.:[ packet storm ]:.
                             
security in numbers
security in numbers

 Section:  .. / papers / general  /

Page 1 of 8
<< 1 2 3 4 5 6 7 8 >> Files 1 - 25 of 182
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: Software.Distribution.Malware.Infec..>
Description:
 This paper presents an efficient mechanism as well as the corresponding reference implementation for on-the-fly infecting of executable code with malicious software. Their algorithm deploys virus infection routines and network redirection attacks, without requiring the modification of the application itself. This allows infection of executables with an embedded signature when the signature is not automatically verified before execution. They briefly discuss countermeasures such as secure channels, code authentication as well as trusted virtualization that enables the isolation of untrusted downloads from other applications running in trusted domains or compartments.
Author:Felix Grobert
Homepage:http://groebert.org/felix
File Size:223713
Last Modified:Jul 18 17:30:01 2008
MD5 Checksum:f0295501b1659600e2481f6a2cb082cb

 ///  File Name: HomeSecurityMethodologyVacationGuid..>
Description:
 This is the Home Security Methodology Vacation Guide, written to help secure your home before you go on holiday.
Homepage:http://www.isecom.org/
File Size:1986916
Last Modified:Jul 18 17:26:27 2008
MD5 Checksum:346bf0939e1448e386c2e17f4862ea61

 ///  File Name: draft-ietf-tsvwg-port-randomization..>
Description:
 This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
Author:Michael Vittrup Larsen, Fernando Gont
Homepage:http://www.ietf.org/
File Size:43889
Last Modified:Jul 16 20:13:04 2008
MD5 Checksum:3169ae2876e24bcbe919b97c4fecdeb4

 ///  File Name: securing_a_webserver.txt
Description:
 Whitepaper discussing a lockdown methodology for a Cent OS 5 server with Apache and Cpanel installed.
Author:QKrun1x
File Size:21682
Last Modified:Jul 16 20:03:24 2008
MD5 Checksum:c48568dcf8bbd3abcdfa1033ce6b1f2c

 ///  File Name: browser_insecurity_iceberg_2008.pdf
Description:
 Understanding the Web browser threat: Examination of vulnerable online Web browser populations and the "insecurity iceberg".
Author:Stefan Frei, Thomas Duebendorfer, Gunter Ollmann, Martin May
File Size:265522
Last Modified:Jul 1 12:37:48 2008
MD5 Checksum:af684f84277d52eb31988b9ac44515b2

 ///  File Name: Reverse.Engineering.AntiCracking.Te..>
Description:
 This paper was written to give a better understanding of the various approaches taken in reverse engineering. It also provides insight into proper software design to protect sensitive data, etc.
Author:Charalambous Glafkos, George Nicolaou
Homepage:http://www.astalavista.com/
File Size:339097
Last Modified:Jun 26 15:15:20 2008
MD5 Checksum:b40d518a0f6862e155625d7d982d2836

 ///  File Name: shellcode-locations.txt
Description:
 Whitepaper discussing shellcode locations and buffer overflows in Windows.
Author:suN8Hclf
Homepage:http://www.dark-coders.4rh.eu/
File Size:19820
Last Modified:May 23 18:55:17 2008
MD5 Checksum:f69b97a511046709d800394107cb95fa

 ///  File Name: ICI.TXT
Description:
 Whitepaper discussing security problems and solutions in wireless cafes. Lots of good general info on security, attacks, tools, encryption, etc.
Homepage:http://www.rootshell.be/~ad/
File Size:148874
Last Modified:May 12 15:54:36 2008
MD5 Checksum:ae06c9445ebe7a64d20c3feb1ae95eb0

 ///  File Name: tempest.pdf
Description:
 The story regarding how the United States first learned about the fundamental security vulnerability called "compromising emanations" is revealed for the first time in this 1972 paper called TEMPEST: A Signal Problem.
Homepage:http://www.nsa.gov/
File Size:284750
Last Modified:Apr 29 21:06:17 2008
MD5 Checksum:6930f3cfa80a029f63102875a3947dcc

 ///  File Name: ngreptut.txt
Description:
 Simple network grep (ngrep) tutorial that gives a basic overview of some use cases.
Author:d3hydr8
Homepage:http://www.darkc0de.com/
File Size:12537
Last Modified:Dec 24 18:59:36 2007
MD5 Checksum:094f7c35c7872b9e2ffe74ef2b0b9eda

 ///  File Name: draft-ietf-tsvwg-port-randomization..>
Description:
 This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.
Author:Michael Vittrup Larsen, Fernando Gont
Homepage:http://www.ietf.org/
File Size:38321
Last Modified:Dec 7 19:38:08 2007
MD5 Checksum:a6d891234260fe58cfc46cda8aea2f7c

 ///  File Name: Securing_and_Hardening_Linux_v1.0.p..>
Description:
 Security and Hardening Linux - A paper that is a step by step guide to securing a Linux system for home or production use.
Author:Charalambous Glafkos
Homepage:http://www.astalavista.com/
File Size:121737
Last Modified:Dec 7 13:06:12 2007
MD5 Checksum:3d62d8443da08a5378cd37fd07f1968f

 ///  File Name: Inf_Pr_Ldap_Gar_Dumps.pdf
Description:
 The LDAP garbage dump that remains on web server results in information disclosure. Security of LDAP may be compromised, if for instance a search engine crawls through untamed directories on the web server and finds information through the ldap.xml file.
Author:Aditya K Sood
Homepage:http://www.secniche.org/
File Size:436128
Last Modified:Dec 4 00:27:02 2007
MD5 Checksum:16a4b1bd047ad43f4255dac007b0a1f8

 ///  File Name: Para_Web_Leech.pdf
Description:
 Whitepaper called the "Paradox Of Web Leeching".
Author:Aditya K Sood
Homepage:http://www.secniche.org/
File Size:72717
Last Modified:Oct 22 16:51:22 2007
MD5 Checksum:28952ca83ac66bc9e709a71ebf30e9d2

 ///  File Name: reverseeng.pdf
Description:
 This paper aims to present a methodical framework for high-level reverse engineering. The methodology is a culmination of existing tools and techniques within the IT security research community, which presents ways to identify process operation at a higher-level of abstraction than traditional binary reversing.
Author:Matthew Lewis
Homepage:http://www.irmplc.com/
File Size:1276878
Last Modified:Oct 2 00:31:35 2007
MD5 Checksum:ad6255431165e52467be53fd14fa775b

 ///  File Name: secure_smtp_proxy_for_protecting_mt..>
Description:
 Whitepaper entitled "Secure SMTP Proxy for Protecting Mail Transfer Agents". This is a 70 page document that discusses new angles for defending mail daemons and more.
Author:Alin-Adrian Anton
File Size:880872
Last Modified:Sep 5 20:24:58 2007
MD5 Checksum:5328c8e51d8209c0781888d131361c97

 ///  File Name: Analogy_of_Popups.pdf
Description:
 Whitepaper entitled The Analogy Of Third Party Pop Up Attacks.
Author:Aditya K Sood
Homepage:http://www.secniche.org/
File Size:658847
Last Modified:Sep 1 00:03:26 2007
MD5 Checksum:ff85ed95030c4fded1fed95ced753047

 ///  File Name: newbackdoor-jm.txt
Description:
 Whitepaper entitled "Las nuevas backdoors", discussing new techniques in backdoors and sniffing. Written in Spanish.
Author:MegadetH
File Size:13021
Last Modified:Aug 23 21:22:54 2007
MD5 Checksum:fabb4b532cbb1a91b4f35df1ff229298

 ///  File Name: phpendangers.txt
Description:
 Whitepaper entitled PHP Endangers - Remote Code Execution.
Author:Arham Muhammed
File Size:13748
Last Modified:Aug 16 04:32:46 2007
MD5 Checksum:75496cb8ab31fe5ed70fd44ed2edd52e

 ///  File Name: code_auditing_in_c.txt
Description:
 A small whitepaper discussing code auditing in C.
Author:Tal0n
File Size:52888
Last Modified:Aug 11 18:29:07 2007
MD5 Checksum:25bd0a787a7800bcf71980d9c707f205

 ///  File Name: VNSECON07-JA-Exploit_development.pd..>
Description:
 Whitepaper discussing how to speed up the exploit development process as presented at VNSECON07.
Author:Jerome Athias
File Size:1698766
Last Modified:Aug 9 22:22:28 2007
MD5 Checksum:06a895e8ac593460d4bfdf6ec7692a60

 ///  File Name: Ser_Insec_Bison.pdf
Description:
 Whitepaper titled Binary JSON: Insecurity In Implementing Serialization.
Author:Aditya K Sood
Homepage:http://www.secniche.org/
File Size:193677
Last Modified:Jul 31 02:01:16 2007
MD5 Checksum:e87fa0203d5d04e163bdf94de4a6f5bc

 ///  File Name: bind9forgery.txt
Description:
 A new weakness has been discovered in the BIND 9 DNS server that allows for DNS forgery pharming.
Author:Amit Klein
File Size:2268
Last Modified:Jul 24 23:39:15 2007
MD5 Checksum:5fa6300ec5a825d63b978a0cee207a3b

 ///  File Name: chroot_sshd_linux.pdf
Description:
 Whitepaper discussing how to chroot SSHd on Linux.
Author:Paul Sebastian Ziegler
Homepage:https://observed.de/
File Size:158746
Last Modified:Jul 13 19:25:24 2007
MD5 Checksum:b8ac8bec7c6f34e51f6e3e029d5c3b43

 ///  File Name: i-bot.txt
Description:
 I, Bot, Taking Advantage Of Robots Power. A response to the original bot related article in Phrack written by Michal Zalewski.
Author:Crossbower
Homepage:http://www.playhack.net/
File Size:15138
Last Modified:May 16 22:26:14 2007
MD5 Checksum:50a152ffdd28969e6ad885b444f34b17
 

 ///  Last 10 Files
  1. :· john-1.7.3.1.tar.gz
  2. :· prelude-manager-0.9.14.tar.gz
  3. :· Software.Distribution.Malware.Infection.Vector.pdf
  4. :· HomeSecurityMethodologyVacationGuide.1.2.pdf
  5. :· DSECRG-08-030.txt
  6. :· lateral-sql-followup.txt
  7. :· smbclientparser-exec.txt
  8. :· defblog-sql.txt
  9. :· MDVSA-2008-148.txt
  10. :· vim-filecreation.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· lateral-sql-followup.txt
  2. :· MDVSA-2008-148.txt
  3. :· vim-filecreation.txt
  4. :· ZDI-08-044.txt
  5. :· ZDI-08-043.txt
  6. :· ZDI-08-042.txt
  7. :· USN-623-1.txt
  8. :· SSRT080097-2.txt
  9. :· SSRT080058.txt
  10. :· dsa-1611-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· DSECRG-08-030.txt
  2. :· smbclientparser-exec.txt
  3. :· defblog-sql.txt
  4. :· communitycms-rfi.txt
  5. :· artic-sql.txt
  6. :· precms-sql.txt
  7. :· beaweblogic-exec.txt
  8. :· debopenssh-auth.txt
  9. :· alstrasoftarticle-sql.txt
  10. :· DSECRG-08-029.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· prelude-manager-0.9.14.tar.gz
  2. :· srm-1.2.9.tar.gz
  3. :· snoop-0.3.1.tar.gz
  4. :· silk-1.1.0.tar.gz
  5. :· wpacrack.py.txt
  6. :· clamav-0.93.3.tar.gz
  7. :· sara-7.5.7.tgz
  8. :· pshtoolkit_v1.4-src.tgz
  9. :· wifizoo_black_v1.3.tar.bz2
  10. :· ratproxy-1.51.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· john-1.7.3.1.tar.gz
  2. :· Software.Distribution.Malware.Infection.Vector.pdf
  3. :· HomeSecurityMethodologyVacationGuide.1.2.pdf
  4. :· draft-ietf-tsvwg-port-randomization-01.txt
  5. :· AntiPhishing.pdf
  6. :· securing_a_webserver.txt
  7. :· clubhack2008-cfp.txt
  8. :· deepsec2008-cfp.txt
  9. :· pkd-0.6.tgz
  10. :· coffeedc2008-cfb.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice