.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / papers / bypass  /

Page 2 of 2
<< 1 2 >> Files 25 - 46 of 46
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: smackthestack.txt
Description:
 This whitepaper discusses five creative methods used to overcome various stack protection patches. It focuses on the VA (Virtual Address) space randomization patch that has been integrated into the Linux 2.6 kernel. These methods are not limited to this patch, but rather provide a different approach to the buffer overflow exploiting scheme.
Author:Izik
File Size:29182
Last Modified:Oct 8 14:15:15 2005
MD5 Checksum:5c55f894eced79356c37c86ac0fd889e

 ///  File Name: Low-Level_Enumeration_With_TCP.txt
Description:
 A thoroughly written paper that covers the discussion of SYN, FIN, Null, Xmas, Idle, and Zombie scanning. It gives strong compare and contrast insight on methodologies to use when determining open ports on a host and remote operating system detection. It shows example scans and discusses IP enumeration along with the utilization of tools like hping2 and nmap to dig deeper.
Author:djrand
File Size:24862
Last Modified:Nov 20 17:18:57 2003
MD5 Checksum:b6208ca85ecb6519c410aae4f4e3615e

 ///  File Name: GOT_Hijack.txt
Description:
 This short paper discusses the method of overwriting a pointer used in a function for the sake of overwriting the associated entry in the Global Offset Table (GOT) which in turn allows for execution flow redirection.
Author:c0ntex
Homepage:http://www.open-security.org
File Size:16696
Last Modified:Aug 28 15:59:30 2005
MD5 Checksum:ffbeb2e8b0768454f781f66654e95478

 ///  File Name: bypassArticle.txt
Description:
 Presentation: Bypassing client application protection techniques with notepad.
Author:3APA3A,offtopic
Homepage:http://www.security.nnov.ru/advisories/bypassing.asp
File Size:15185
Last Modified:Oct 28 10:57:23 2004
MD5 Checksum:bce063153c54781f687f0cd29fe5c972

 ///  File Name: Forge-Amit.txt
Description:
 Whitepaper titled "Forging HTTP Request Headers With Flash".
Author:Amit Klein
File Size:14839
Last Modified:Jul 26 04:03:46 2006
MD5 Checksum:6b97464da5cf5a4ea42215c97ec35944

 ///  File Name: sql-anatomy.txt
Description:
 SQL Injection - Anatomy of an Attack. Written in Portuguese.
Author:liquido
File Size:11911
Last Modified:Oct 28 22:19:29 2008
MD5 Checksum:b037dff7691db50640de97334d56f6fd

 ///  File Name: return-to-libc-linux.txt
Description:
 Brief whitepaper discussing return to LIBC exploitation on Linux.
Author:Jeremy Brown
Homepage:http://jbrownsec.blogspot.com/
File Size:11726
Last Modified:Nov 20 17:39:17 2008
MD5 Checksum:f26ae137d661666b5f6007106966c68a

 ///  File Name: vapatch.txt
Description:
 Whitepaper titled Circumventing the VA kernel patch For Fun and Profit.
Author:phetips
File Size:11033
Last Modified:Oct 8 23:35:14 2006
MD5 Checksum:9bfacc871b7957473a7fbe17bf7cebd1

 ///  File Name: httpsplit.txt
Description:
 This technical note describes a detection/prevention technique that works in many cases both with HTTP Response Splitting and with HTTP Request Smuggling.
Author:Amit Klein
File Size:10124
Last Modified:Aug 17 02:30:51 2005
MD5 Checksum:6dd02db0137701d3c42986ed49b1c661

 ///  File Name: aslr-bypass.txt
Description:
 Whitepaper discussing an ASLR bypassing methodology on the Linux 2.6.17/20 kernel.
Author:sorrow
Homepage:http://fhm.noblogs.org/
File Size:10023
Last Modified:Sep 5 11:36:02 2008
MD5 Checksum:69eac3945ce943b762c014d7d22bb2ba

 ///  File Name: xss-bypass.txt
Description:
 Cross site scripting filtration bypass.
Author:Arham Muhammad
File Size:9942
Last Modified:Jun 10 20:10:59 2007
MD5 Checksum:49e66fffe3b0413e8dd5b5e4103a6f2c

 ///  File Name: Return-to-libc.txt
Description:
 Cool whitepaper discussing the return into libc attacks used to bypass non-executable stacks.
Author:c0ntex
File Size:9150
Last Modified:Jul 21 02:07:01 2005
MD5 Checksum:2cdf9eb2ba348d35e4923412c4b6b7e8

 ///  File Name: SSLPCT.txt
Description:
 White paper analysis of the SSL PCT vulnerability. Gives full details on how exploitation has been performed and what it took for working exploits to be created.
Author:Juliano Rizzo
Related Exploit:THCIISSLame.c
File Size:8986
Last Modified:May 3 19:16:07 2004
MD5 Checksum:aae6021952f7f660540073da5b8d4fdf

 ///  File Name: javascriptFun.txt
Description:
 This tutorial is an overview of how javascript can be used to bypass html forms and how it can be used to override cookie/session authentication.
Author:Dr_aMado
File Size:8733
Last Modified:May 7 04:57:10 2005
MD5 Checksum:9dff177e25d94281c9a2dab498241834

 ///  File Name: zk-blind.txt
Description:
 White paper discussing blind injection in MySQL databases.
Author:Zeelock
File Size:8159
Last Modified:Feb 25 00:12:46 2005
MD5 Checksum:53bf8afed972125094b75a5e6086a67a

 ///  File Name: bypassScript.txt
Description:
 Whitepaper discussing the bypassing of script filter with variable-width encodings.
Author:Cheng Peng Su
File Size:7104
Last Modified:Aug 18 01:34:51 2006
MD5 Checksum:d6ee6506d4d8e6e0d0032a49e253c3a6

 ///  File Name: BluezHCIDpwned.txt
Description:
 Document that outlines an exploitable scenario for hcid using the popen() bug in security.c. This was written in response to a claim that the bluez vulnerability was quite trivial.
Author:Kevin Finisterre
File Size:6517
Last Modified:Aug 18 03:48:10 2005
MD5 Checksum:b72ff079514eeeedc49d026f205fb05b

 ///  File Name: infection-gateways.txt
Description:
 Whitepaper discussing various infection gateways.
Author:Rohit Bansal
File Size:4824
Last Modified:Nov 7 13:36:11 2008
MD5 Checksum:5fa305b740362ce32b15d3a4c849610d

 ///  File Name: HeaderFlash.txt
Description:
 Formal write up discussing how arbitrary HTTP requests can be crafted using Flash 7/8 with Internet Explorer.
Author:Amit Klein
File Size:3041
Last Modified:Aug 27 13:50:03 2006
MD5 Checksum:211b836130d25cc1e62f50c3f63cdcdb

 ///  File Name: keylog.txt
Description:
 Small white paper regarding keyloggers and basic circumvention.
Author:priestmaster
Homepage:http://www.priestmaster.org
File Size:2368
Last Modified:Sep 9 23:58:10 2004
MD5 Checksum:c57a57587c61465fbe82503b216368b8

 ///  File Name: lkbackdoor.tar.gz
Description:
 Small paper describing how to add a quick backdoor into the setuid code for the Linux 2.4 kernel series.
Author:Michal Stys
File Size:1120
Last Modified:Nov 12 19:06:53 2004
MD5 Checksum:74bad9990e8c7f8f46b2aeeeb4e5d543
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice