Section: .. / papers / unix /
| /// File Name: |
formatstring-1.2.tar.gz |
Description:
|
Exploiting Format String Vulnerabilities v1.2 - Includes over 30 pages of well organized information along with several examples.
| | Author: | Scut | | Homepage: | https://www.team-teso.net | | File Size: | 214530 | | Last Modified: | Oct 11 00:41:48 2001 |
| MD5 Checksum: | b83261bd868fa46874290b59915bda58 |
|
| /// File Name: |
alpha-fmtstr.txt |
Description:
|
How to Exploit Format String Vulnerabilities under Alpha Linux. Includes techniques and example code.
| | Author: | Truefinder | | Homepage: | http://igrus.inha.ac.kr/~seo | | File Size: | 22921 | | Last Modified: | Sep 28 12:27:57 2001 |
| MD5 Checksum: | 77555d54c389c58fc5c52f1ce310a874 |
|
| /// File Name: |
fbsdfun.htm |
Description:
|
Fun and Games with FreeBSD Kernel Modules - Kernel hacking using kernel modules and kmem patching. Contains information on how to intercept system calls and other calls in the kernel by altering the corresponding call table. Also shows how to alter these tables by writing to kernel memory and gives an example of patching the kernel directly without the use of modules. Furthermore an example is given on how the symbol table in the kernel can be altered.
| | Author: | Stephanie Wehner | | Homepage: | http://www.r4k.net | | File Size: | 56829 | | Last Modified: | Sep 17 22:36:32 2001 |
| MD5 Checksum: | 1c02af353600d213d821553a35d81211 |
|
| /// File Name: |
fmtbuild.htm |
Description:
|
Format String Builder includes code and instructions for use of a program which aids in the creation of format string exploits. Includes fmtbuilder.c, a small program to help build the strings.
| | Author: | Frederic Raynal, Samuel Dralet | | File Size: | 30808 | | Last Modified: | Aug 8 21:25:38 2001 |
| MD5 Checksum: | 585acdb32659a450e7e167a400b6d3ff |
|
| /// File Name: |
asmcodes-1.0.2.tar.gz |
Description:
|
This package contains all codes prepared for technical paper - UNIX Assembly Codes Development for Vulnerabilities Illustration Purposes. For every discussed processor architecture samples of various assembly components are included.
| | Author: | The Last Stage of Delirium | | Homepage: | http://lsd-pl.net | | File Size: | 14101 | | Last Modified: | Jul 29 01:50:54 2001 |
| MD5 Checksum: | 3f31db7d6cb75525ecf87fdec3047b10 |
|
| /// File Name: |
asmcodes-1.0.2.pdf |
Description:
|
Unix Assembly Code Development for Vulnerabilities Illustration Purposes v1.02 - Covers IRIX / MIPS, Solaris, HP-UX, AIX, Ultrix, Linux, BeOS, and BSD. Includes system call invocation information, code specifics, "Zero free" code, ASM functionality, and examples.
| | Author: | The Last Stage of Delerium | | Homepage: | http://lsd-pl.net | | File Size: | 280120 | | Last Modified: | Jul 29 01:48:31 2001 |
| MD5 Checksum: | 024ff88ab975a35c795a04c9db0f0576 |
|
| /// File Name: |
vulns.html |
Description:
|
Guidelines for C source code auditing - A basic reference containing some tips, approaches and methods for finding vulnerabilities in C code.
| | Author: | Mixter | | Homepage: | http://mixter.void.ru | | File Size: | 10219 | | Last Modified: | Jul 23 02:09:17 2001 |
| MD5 Checksum: | 080a89b51af978bea56be2529a00989a |
|
| /// File Name: |
lfv.txt |
Description:
|
Looking for Vulnerabilities - Our approach has been to look for a few common mistakes in programs (and scripts) of interest (mainly setuid, setgid programs and network servers). This paper focuses on unsafe temp files, unsafe environment, and buffer overflows.
| | Author: | Antonomasia | | File Size: | 4882 | | Last Modified: | Jul 18 02:36:19 2001 |
| MD5 Checksum: | c19d28b643f5801709d883ff41b13972 |
|
| /// File Name: |
IM2001.pdf.gz |
Description:
|
Monitoring Networks Using ntop - How to monitor networks using the security tool ntop. Includes information on how to use it as a lightweight IDS.
| | Homepage: | http://www.ntop.org/ntop.html | | File Size: | 61795 | | Last Modified: | Jul 10 20:49:36 2001 |
| MD5 Checksum: | d7040802ce1e515343918c4951abd3e9 |
|
| /// File Name: |
stealth-syscall.txt |
Description:
|
Stealth Syscall Redirection - This article describes a technique of redirecting system calls without modifying the sys call table (implemented in Linux). This can be used to evade intrusion detection systems that use the sys call table to register redirected or trojaned system calls. The basic premise behind this attack is to modify the old system call code to jump to the new system call, thus control is transferred to the replacement system call and the sys call table is left untouched.
| | Author: | Silvio Cesare | | Homepage: | http://www.big.net.au/~silvio | | File Size: | 2828 | | Last Modified: | Jun 5 18:55:59 2001 |
| MD5 Checksum: | 917c0100d90f45ce4ca2c1e021da1f6d |
|
| /// File Name: |
osstmm.pdf |
Description:
|
Open-Source Security Testing Methodology Manual - This is a document of Internet security testing methodology, a set of rules and guidelines for solid penetration testing, ethical hacking, and information security analysis including the use of open source testing tools for the standardization of security testing and the improvement of automated vulnerability testing tools.
| | Homepage: | http://www.ideahamster.org | | File Size: | 321442 | | Last Modified: | Apr 7 02:14:08 2001 |
| MD5 Checksum: | 039e3cb8c5d94cdfe5ee1b5f56784f88 |
|
| /// File Name: |
Overflows.txt |
Description:
|
This guide intends to teach the basics of buffer overflow to the average C programmer without the need for complex knowledge of assembly. Written with FreeBSD 4.2-Release in mind, but written for x86 *nix.
| | Author: | Fides | | File Size: | 11086 | | Last Modified: | Mar 16 21:18:18 2001 |
| MD5 Checksum: | 80f65b73212240d5bf980459a615515b |
|
| /// File Name: |
disassembling.txt |
Description:
|
Disassembling programs on Debian Linux 2.2 using gdb.
| | Author: | Seamus | | File Size: | 12775 | | Last Modified: | Mar 15 20:20:36 2001 |
| MD5 Checksum: | 93372530435d52395912ab038d31d9bf |
|
| /// File Name: |
Vortrag-1.0.tar.gz |
Description:
|
German speech given at the CCC - "exploiting format string vulnerabilities". Including examples.
| | Author: | Scut | | Homepage: | https://www.team-teso.net | | File Size: | 99066 | | Last Modified: | Dec 31 11:01:23 2000 |
| MD5 Checksum: | 7a06a5c5d2cef4a82fb837d94c50fca8 |
|
| /// File Name: |
rdCpaper-fb.text |
Description:
|
How to exploit format string vulnerabilities - In Spanish.
| | Author: | Venomous | | Homepage: | http://www.rdcrew.com.ar | | File Size: | 14819 | | Last Modified: | Dec 23 21:22:32 2000 |
| MD5 Checksum: | 2e2786b05184aebe0803a534b6636612 |
|
| /// File Name: |
StJudeModel.pdf |
Description:
|
This paper describes how the StJude kernel module stops local and remote exploits from being successful. The Saint Jude model for improper privilege transitions terminates program execution when it is exploited even if the exploit is unknown.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | File Size: | 24817 | | Last Modified: | Nov 2 04:17:38 2000 |
| MD5 Checksum: | c902a44532bc1a78a08bc72e5f872245 |
|
| /// File Name: |
format_bugs.txt |
Description:
|
Format Bugs - What they are, Where they came from, and How to exploit them. Users can often input format strings into printf and other statments, causing the stack to be overwritten. Includes code samples and debugger output.
| | Author: | Lamarga | | Homepage: | http://lamagra.seKure.de | | File Size: | 5997 | | Last Modified: | Jun 29 18:14:50 2000 |
| MD5 Checksum: | 0f9a284535487d1ecff78e011e370e44 |
|
| /// File Name: |
finger.htm |
Description:
|
Passive Fingerprinting is a method to learn more about the enemy, without them knowing it. Specifically, you can determine the operating system and other characteristics of the remote host using nothing more then sniffer traces. Though not 100% accurate, you can get surprisingly good results by looking at the TTL, TOS, Window Size, and DF bit. Includes information on changing your machines fingerprint on Linux and Solaris.
| | Author: | Lance Spitzner | | Homepage: | http://www.enteract.com/~lspitz/ | | File Size: | 11193 | | Last Modified: | Apr 27 15:06:36 2000 |
| MD5 Checksum: | 8bee07cbafbcbd2801a8aff717f7959d |
|
| /// File Name: |
bastion11.txt |
Description:
|
Building a Bastion Host Using HP-UX 11 - Covers configuring HP-UX 10 and 11 to be a secure host, useful for firewall gateways, web servers, ftp servers, dns servers, mail hubs, and more.
| | Author: | Kevin Steves | | Homepage: | http://people.hp.se/stevesk/ | | File Size: | 54086 | | Last Modified: | Apr 12 04:31:56 2000 |
| MD5 Checksum: | fbdbe23eb6db6e5064ca9f6f7e873493 |
|
| /// File Name: |
IRIX.Login.Security.txt |
Description:
|
IRIX Login Security - In this paper you will learn a bit about logins, and the seriousness of what could happen if you don't take certain precautions. You will have found out some options you can take with your logins, certain restrictions, and a lot more.
| | Author: | Prizm | | File Size: | 18157 | | Last Modified: | Apr 9 22:41:31 2000 |
| MD5 Checksum: | e63b7ee974a2cce3da3eabb47ebfaf7e |
|
| /// File Name: |
Securing-Optimizing-RH-Linux-1_2.pd..> |
Description:
|
Securing and Optimizing Red Hat Linux - This documentation is indispensable for peoples that want to get all advantage, security, and optimization of a Linux Server. Features Free/SWAN section, Quota configuration, Portsentry, Logcheck, section, improved firewall security approach, more system security tips and a lot other changes. This is the version 1.2 released the March 17, 2000.
| | Author: | Gerhard Mourani | | Homepage: | http://pages.infinit.net/lotus1/ | | File Size: | 2734799 | | Last Modified: | Apr 5 19:21:14 2000 |
| MD5 Checksum: | 4e12ba68f8ecabb49a9835b8d88a1c6d |
|
| /// File Name: |
ifg.html |
Description:
|
What you don't know will hurt you - Remote information gathering. This paper outlines two models of information gathering . The first model is "noisy" where the attacker uses all known resources with little reguard for what footprints* might be left on the target. The second is "stealthy". Wherein the attacker uses methods and packages designed to subvert logging facilities on the target.
| | Author: | Larry W. Cashdollar | | Homepage: | http://vapid.dhs.org/ | | File Size: | 45016 | | Last Modified: | Feb 25 00:00:20 2000 |
| MD5 Checksum: | 8c5d2cd4001ad4470133c36a43af996f |
|
| /// File Name: |
m68koverflows |
Description:
|
A little article on m68k buffer overflows + shellcode.
| | Author: | Lamagra | | File Size: | 5660 | | Last Modified: | Feb 15 15:29:38 2000 |
| MD5 Checksum: | 42d0b829fbbaa6931036905d49008c5f |
|
| /// File Name: |
iptun-ssl.txt |
Description:
|
Step by Step instructions for tunnelling IP through an SSL Proxy using two linux boxes, pppd, ipfwadm, and ppptcp-ssl.
| | Author: | Coaxial Karma | | File Size: | 3414 | | Last Modified: | Dec 24 05:20:25 1999 |
| MD5 Checksum: | f97085de399eda7f63b62850784a1e00 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
