x86-64 buffer overflow exploits and the borrowed code chunk exploitation technique. Whitepaper describing NX technology and its limitations. It contains in depth discussion and sample code for the Hammer/Linux platform, analyzes the weaknesses and discusses countermeasures.
8df650e08759b301398f03475970e1b2This short paper discusses the method of overwriting a pointer used in a function for the sake of overwriting the associated entry in the Global Offset Table (GOT) which in turn allows for execution flow redirection.
ffbeb2e8b0768454f781f66654e95478Document that outlines an exploitable scenario for hcid using the popen() bug in security.c. This was written in response to a claim that the bluez vulnerability was quite trivial.
b72ff079514eeeedc49d026f205fb05bWhitepaper detailing a new way to bypass Microsoft Windows heap protection mechanisms. The methodology explained here is different from the method introduced by Alexander Anisimov.
bbe8f8d36f5ad8e3f1c34915ce9660aaThis technical note describes a detection/prevention technique that works in many cases both with HTTP Response Splitting and with HTTP Request Smuggling.
6dd02db0137701d3c42986ed49b1c661Cool whitepaper discussing the return into libc attacks used to bypass non-executable stacks.
2cdf9eb2ba348d35e4923412c4b6b7e8This tutorial is an overview of how javascript can be used to bypass html forms and how it can be used to override cookie/session authentication.
9dff177e25d94281c9a2dab498241834White paper discussing blind injection in MySQL databases.
53bf8afed972125094b75a5e6086a67aThe MaxPatrol team has discovered that it is possible to defeat Microsoft Windows XP SP2 heap protection and data execution prevention mechanisms. Full analysis with code provided.
acfd948da84a412b6743310864395ea6Whitepaper discussing SQL injection attacks that gives an illustrated overview showing the process of how these attacks are performed.
e1ed45c3c291c4048642b2c08e75255fSmall paper describing how to add a quick backdoor into the setuid code for the Linux 2.4 kernel series.
74bad9990e8c7f8f46b2aeeeb4e5d543Presentation: Bypassing client application protection techniques with notepad.
bce063153c54781f687f0cd29fe5c972White paper discussing ways to evade detection of polymorphic shellcode.
798854f1dbbd63d23ab7f71eed64c0dbSmall white paper regarding keyloggers and basic circumvention.
c57a57587c61465fbe82503b216368b8White paper covering the topic of upload systems written in ASP. Many upload systems written in ASP suffer from a common problem whereby a NULL byte can be inserted into the filename parameter leading to any extension, after the null byte, being ignored when writing the file. This means that in some cases it is possible to bypass checks for valid extensions, even if one is appended by the application.
cad2ad76c53cad21e6285f854026b213This paper describes a Blind XPath Injection attack that enables an attacker to extract a complete XML document used for XPath querying, without prior knowledge of the XPath query.
e7b01772daac419ef8451d1e2780969cWhite paper analysis of the SSL PCT vulnerability. Gives full details on how exploitation has been performed and what it took for working exploits to be created.
aae6021952f7f660540073da5b8d4fdfA white paper from the Imperva Application Defense Center entitled 'SQL Injection Signature Evasion'. This paper discusses how protecting against SQL injection attacks using signatures is not enough.
b99e854ee042979fc6db7a6e1ef30870Article discussing how to bypass the Execution Path Analysis used by the PatchFinder utility, avoiding Windows 2k/XP rootkit detection.
1b7c12d5a2c92ff9de2469db1560d07aA thoroughly written paper that covers the discussion of SYN, FIN, Null, Xmas, Idle, and Zombie scanning. It gives strong compare and contrast insight on methodologies to use when determining open ports on a host and remote operating system detection. It shows example scans and discusses IP enumeration along with the utilization of tools like hping2 and nmap to dig deeper.
b6208ca85ecb6519c410aae4f4e3615eThorough paper discussing how to defeat the stack based buffer overflow prevention mechanism in Microsoft Windows 2003 Server.
f09f810282da026ea8ed89185fd641d9
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed