Section: .. / papers / bypass /
| /// File Name: |
lkbackdoor.tar.gz |
Description:
|
Small paper describing how to add a quick backdoor into the setuid code for the Linux 2.4 kernel series.
| | Author: | Michal Stys | | File Size: | 1120 | | Last Modified: | Nov 12 19:06:53 2004 |
| MD5 Checksum: | 74bad9990e8c7f8f46b2aeeeb4e5d543 |
|
| /// File Name: |
Low-Level_Enumeration_With_TCP.txt |
Description:
|
A thoroughly written paper that covers the discussion of SYN, FIN, Null, Xmas, Idle, and Zombie scanning. It gives strong compare and contrast insight on methodologies to use when determining open ports on a host and remote operating system detection. It shows example scans and discusses IP enumeration along with the utilization of tools like hping2 and nmap to dig deeper.
| | Author: | djrand | | File Size: | 24862 | | Last Modified: | Nov 20 17:18:57 2003 |
| MD5 Checksum: | b6208ca85ecb6519c410aae4f4e3615e |
|
| /// File Name: |
Monografia_Rodrigo.pdf |
Description:
|
Whitepaper discussing intrusion detection system evasion. It specifically focuses on polymorphic attacks using scmorphism. This document is written in Brazilian Portuguese.
| | Author: | Rodrigo Rubira Branco | | Homepage: | http://www.bsdaemon.org | | File Size: | 388465 | | Last Modified: | May 6 17:18:32 2006 |
| MD5 Checksum: | bece5c8d229c43ace859d0f1a227b70f |
|
| /// File Name: |
no-nx.pdf |
Description:
|
x86-64 buffer overflow exploits and the borrowed code chunk exploitation technique. Whitepaper describing NX technology and its limitations. It contains in depth discussion and sample code for the Hammer/Linux platform, analyzes the weaknesses and discusses countermeasures.
| | Author: | Sebastian Krahmer | | File Size: | 84050 | | Last Modified: | Oct 6 00:32:54 2005 |
| MD5 Checksum: | 8df650e08759b301398f03475970e1b2 |
|
| /// File Name: |
PolymorphicEvasion.txt |
Description:
|
White paper discussing ways to evade detection of polymorphic shellcode.
| | Author: | Phantasmal Phantasmagoria | | File Size: | 44008 | | Last Modified: | Oct 12 23:00:17 2004 |
| MD5 Checksum: | 798854f1dbbd63d23ab7f71eed64c0db |
|
| /// File Name: |
Return-to-libc.txt |
Description:
|
Cool whitepaper discussing the return into libc attacks used to bypass non-executable stacks.
| | Author: | c0ntex | | File Size: | 9150 | | Last Modified: | Jul 21 02:07:01 2005 |
| MD5 Checksum: | 2cdf9eb2ba348d35e4923412c4b6b7e8 |
|
| /// File Name: |
smackthestack.txt |
Description:
|
This whitepaper discusses five creative methods used to overcome various stack protection patches. It focuses on the VA (Virtual Address) space randomization patch that has been integrated into the Linux 2.6 kernel. These methods are not limited to this patch, but rather provide a different approach to the buffer overflow exploiting scheme.
| | Author: | Izik | | File Size: | 29182 | | Last Modified: | Oct 8 14:15:15 2005 |
| MD5 Checksum: | 5c55f894eced79356c37c86ac0fd889e |
|
| /// File Name: |
sql-anatomy.txt |
Description:
|
SQL Injection - Anatomy of an Attack. Written in Portuguese.
| | Author: | liquido | | File Size: | 11911 | | Last Modified: | Oct 28 22:19:29 2008 |
| MD5 Checksum: | b037dff7691db50640de97334d56f6fd |
|
| /// File Name: |
sql-inject.pdf |
Description:
|
Whitepaper discussing uncommon SQL injection attacks.
| | Author: | N3T D3VIL | | File Size: | 159732 | | Last Modified: | Aug 15 00:01:30 2007 |
| MD5 Checksum: | 3ccee41b5d5a4751f2955084693506be |
|
| /// File Name: |
SQL_Injection_Evasion.pdf |
Description:
|
A white paper from the Imperva Application Defense Center entitled 'SQL Injection Signature Evasion'. This paper discusses how protecting against SQL injection attacks using signatures is not enough.
| | Author: | Ofer Maor,Amichai Shulman | | Homepage: | http://www.imperva.com/adc/papers/sigevasion | | File Size: | 223853 | | Last Modified: | Apr 19 05:08:00 2004 |
| MD5 Checksum: | b99e854ee042979fc6db7a6e1ef30870 |
|
| /// File Name: |
SSLPCT.txt |
Description:
|
White paper analysis of the SSL PCT vulnerability. Gives full details on how exploitation has been performed and what it took for working exploits to be created.
| | Author: | Juliano Rizzo | | Related Exploit: | THCIISSLame.c | | File Size: | 8986 | | Last Modified: | May 3 19:16:07 2004 |
| MD5 Checksum: | aae6021952f7f660540073da5b8d4fdf |
|
| /// File Name: |
sybase-bypass.pdf |
Description:
|
Whitepaper discussing Sybase SQL injection and bypassing mod_security. Written in German.
| | Author: | T. Kerbl | | Homepage: | http://www.sec-consult.com/ | | File Size: | 131934 | | Last Modified: | Aug 18 20:02:00 2008 |
| MD5 Checksum: | 2b5e62af1a1d46a6e397815bc096a922 |
|
| /// File Name: |
ThePharmingGuide.pdf |
Description:
|
Exploiting well known flaws in DNS services and the way in which hostnames are resolved to IP addresses, Phishers have upped the ante in the cyberwar for control of a customer's online identity for financial gain. A grouping of attack vectors now referred to as "Pharming", affects the fundamental way in which a customer's computer locates and connects to an organizations online offering. This paper, extending the original material of "The Phishing Guide", examines in depth the workings of the name services of which Internet-based customers are dependent upon, and how they can be exploited by Pharmers to conduct identity theft and financial fraud on a massive scale.
| | Author: | NGSSoftware Insight Security Research | | Homepage: | http://www.ngssoftware.com/ | | File Size: | 1611352 | | Last Modified: | Aug 25 01:16:22 2005 |
| MD5 Checksum: | f1eb60baaa656bb670be1bb0a390c3a1 |
|
| /// File Name: |
Top_10_Ajax_SH_v1.1.pdf |
Description:
|
Whitepaper entitled "Top 10 AJAX Security Holes And Driving Factors".
| | Author: | Shreeraj Shah | | File Size: | 44884 | | Last Modified: | Dec 6 00:48:51 2006 |
| MD5 Checksum: | 038020f7d532137619a96c59296463db |
|
| /// File Name: |
vapatch.txt |
Description:
|
Whitepaper titled Circumventing the VA kernel patch For Fun and Profit.
| | Author: | phetips | | File Size: | 11033 | | Last Modified: | Oct 8 23:35:14 2006 |
| MD5 Checksum: | 9bfacc871b7957473a7fbe17bf7cebd1 |
|
| /// File Name: |
w32.bypass.abstract.en.pdf |
Description:
|
This document is a technical abstract of paper "Win32/Bypass: Anulando la deteccion de ficheros". The main objective is to explain techniques used to bypass security measures of many antivirus programs.
| | Author: | FraMe | | Homepage: | http://www.kernelpanik.org/ | | File Size: | 82126 | | Last Modified: | Mar 20 01:07:01 2007 |
| MD5 Checksum: | daee698ea86fd64cb575a08fc75d866f |
|
| /// File Name: |
WLSI.zip |
Description:
|
Whitepaper entitled "WLSI - Windows Local Shellcode Injection" that describes a new technique to create 100% reliable local exploits for Microsoft Windows operating systems. The technique uses some Windows design weaknesses that allow low privileged processes to insert data into almost any Windows process regardless of their current privilege level. After a brief introduction and a description of the technique, a couple of samples (Exploits for MS05-012 and MS05-040) are included so the reader will be enabled to write their own exploits.
| | Author: | Cesar Cerrudo | | Homepage: | http://www.argeniss.com/ | | File Size: | 264525 | | Last Modified: | Mar 14 23:22:33 2006 |
| MD5 Checksum: | e6e381e24020aea49b16759a19981d23 |
|
| /// File Name: |
xss-bypass.txt |
Description:
|
Cross site scripting filtration bypass.
| | Author: | Arham Muhammad | | File Size: | 9942 | | Last Modified: | Jun 10 20:10:59 2007 |
| MD5 Checksum: | 49e66fffe3b0413e8dd5b5e4103a6f2c |
|
| /// File Name: |
zk-blind.txt |
Description:
|
White paper discussing blind injection in MySQL databases.
| | Author: | Zeelock | | File Size: | 8159 | | Last Modified: | Feb 25 00:12:46 2005 |
| MD5 Checksum: | 53bf8afed972125094b75a5e6086a67a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
