Files ≈ Packet Storm

Files ≈ Packet Storm Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 10:38:10 GMT Packet Storm 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1467900682&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Fpapers%2Funix%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1467900682.1338201490.1338201490.1338201490.1%3B%2B__utmz%3D32867617.1338201490.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) fmat.txt http://packetstormsecurity.org/files/51206/fmat.txt http://packetstormsecurity.org/files/51206/fmat.txt http://packetstormsecurity.org/files/51206/fmat.txt.html Sat, 21 Oct 2006 00:29:28 GMT An alternative method in format string exploitation - a paper discussing a method of making format string exploits static again on 2.6 with random VA. AIX_Security.pdf http://packetstormsecurity.org/files/33894/AIX_Security.pdf http://packetstormsecurity.org/files/33894/AIX_Security.pdf http://packetstormsecurity.org/files/33894/AIX_Security.pdf.html Wed, 28 Jul 2004 03:23:39 GMT White paper on basic security and hardening procedures for AIX. Many of the features and functions shown throughout this guide are applicable to AIX 4.3 and above, but are more directed towards AIX 5.2. This guide attempts to cover a lot of ground and offers useful and necessary insight for anyone administering AIX machines. 040622-securing-mac-os-x.pdf http://packetstormsecurity.org/files/33767/040622-securing-mac-os-x.pdf http://packetstormsecurity.org/files/33767/040622-securing-mac-os-x.pdf http://packetstormsecurity.org/files/33767/040622-securing-mac-os-x.pdf.html Sun, 11 Jul 2004 17:11:00 GMT Whitepaper on hardening Mac OS X. The paper includes a very brief introduction to the firmware, descriptions of hardening using both GUI and command-line interface. mac.txt http://packetstormsecurity.org/files/33103/mac.txt http://packetstormsecurity.org/files/33103/mac.txt http://packetstormsecurity.org/files/33103/mac.txt.html Sat, 17 Apr 2004 12:17:00 GMT Mandatory Access Control tutorial to correctly and safely install, configure, and use MAC policies. Written for FreeBSD users. Full step by step details given with explanations. init_rpi.txt http://packetstormsecurity.org/files/32423/init_rpi.txt http://packetstormsecurity.org/files/32423/init_rpi.txt http://packetstormsecurity.org/files/32423/init_rpi.txt.html Tue, 30 Dec 2003 18:49:58 GMT Whitepaper detailing how to successfully patch the linux kernel in order to allow ptracing /sbin/init, and subsequently inject a connect-back shellcode into the target process. Patch code included. ebpoverflow.txt http://packetstormsecurity.org/files/31905/ebpoverflow.txt http://packetstormsecurity.org/files/31905/ebpoverflow.txt http://packetstormsecurity.org/files/31905/ebpoverflow.txt.html Thu, 30 Oct 2003 04:55:23 GMT One Byte Frame Pointer Overwrite Hardcoded Exploits - This paper describes how to exploit overflows which are off by only one byte. Includes sample code. manipulating.dtors.txt http://packetstormsecurity.org/files/29662/manipulating.dtors.txt http://packetstormsecurity.org/files/29662/manipulating.dtors.txt http://packetstormsecurity.org/files/29662/manipulating.dtors.txt.html Sun, 06 Jul 2003 07:18:36 GMT A paper that details the manipulation of the destructor when utilizing a buffer overflow, a format string attack, or corrupting a malloc chunk. fstream-overflows.txt http://packetstormsecurity.org/files/30772/fstream-overflows.txt http://packetstormsecurity.org/files/30772/fstream-overflows.txt http://packetstormsecurity.org/files/30772/fstream-overflows.txt.html Mon, 03 Feb 2003 11:14:57 GMT This paper describes FILE stream overflow vulnerabilities and illustrates how they can be exploited. The author uses a FILE stream overflow in dvips as a case study. core_format_strings.pdf http://packetstormsecurity.org/files/30744/core_format_strings.pdf http://packetstormsecurity.org/files/30744/core_format_strings.pdf http://packetstormsecurity.org/files/30744/core_format_strings.pdf.html Thu, 23 Jan 2003 08:40:01 GMT Vulnerabilities in Your Code Part II - Format string vulnerabilities and exploitation. Shows the exact location of the vulnerabilities, providing detailed explanations and exploits for each one found. tmpwatch.txt http://packetstormsecurity.org/files/30630/tmpwatch.txt http://packetstormsecurity.org/files/30630/tmpwatch.txt http://packetstormsecurity.org/files/30630/tmpwatch.txt.html Sat, 21 Dec 2002 10:56:37 GMT Common use of 'tmpwatch' utility and its counterparts triggers race conditions in many applications, sometimes allowing privilege escalation. Includes information on races, file removal, fixes, and more. tcp.acknowledgement.txt http://packetstormsecurity.org/files/29840/tcp.acknowledgement.txt http://packetstormsecurity.org/files/29840/tcp.acknowledgement.txt http://packetstormsecurity.org/files/29840/tcp.acknowledgement.txt.html Thu, 10 Oct 2002 00:30:01 GMT This paper describes how it is possible to send data in TCP headers using the acknowledgment numbers. FV.txt http://packetstormsecurity.org/files/29660/FV.txt http://packetstormsecurity.org/files/29660/FV.txt http://packetstormsecurity.org/files/29660/FV.txt.html Tue, 17 Sep 2002 13:48:12 GMT Finding Vulnerabilities - This paper explains the auditing of C source code to find application exploits. Includes a practical example of how to hack an IDS that was coded for a website. shellcodin.txt http://packetstormsecurity.org/files/29659/shellcodin.txt http://packetstormsecurity.org/files/29659/shellcodin.txt http://packetstormsecurity.org/files/29659/shellcodin.txt.html Tue, 17 Sep 2002 13:33:30 GMT Shellcoding - How to write shellcode for Linux/x86. Includes parts I + II. snmprizzo.txt http://packetstormsecurity.org/files/29483/snmprizzo.txt http://packetstormsecurity.org/files/29483/snmprizzo.txt http://packetstormsecurity.org/files/29483/snmprizzo.txt.html Thu, 29 Aug 2002 07:10:50 GMT This paper will discuss setting up encrypted communication for SNMP agents and trapd hosts through the use of Zebedee (Zee-bee-dee) UDP tunneling and encryption features. The goal is encrypted SNMP traps from the hosts to the management station and encrypted polling of the SNMP agent running on the host. All SNMP communication is handled by Zebedee with proper firewall filtering practices. fmt.tar.gz http://packetstormsecurity.org/files/26594/fmt.tar.gz http://packetstormsecurity.org/files/26594/fmt.tar.gz http://packetstormsecurity.org/files/26594/fmt.tar.gz.html Fri, 23 Aug 2002 06:45:33 GMT Fmt.tar.gz contains tutorials in English and German on exploiting local format string vulnerabilities. This is a summary of tutorials from http://community.core-sdi.com/~juliano and includes sample code. writing-linux-kernel-keylogger.txt http://packetstormsecurity.org/files/26467/writing-linux-kernel-keylogger.txt http://packetstormsecurity.org/files/26467/writing-linux-kernel-keylogger.txt http://packetstormsecurity.org/files/26467/writing-linux-kernel-keylogger.txt.html Wed, 24 Jul 2002 04:58:15 GMT Writing Linux kernel based key loggers - Includes a sample key logger which can log user input and passwords. linux-390-shellcode-devel.txt http://packetstormsecurity.org/files/26466/linux-390-shellcode-devel.txt http://packetstormsecurity.org/files/26466/linux-390-shellcode-devel.txt http://packetstormsecurity.org/files/26466/linux-390-shellcode-devel.txt.html Wed, 24 Jul 2002 04:55:51 GMT Writing shellcode for Linux/390 mainframes. Includes port binding shellcode example. memorylayout.txt http://packetstormsecurity.org/files/26373/memorylayout.txt http://packetstormsecurity.org/files/26373/memorylayout.txt http://packetstormsecurity.org/files/26373/memorylayout.txt.html Mon, 08 Jul 2002 07:29:09 GMT Memory Layout - Detailed information on memory management. remotefmt-howto.txt http://packetstormsecurity.org/files/25978/remotefmt-howto.txt http://packetstormsecurity.org/files/25978/remotefmt-howto.txt http://packetstormsecurity.org/files/25978/remotefmt-howto.txt.html Thu, 25 Apr 2002 01:49:24 GMT How to Remotely Exploit Format String Bugs - A practical tutorial. Includes info on guessing the offset, guessing the address of the shellcode in the stack, using format string bugs as debuggers, examples, etc. sparc.zip http://packetstormsecurity.org/files/25673/sparc.zip http://packetstormsecurity.org/files/25673/sparc.zip http://packetstormsecurity.org/files/25673/sparc.zip.html Fri, 25 Jan 2002 07:22:44 GMT This document describes buffer overrun vulnerabilities on Sun Microsystems SPARC machines. We will begin by examining the SPARC architecture, looking at the registers and the stack. We will then go on to see exact how buffer overrun vulnerabilities occur and how control over the processes execution is gained under SPARC and then detail how, from here, the vulnerability can be exploited to gain control over the computer by looking at exploit code that spawns a shell under Solaris. elf-runtime-fixup.txt http://packetstormsecurity.org/files/25642/elf-runtime-fixup.txt http://packetstormsecurity.org/files/25642/elf-runtime-fixup.txt http://packetstormsecurity.org/files/25642/elf-runtime-fixup.txt.html Thu, 17 Jan 2002 06:36:17 GMT Reversing the ELF - Stepping with GDB during PLT uses and .GOT fixup. This is a GDB tutorial about runtime process fixup using the Procedure Linkage Table section (.plt) and the Global Offset Table section (.got) by the dynamic linker ld-linux.so. ASM knowledge will be helpful. More info on ELF here. scantactics.doc http://packetstormsecurity.org/files/25634/scantactics.doc http://packetstormsecurity.org/files/25634/scantactics.doc http://packetstormsecurity.org/files/25634/scantactics.doc.html Fri, 11 Jan 2002 06:08:23 GMT How Nmap scans work - This MS word document has information on how some of the different nmap scan types work. promiscuous_detection_01.pdf http://packetstormsecurity.org/files/25506/promiscuous_detection_01.pdf http://packetstormsecurity.org/files/25506/promiscuous_detection_01.pdf http://packetstormsecurity.org/files/25506/promiscuous_detection_01.pdf.html Sun, 09 Dec 2001 02:35:57 GMT In the local network, the act of sniffing has become a serious threat. Malicious users can use sniffing techniques to steal confidential documents and anyone's privacy by sniffing the network. Sniffing causes privacy intrusion, and can be done simply by downloading free sniffer tools from the Internet and installing them into a personal computer that resides on the local network. The documentation below discusses the use of Address Resolution Protocol (ARP) packets to effectively detect malicious users when they are sniffing the network. The tool Promiscan implements the techniques discussed in this document. formatstring-1.2.tar.gz http://packetstormsecurity.org/files/25349/formatstring-1.2.tar.gz http://packetstormsecurity.org/files/25349/formatstring-1.2.tar.gz http://packetstormsecurity.org/files/25349/formatstring-1.2.tar.gz.html Thu, 11 Oct 2001 04:41:48 GMT Exploiting Format String Vulnerabilities v1.2 - Includes over 30 pages of well organized information along with several examples. alpha-fmtstr.txt http://packetstormsecurity.org/files/25328/alpha-fmtstr.txt http://packetstormsecurity.org/files/25328/alpha-fmtstr.txt http://packetstormsecurity.org/files/25328/alpha-fmtstr.txt.html Fri, 28 Sep 2001 16:27:57 GMT How to Exploit Format String Vulnerabilities under Alpha Linux. Includes techniques and example code.