | | File Size: | 21584 | | Last Modified: | Oct 30 19:49:06 2008 |
| MD5 Checksum: | dcb47cf92dc9edbc577e62c87ea5a8c7 |
|
| /// File Name: |
appOSfingerprint.txt |
Description:
|
Whitepaper entitled Advanced application-level OS fingerprinting: Practical approaches and examples.
| | Author: | Dan Crowley | | File Size: | 12009 | | Last Modified: | Oct 30 13:13:08 2008 |
| MD5 Checksum: | ae054f97b0ef7a85c7a4e4e57059587f |
|
| /// File Name: |
address-spoof.txt |
Description:
|
Address Bar Spoofing Attacks Against Microsoft Internet Explorer 6. Due to formatting issues when sent , additional notes regarding the attacks are appended.
| | Author: | Amit Klein | | Homepage: | http://www.trusteer.com/ | | File Size: | 15579 | | Last Modified: | Oct 27 18:38:09 2008 |
| MD5 Checksum: | 5bf24bf420c7b4f9d6da416472832ec8 |
|
| /// File Name: |
http_botnet.txt |
Description:
|
Whitepaper on setting up a HTTP controlled botnet. Code examples provided.
| | Author: | cross | | File Size: | 24691 | | Last Modified: | Oct 22 17:18:52 2008 |
| MD5 Checksum: | db39c5c6d8edc80aed2f9e2b9fc59db0 |
|
| /// File Name: |
hackers-rfc.txt |
Description:
|
The Hacker's RFC - This document introduces best practices a computer hacker should know about and implement for his own safety.
| | Author: | fckD | | File Size: | 10805 | | Last Modified: | Oct 16 19:43:46 2008 |
| MD5 Checksum: | 7bcf0701c8097dac62f535cb9feb45eb |
|
| /// File Name: |
xenfb-adventures-10.pdf |
Description:
|
Whitepaper entitled Adventures with a certain Xen vulnerability (in the PVFB backend).
| | Author: | Rafal Wojtczuk | | File Size: | 167544 | | Related CVE(s): | CVE-2008-1943 | | Last Modified: | Oct 15 20:14:18 2008 |
| MD5 Checksum: | d001b568f3f249e6ebedb390b57fe7dc |
|
| /// File Name: |
ENG_in_a_nutshell.pdf |
Description:
|
Exploit Creation - The Random Approach. A paper about using Encore Next Generation techniques to create exploits.
| | Author: | Nelson Brito | | File Size: | 165713 | | Last Modified: | Oct 6 22:24:31 2008 |
| MD5 Checksum: | dd9d916dd9cd088ebacdbac525cd7a78 |
|
| /// File Name: |
wasc_wass_2007.pdf |
Description:
|
The Web Application Security Consortium (WASC) is pleased to announce the WASC Web Application Security Statistics Project 2007. This initiative is a collaborative industry wide effort to pool together sanitized website vulnerability data and to gain a better understanding about the web application vulnerability landscape. The overall statistics includes analysis results of 32,717 sites and 69,476 vulnerabilities of different degrees of severity.
| | Homepage: | http://www.webappsec.org/ | | File Size: | 173892 | | Last Modified: | Sep 8 18:38:56 2008 |
| MD5 Checksum: | 86567ab3f61b08ab7690e05b87500656 |
|
| /// File Name: |
draft-gont-opsec-ip-security-01.txt |
Description:
|
This is the IETF Internet-Draft entitled "Security Assessment of the Internet Protocol version 4", which is heavily based on the "Security Assessment of the Internet Protocol".
| | Author: | Fernando Gont | | Homepage: | http://www.ietf.org/ | | File Size: | 166263 | | Last Modified: | Sep 2 23:30:05 2008 |
| MD5 Checksum: | 8df28368bfb0390ab4b35fd2f97b23a2 |
|
| /// File Name: |
draft-ietf-tsvwg-port-randomization..> |
Description:
|
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
| | Author: | Michael Vittrup Larsen,Fernando Gont | | Homepage: | http://www.ietf.org/ | | Changes: | This new revision of the document addresses the feedback we got from Amit Klein, Matthias Bethke, and Alfred Hoenes. | | File Size: | 49484 | | Last Modified: | Sep 2 23:27:10 2008 |
| MD5 Checksum: | 7148e6b60b79983dd6d3afc806fb28d5 |
|
| /// File Name: |
seh-paper.txt |
Description:
|
Playing around with SEH (the Structured Exception Handler).
| | Author: | suN8Hclf | | Homepage: | http://www.dark-coders.pl/ | | File Size: | 41425 | | Last Modified: | Aug 18 20:00:12 2008 |
| MD5 Checksum: | 679821c48bb8441a75d5ed76b003bd45 |
|
| /// File Name: |
InternetProtocol.pdf |
Description:
|
This document aims to raise awareness about the many security threats based on the IP protocol, those that we are currently facing, and those we may still have to deal with in the future. It provides advice for the secure implementation of the IP, and also insights about the security aspects of the IP that may be of help to the Internet operations community.
| | Author: | Fernando Gont | | Homepage: | http://www.cpni.gov.uk/ | | File Size: | 675316 | | Last Modified: | Aug 14 20:12:10 2008 |
| MD5 Checksum: | 8621c729eab84344f70a70121b88b710 |
|
| /// File Name: |
webhack.pdf |
Description:
|
Whitepaper discussing simple web hacking techniques.
| | Author: | Nikolaos Rangos | | File Size: | 193580 | | Last Modified: | Jul 28 11:18:01 2008 |
| MD5 Checksum: | 4d69db9891c1fa3cd11b93d5e1c50d34 |
|
| /// File Name: |
html5whitepaper.pdf |
Description:
|
Abusing HTML 5 Structured Client-Side Storage - A whitepaper analyzing security implications of this technology and how showing how different attacks can be conducted.
| | Author: | Alberto Trivero | | Homepage: | http://www.codebug.org | | File Size: | 572736 | | Last Modified: | Jul 21 17:56:20 2008 |
| MD5 Checksum: | cd342087438c5a1b591b57870b770d41 |
|
| /// File Name: |
Software.Distribution.Malware.Infec..> |
Description:
|
This paper presents an efficient mechanism as well as the corresponding reference implementation for on-the-fly infecting of executable code with malicious software. Their algorithm deploys virus infection routines and network redirection attacks, without requiring the modification of the application itself. This allows infection of executables with an embedded signature when the signature is not automatically verified before execution. They briefly discuss countermeasures such as secure channels, code authentication as well as trusted virtualization that enables the isolation of untrusted downloads from other applications running in trusted domains or compartments.
| | Author: | Felix Groebert | | Homepage: | http://groebert.org/felix | | File Size: | 223713 | | Last Modified: | Jul 18 17:30:01 2008 |
| MD5 Checksum: | f0295501b1659600e2481f6a2cb082cb |
|
| /// File Name: |
HomeSecurityMethodologyVacationGuid..> |
Description:
|
This is the Home Security Methodology Vacation Guide, written to help secure your home before you go on holiday.
| | Homepage: | http://www.isecom.org/ | | File Size: | 1986916 | | Last Modified: | Jul 18 17:26:27 2008 |
| MD5 Checksum: | 346bf0939e1448e386c2e17f4862ea61 |
|
| /// File Name: |
draft-ietf-tsvwg-port-randomization..> |
Description:
|
This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
| | Author: | Michael Vittrup Larsen,Fernando Gont | | Homepage: | http://www.ietf.org/ | | File Size: | 43889 | | Last Modified: | Jul 16 20:13:04 2008 |
| MD5 Checksum: | 3169ae2876e24bcbe919b97c4fecdeb4 |
|
| /// File Name: |
securing_a_webserver.txt |
Description:
|
Whitepaper discussing a lockdown methodology for a Cent OS 5 server with Apache and Cpanel installed.
| | Author: | QKrun1x | | File Size: | 21682 | | Last Modified: | Jul 16 20:03:24 2008 |
| MD5 Checksum: | c48568dcf8bbd3abcdfa1033ce6b1f2c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
