Whitepaper called Return-Oriented Programming Na Unha! Written in Portuguese.
a419a2a94db7471d78bcf483922d6890The Shakacon IV Call For Papers has been announced. It will take place June 18th through the 21st, 2012 in Honolulu, Hawaii.
23eb2e761a819230165d3e5b4dd2add5These are the presentation slides from a talk called Threat Modeling Cloud Applications: What You Don't Know Will Hurt You as presented at the OWASP AppSec USA 2011 conference.
aec85350a0579220e6c4bbbde678b383These are the presentation slides from a talk called Behavioral Security Modeling: Eliminating Vulnerabilities by Building Predictable Systems as presented at the OWASP AppSec USA 2011 conference.
c36253247578a295c1280708a98db91bThese slides are from the Trustwave Global Security Report as presented at the OWASP AppSec USA 2011 conference.
031dbd61e5b28d76d75b184b9a5442a9These are the slides from the Ghost of XSS Past, Present, and Future presentation given at the OWASP AppSec USA 2011 conference.
517646ea949f5315bdc4f5baacb04b24These are the slides from the Web Application Security Payloads presentation given at the OWASP AppSec USA 2011 conference.
b88f1d7627f70f665f2eef2edb18b829This IETF Internet Draft discusses security and interoperability implications of oversized IPv6 header chains.
dcd9d59df7a720f7b156bbc04699c5baWhitepaper called Wi-Fi Security with Wi-Fi Protection Plus. Wi-Fi P+ is a new security architecture proposed by the authors.
16043c7211664d2a65cd89b3424c7fdcWhitepaper called Shell Code Injection To Process. Written in Turkish.
9caf5ab14b0324dd2531325a849b788eThis is an newsletter that discusses information related to Capture The Flag that will be held at DEF CON 20 this year.
0445982946aa3d0757d6e0be478f625eThe cryptographic algorithm called INCrypt32 is a MAC algorithm to authenticate participants, RFID cards and readers, in HID Global's iCLASS systems. HID's iCLASS cards are widely used contactless smart cards for physical access control. Although INCrypt32 is a heart of the security of HID's iCLASS systems, its security has not been evaluated yet since the specification has not been open to public. In this paper, they reveal the specification of INCrypt32 by reverse engineering an iCLASS card and investigate the security of INCrypt32. As a result, we show that the secret key of size 64 bits can be recovered using only 218 MAC queries if the attacker can request MAC for chosen messages of arbitrary length. If the length of messages is limited to pre-determined values by the authentication protocol, the required number of MAC queries grows to 242 to recover the secret key.
ee33f7e2da98c62d3b33c6294941bbe8This whitepaper goes into detail on how to use egg hunting shellcode in order to exploit a BisonWare FTP server.
3b77aa7034edc0a6eb15c7fb213af029Whitepaper called DNS Service Oriented Denial of Service / Distributed Denial of Service Attacks. Written in Turkish.
65e8a925c1f765f5b5d447b24ea5fde3This whitepaper analyzes the MIDI remote code execution vulnerability found in the Windows Multimedia Library. Written in Turkish.
86b73a0bd44eecf2f0ae4fc449aeb170This is a brief whitepaper discussing how to set up QT Mobile Hotspot and YAMAS applications to man in the middle connections using your phone.
6756a8aa5d75c60ab30be7b7312b4fc3This document specifies an algorithm for the generation of TCP Initial Sequence Numbers (ISNs), such that the chances of an off-path attacker guessing the sequence numbers in use by a target connection are reduced. This document revises (and formally obsoletes) RFC 1948, and takes the ISN generation algorithm originally proposed in that document to Standards Track, formally updating RFC 793.
4bd9d141dba29f999534d68fbcf120f5BSides Detroit 12 has announced its Call For Presenters. It will take place June 1st through the 2nd in Detroit, Michigan.
29b6fbd2de729bd2ac17fede3c0a54d2The 2012 ASE/IEEE International Conference on Privacy, Security, Risk, and Trust and the 2012 ASE/IEEE International Conference on Cyber Security have both announced their call for papers.
675a999bdcaef5fd5cdd17d59020b93fThis is a short whitepaper written in French that is called Votre Premiere Exploitation de BOF.
978fb90d0bb2ace7992457cf683b21fdCall For Papers for MobiPST 2012 - The Second International Workshop on Privacy, Security and Trust in Mobile and Wireless Systems (MobiPST 2012) will be held in Munchen, Germany, July 30th through August 2nd, 2012.
f62eebe0acd97637ff892ef69a8fb38bThis is a brief whitepaper called A Backdoor in the Next Generation Active Directory.
4322964f07c8caf1a4bd6cd89912fef5The Nuit Du Hack Call For Papers has been announced. It will be held June 23rd, 2012 at the Disneyland Paris Conference Centre.
69f9dfa8aa9023b57716d506351a8a02This is a brief whitepaper discussing how to perform forensics on iOS 5 on the iPhone.
782903866dd7d55143c6835188eda2feThis is a short whitepaper that discusses common vulnerabilities in online payment systems.
f4267b132dd0f54dcdfcfb54738eda4e
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed