Section: .. / papers / unix /
| /// File Name: |
trinoo.analysis.txt |
Description:
|
The following is an analysis of the DoS Project's "trinoo" (a.k.a. "trin00") master/slave programs, which implement a distributed network denial of service tool. Trinoo daemons were originally found in binary form on a number of Solaris 2.x systems, and probably being set up on hundreds, perhaps thousands, of systems on the Internet that are being compromised by remote buffer overrun exploitation.
| | Author: | David Dittrich | | File Size: | 55408 | | Last Modified: | Aug 16 20:07:14 1999 |
| MD5 Checksum: | 850306089225ee486a29ed60b7f5dd71 |
|
| /// File Name: |
bastion11.txt |
Description:
|
Building a Bastion Host Using HP-UX 11 - Covers configuring HP-UX 10 and 11 to be a secure host, useful for firewall gateways, web servers, ftp servers, dns servers, mail hubs, and more.
| | Author: | Kevin Steves | | Homepage: | http://people.hp.se/stevesk/ | | File Size: | 54086 | | Last Modified: | Apr 12 04:31:56 2000 |
| MD5 Checksum: | fbdbe23eb6db6e5064ca9f6f7e873493 |
|
| /// File Name: |
farmer.txt |
Description:
|
Improving the Security of Your Site by Breaking Into It: Discussion of a number of commonly used attacks on UNIX systems, and how to check your systems for vulnerability to them
| | File Size: | 51966 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 9263076a86ea1ed6433672a16ff4e69e |
|
| /// File Name: |
unixsec.txt |
Description:
|
A tutorial for a Unix newbie or semi-newbie who is interested in computer security and/or networking. Basic Local/Remote Unix Security: Change default configurations, basic packet filtering, how to secure your system's networking services (or completely remove them or some of them, in case you don't need them, in order to increate your computer's security), how to use, how to avoid trojans, what are sniffers, how to maintain local security between different users in your system (if you're not the only one using this system, whether it's locally or remotely), some stuff about SSH, how to protect yourself against computer viruses under the Unix system, what are security scanners and how to use them, why you should encrypt your important data and how etc'.
| | Author: | Raven | | File Size: | 51409 | | Last Modified: | Nov 22 09:39:22 1999 |
| MD5 Checksum: | f3fcbdf2d5fdf2c69aa18c3ba2497651 |
|
| /// File Name: |
utnet.ps |
Description:
|
UTnet Guide to UNIX System Security: A guide to UNIX security resources
| | File Size: | 46964 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | c35b8874d1f348f9551e6e4782eb8cee |
|
| /// File Name: |
password.ps |
Description:
|
UNIX Password Security: A discussion of the importance of well-chosen passwords, and how passwords are cracked
| | File Size: | 45570 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 3c8d71c2787c83c6a5383dc49ec62d85 |
|
| /// File Name: |
ifg.html |
Description:
|
What you don't know will hurt you - Remote information gathering. This paper outlines two models of information gathering . The first model is "noisy" where the attacker uses all known resources with little reguard for what footprints* might be left on the target. The second is "stealthy". Wherein the attacker uses methods and packages designed to subvert logging facilities on the target.
| | Author: | Larry W. Cashdollar | | Homepage: | http://vapid.dhs.org/ | | File Size: | 45016 | | Last Modified: | Feb 25 00:00:20 2000 |
| MD5 Checksum: | 8c5d2cd4001ad4470133c36a43af996f |
|
| /// File Name: |
writing-linux-kernel-keylogger.txt |
Description:
|
Writing Linux kernel based key loggers - Includes a sample key logger which can log user input and passwords.
| | Author: | Rd | | Homepage: | http://www.thc.org | | File Size: | 41528 | | Last Modified: | Jul 24 00:58:15 2002 |
| MD5 Checksum: | d22ed0dc349f3db7b6501802d30e8294 |
|
| /// File Name: |
alpha-bof.txt |
Description:
|
This paper will attempt to explain how to exploit a buffer overflow under alpha linux.
| | Author: | Taeho Oh | | File Size: | 34229 | | Last Modified: | Nov 15 20:15:10 1999 |
| MD5 Checksum: | 94b882751512d04ec72662890094c208 |
|
| /// File Name: |
linux.txt |
Description:
|
Beginners Guide to Linux + Easy Installation Guide version 1.1 - I'd bet some of the people reading this description are using Windows, and are afraid to install Unix on their computer for some reason. "Sure, Unix does all those cool things and has better security and most Unix programs are open-source, but what will happen if I'll screw up with the installation and delete my old copy of Windows?" Black Sun Research Facility presents - an easy to understand and simple installation guide for Redhat Linux and Mandrake Linux, the two most easiest-to-install distributions (although this tutorial is good for other common Linux distributions as well).
| | Author: | Barakirs | | File Size: | 33524 | | Last Modified: | Dec 11 15:04:15 1999 |
| MD5 Checksum: | d9cb2e5a272312e5564957dd36cd938f |
|
| /// File Name: |
tfn.analysis.txt |
Description:
|
The following is an analysis of the "Tribe Flood Network", or "TFN", by Mixter. TFN is ai powerful distributed attack tool and backdoor currently being developed and tested on a large number of compromised Unix systems on the Internet. TFN source available here.
| | Author: | David Dittrich | | File Size: | 31815 | | Last Modified: | Dec 8 19:33:43 1999 |
| MD5 Checksum: | 5e83210b7399408c0735c3ea14cdfe35 |
|
| /// File Name: |
Netric-RE-partII.pdf |
Description:
|
Radical Environments part II - This paper continues where part one left off, detailing a technique in writing 0 bytes when exploiting a local buffer overflow using a non-executable stack with the heap being stored in memory at a virtual address containing a \x00 byte.
| | Author: | gloomy, The Itch | | Homepage: | http://www.netric.org | | File Size: | 31363 | | Last Modified: | Apr 22 01:58:29 2003 |
| MD5 Checksum: | 6ae5f2cc150e8976d7d2778c6fb57fcd |
|
| /// File Name: |
fmtbuild.htm |
Description:
|
Format String Builder includes code and instructions for use of a program which aids in the creation of format string exploits. Includes fmtbuilder.c, a small program to help build the strings.
| | Author: | Frederic Raynal, Samuel Dralet | | File Size: | 30808 | | Last Modified: | Aug 8 21:25:38 2001 |
| MD5 Checksum: | 585acdb32659a450e7e167a400b6d3ff |
|
| /// File Name: |
scantactics.doc |
Description:
|
How Nmap scans work - This MS word document has information on how some of the different nmap scan types work.
| | Author: | Zack Walko | | File Size: | 30208 | | Last Modified: | Jan 11 01:08:23 2002 |
| MD5 Checksum: | 159e1b0b51c948797a4feab7aa315e2e |
|
| /// File Name: |
remotefmt-howto.txt |
Description:
|
How to Remotely Exploit Format String Bugs - A practical tutorial. Includes info on guessing the offset, guessing the address of the shellcode in the stack, using format string bugs as debuggers, examples, etc.
| | Author: | Fr^id^iric Raynal | | File Size: | 26889 | | Last Modified: | Apr 24 21:49:24 2002 |
| MD5 Checksum: | 8d086961f802114fdecba45f4f33283f |
|
| /// File Name: |
StJudeModel.pdf |
Description:
|
This paper describes how the StJude kernel module stops local and remote exploits from being successful. The Saint Jude model for improper privilege transitions terminates program execution when it is exploited even if the exploit is unknown.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | File Size: | 24817 | | Last Modified: | Nov 2 04:17:38 2000 |
| MD5 Checksum: | c902a44532bc1a78a08bc72e5f872245 |
|
| /// File Name: |
mac.txt |
Description:
|
Mandatory Access Control tutorial to correctly and safely install, configure, and use MAC policies. Written for FreeBSD users. Full step by step details given with explanations.
| | Author: | Bugghy | | Homepage: | http://vaida.bogdan.googlepages.com/ | | File Size: | 23878 | | Last Modified: | Apr 17 08:17:00 2004 |
| MD5 Checksum: | 6863069367b013e42b38720c4e26da80 |
|
| /// File Name: |
ritchie.ps |
Description:
|
On the Security of UNIX: The original UNIX security paper
| | File Size: | 23527 | | Last Modified: | Oct 1 17:22:48 1999 |
| MD5 Checksum: | 0aee70366340d619e2262b9f1401340a |
|
| /// File Name: |
alpha-fmtstr.txt |
Description:
|
How to Exploit Format String Vulnerabilities under Alpha Linux. Includes techniques and example code.
| | Author: | Truefinder | | Homepage: | http://igrus.inha.ac.kr/~seo | | File Size: | 22921 | | Last Modified: | Sep 28 12:27:57 2001 |
| MD5 Checksum: | 77555d54c389c58fc5c52f1ce310a874 |
|
| /// File Name: |
exploit.txt |
Description:
|
A tutorial on how to write shellcode and exploits, and how buffer overflows work in general. It aims to be detailed and suitable for novice exploit coders with some C understanding.
| | Author: | Mixter | | Homepage: | http://members.tripod.com/mixtersecurity | | File Size: | 21386 | | Last Modified: | Nov 29 14:09:49 1999 |
| MD5 Checksum: | 20dde7bcc0210e65d823750810cfebd9 |
|
| /// File Name: |
init_rpi.txt |
Description:
|
Whitepaper detailing how to successfully patch the linux kernel in order to allow ptracing /sbin/init, and subsequently inject a connect-back shellcode into the target process. Patch code included.
| | Author: | Christophe Devine | | File Size: | 18196 | | Last Modified: | Dec 30 13:49:58 2003 |
| MD5 Checksum: | 416c6fffc2174a4c171d7edaeccba127 |
|
| /// File Name: |
IRIX.Login.Security.txt |
Description:
|
IRIX Login Security - In this paper you will learn a bit about logins, and the seriousness of what could happen if you don't take certain precautions. You will have found out some options you can take with your logins, certain restrictions, and a lot more.
| | Author: | Prizm | | File Size: | 18157 | | Last Modified: | Apr 9 22:41:31 2000 |
| MD5 Checksum: | e63b7ee974a2cce3da3eabb47ebfaf7e |
|
| /// File Name: |
shellcodin.txt |
Description:
|
Shellcoding - How to write shellcode for Linux/x86. Includes parts I + II.
| | Author: | Bob | | Homepage: | http://blaat.dtors.net | | File Size: | 17370 | | Last Modified: | Sep 17 09:33:30 2002 |
| MD5 Checksum: | f6ce6ce0746488247aaaf2c3ee8e867c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
