.:[ packet storm ]:. - http://packetstormsecurity.org/

Section: .. / papers / unix /

Page 3 of 4
<< 1 2 3 4 >> Files 50 - 75 of 76

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	Secure.Linux.for.Newbies.v1.1.txt
Description:	Well written paper on securing linux for newbies. Lots of good and updated info. Version 1.1.
Author:	Sil
File Size:	16649
Last Modified:	Oct 25 14:00:58 1999
MD5 Checksum:	570672dea62d5322dd8a3af61496921f

/// File Name:	fmat.txt
Description:	An alternative method in format string exploitation - a paper discussing a method of making format string exploits static again on 2.6 with random VA.
Author:	K-sPecial
Homepage:	http://xzziroz.net/
File Size:	15259
Last Modified:	Oct 20 20:29:28 2006
MD5 Checksum:	3323b524868edd9e4a53cd3146c4d95f

/// File Name:	fstream-overflows.txt
Description:	This paper describes FILE stream overflow vulnerabilities and illustrates how they can be exploited. The author uses a FILE stream overflow in dvips as a case study.
Author:	Killah.
Homepage:	http://www.hack.gr/users/killah/
File Size:	15126
Last Modified:	Feb 3 06:14:57 2003
MD5 Checksum:	886e4343079f8bdc593fe647b77e9859

/// File Name:	ebpoverflow.txt
Description:	One Byte Frame Pointer Overwrite Hardcoded Exploits - This paper describes how to exploit overflows which are off by only one byte. Includes sample code.
Author:	Nebunu
File Size:	14982
Last Modified:	Oct 29 23:55:23 2003
MD5 Checksum:	3b316253703503292efec1f27f80389a

/// File Name:	rdCpaper-fb.text
Description:	How to exploit format string vulnerabilities - In Spanish.
Author:	Venomous
Homepage:	http://www.rdcrew.com.ar
File Size:	14819
Last Modified:	Dec 23 21:22:32 2000
MD5 Checksum:	2e2786b05184aebe0803a534b6636612

/// File Name:	snmprizzo.txt
Description:	This paper will discuss setting up encrypted communication for SNMP agents and trapd hosts through the use of Zebedee (Zee-bee-dee) UDP tunneling and encryption features. The goal is encrypted SNMP traps from the hosts to the management station and encrypted polling of the SNMP agent running on the host. All SNMP communication is handled by Zebedee with proper firewall filtering practices.
Author:	Ron Sweeney, Jerry Matt
File Size:	14442
Last Modified:	Aug 29 03:10:50 2002
MD5 Checksum:	248e08ed78b2ca065b381f79b54c301c

/// File Name:	tmpwatch.txt
Description:	Common use of 'tmpwatch' utility and its counterparts triggers race conditions in many applications, sometimes allowing privilege escalation. Includes information on races, file removal, fixes, and more.
Author:	Michal Zalewski
Homepage:	http://lcamtuf.coredump.cx
File Size:	14247
Last Modified:	Dec 21 05:56:37 2002
MD5 Checksum:	6d1fa3c3d46b67c59286f2608ec45dba

/// File Name:	asmcodes-1.0.2.tar.gz
Description:	This package contains all codes prepared for technical paper - UNIX Assembly Codes Development for Vulnerabilities Illustration Purposes. For every discussed processor architecture samples of various assembly components are included.
Author:	The Last Stage of Delirium
Homepage:	http://lsd-pl.net
File Size:	14101
Last Modified:	Jul 29 01:50:54 2001
MD5 Checksum:	3f31db7d6cb75525ecf87fdec3047b10

/// File Name:	disassembling.txt
Description:	Disassembling programs on Debian Linux 2.2 using gdb.
Author:	Seamus
File Size:	12775
Last Modified:	Mar 15 20:20:36 2001
MD5 Checksum:	93372530435d52395912ab038d31d9bf

/// File Name:	ppc.shellcode.txt
Description:	Power PC shellcode. LinuxPPC and BSD (darwin?) versions are included.
Author:	Palante
File Size:	11888
Last Modified:	Nov 17 16:05:37 1999
MD5 Checksum:	544ea5c5049203fa4db8159ed39bee81

/// File Name:	elf-runtime-fixup.txt
Description:	Reversing the ELF - Stepping with GDB during PLT uses and .GOT fixup. This is a GDB tutorial about runtime process fixup using the Procedure Linkage Table section (.plt) and the Global Offset Table section (.got) by the dynamic linker ld-linux.so. ASM knowledge will be helpful. More info on ELF here.
Author:	Mayhem
Homepage:	http://www.devhell.org/~mayhem
File Size:	11631
Last Modified:	Jan 17 01:36:17 2002
MD5 Checksum:	a0158f7bb4c8098db9f9a4a633b10155

/// File Name:	FV.txt
Description:	Finding Vulnerabilities - This paper explains the auditing of C source code to find application exploits. Includes a practical example of how to hack an IDS that was coded for a website.
Author:	Bob
Homepage:	http://blaat.dtors.net
File Size:	11623
Last Modified:	Sep 17 09:48:12 2002
MD5 Checksum:	6e349f14320160b2b874d172bdb12a94

/// File Name:	finger.htm
Description:	Passive Fingerprinting is a method to learn more about the enemy, without them knowing it. Specifically, you can determine the operating system and other characteristics of the remote host using nothing more then sniffer traces. Though not 100% accurate, you can get surprisingly good results by looking at the TTL, TOS, Window Size, and DF bit. Includes information on changing your machines fingerprint on Linux and Solaris.
Author:	Lance Spitzner
Homepage:	http://www.enteract.com/~lspitz/
File Size:	11193
Last Modified:	Apr 27 15:06:36 2000
MD5 Checksum:	8bee07cbafbcbd2801a8aff717f7959d

/// File Name:	Overflows.txt
Description:	This guide intends to teach the basics of buffer overflow to the average C programmer without the need for complex knowledge of assembly. Written with FreeBSD 4.2-Release in mind, but written for x86 *nix.
Author:	Fides
File Size:	11086
Last Modified:	Mar 16 21:18:18 2001
MD5 Checksum:	80f65b73212240d5bf980459a615515b

/// File Name:	vulns.html
Description:	Guidelines for C source code auditing - A basic reference containing some tips, approaches and methods for finding vulnerabilities in C code.
Author:	Mixter
Homepage:	http://mixter.void.ru
File Size:	10219
Last Modified:	Jul 23 02:09:17 2001
MD5 Checksum:	080a89b51af978bea56be2529a00989a

/// File Name:	omega.txt
Description:	Tutorial on a new way of exploiting buffer overflows (ret-into-libc).
Author:	Lamagra.
File Size:	9138
Last Modified:	Oct 22 14:06:20 1999
MD5 Checksum:	567d84e713346700e3c79f318f95c78a

/// File Name:	manipulating.dtors.txt
Description:	A paper that details the manipulation of the destructor when utilizing a buffer overflow, a format string attack, or corrupting a malloc chunk.
Author:	Bob
File Size:	6781
Last Modified:	Jul 6 03:18:36 2003
MD5 Checksum:	cf655444e6c3559bebdf6fd69d4b4aeb

/// File Name:	ftp.conversions.txt
Description:	There exists a vulnerability with certain configurations of certain ftp daemons with which users with a valid ftp only acccount on a system may execute arbitrary commands (including binaries supplied by themselves). There also exists the possibilty that anonymous ftp users may execute arbitrar y commands (also including binaries supplied by themselves). While this vulnerability is entirely configuration dependent. The required configuration is rather common. Exploit information here.
Author:	suid
Homepage:	http://www.suid.edu/advisories/
File Size:	6411
Last Modified:	Dec 20 16:52:02 1999
MD5 Checksum:	60d91c3dfdbb29df1e4f8c03f721854e

/// File Name:	logs.txt
Description:	Commonly overlooked audit trails on intrusions. This is my attempt of compiling a 'top list' of audit trails that are being left after intrusions where the intruders try to cover their tracks but don't do a good job. To put it short, there are actually a lot of audit trails on a normal UNIX system, which can almost all be overcome, but with some effort, that most intruders evade.
Author:	Mixter
Homepage:	http://members.tripod.com/mixtersecurity
File Size:	6319
Last Modified:	Dec 6 19:26:19 1999
MD5 Checksum:	b16d1ecc218691d9dced63d62e760712

/// File Name:	format_bugs.txt
Description:	Format Bugs - What they are, Where they came from, and How to exploit them. Users can often input format strings into printf and other statments, causing the stack to be overwritten. Includes code samples and debugger output.
Author:	Lamarga
Homepage:	http://lamagra.seKure.de
File Size:	5997
Last Modified:	Jun 29 18:14:50 2000
MD5 Checksum:	0f9a284535487d1ecff78e011e370e44

/// File Name:	fmt.tar.gz
Description:	Fmt.tar.gz contains tutorials in English and German on exploiting local format string vulnerabilities. This is a summary of tutorials from http://community.core-sdi.com/~juliano and includes sample code.
Author:	Delikon
Homepage:	http://www.delikon.de
File Size:	5662
Last Modified:	Aug 23 02:45:33 2002
MD5 Checksum:	07f78152dbb1ed57e5ed511cdda34553

/// File Name:	m68koverflows
Description:	A little article on m68k buffer overflows + shellcode.
Author:	Lamagra
File Size:	5660
Last Modified:	Feb 15 15:29:38 2000
MD5 Checksum:	42d0b829fbbaa6931036905d49008c5f

/// File Name:	lfv.txt
Description:	Looking for Vulnerabilities - Our approach has been to look for a few common mistakes in programs (and scripts) of interest (mainly setuid, setgid programs and network servers). This paper focuses on unsafe temp files, unsafe environment, and buffer overflows.
Author:	Antonomasia
File Size:	4882
Last Modified:	Jul 18 02:36:19 2001
MD5 Checksum:	c19d28b643f5801709d883ff41b13972

/// File Name:	iptun-ssl.txt
Description:	Step by Step instructions for tunnelling IP through an SSL Proxy using two linux boxes, pppd, ipfwadm, and ppptcp-ssl.
Author:	Coaxial Karma
File Size:	3414
Last Modified:	Dec 24 05:20:25 1999
MD5 Checksum:	f97085de399eda7f63b62850784a1e00

/// File Name:	tcp.acknowledgement.txt
Description:	This paper describes how it is possible to send data in TCP headers using the acknowledgment numbers.
Author:	Rohits
File Size:	3077
Last Modified:	Oct 9 20:30:01 2002
MD5 Checksum:	5b7707d3ef0d959aaa728fe2bc4894b0

/// Last 10 Files

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Advisories

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Exploits

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Tools

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Misc

[ Last 20 | Last 50 | Last 100 ]