Packetstorm Misc Files

Call For Papers for the POC2007 (Power Of Community) conference being held in Seoul, Korea November 15th through 16th, 2007.

Whitepaper entitled Las nuevas backdoors , discussing new techniques in backdoors and sniffing. Written in Spanish.

Libpcap is a portable packet capture library which is used in many packet sniffers, including Tcpdump.

Call For Papers for the No cON Name 2007 Congress. This conference will be held in Palma de Mallorca, Spain, from October 11th through the 13th.

ToorCon 9 Call For Papers - Papers and presentations are being accepted for ToorCon 9 to be held at the Convention Center in San Diego, CA on October 19th through October 21st, 2007.

Whitepaper: Oracle Forensics Part 6 - Examining Undo Segments, Flashback and the Oracle Recycle Bin.

Brute force dictionary generator written as a bash shell script.

Whitepaper entitled PHP Endangers - Remote Code Execution.

The Openwall Linux kernel patch is a collection of security hardening features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.

Magazine - Zero For Owned Issue 3.

Whitepaper discussing uncommon SQL injection attacks.

Whitepaper entitled XSS The Complete Walkthrough . Written to discuss how web developers should code securely to negate cross site scripting vulnerabilities.

The MultiAdmin security framework kernel module provides a means to have multiple root users with unique UIDs. This bypasses collation order problems with NSCD, allows you to have files with unique owners, and allows you to track the quota usage for every real user. It also implements a sub-admin, a partially restricted root user who has full read-only access to most subsystems, but write rights only to a limited subset, for example writing to files or killing processes only of certain users.

GNU SASL is an implementation of the Simple Authentication and Security Layer framework and a few common SASL mechanisms. SASL is used by network servers such as IMAP and SMTP to request authentication from clients, and in clients to authenticate against servers. The library includes support for the SASL framework (with authentication functions and application data privacy and integrity functions) and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM, and KERBEROS_V5 mechanisms.

Whitepaper: Oracle Forensics Part 5 - Finding Evidence of Data Theft in the Absence of Auditing.

Dissection of an Oracle Attack in the Absence of Auditing. Presentation slides from Black Hat 2007 as presented by David Litchfield.

Whitepaper discussing cross site request timing attacks. This was originally presented at Black Hat 2007 and Defcon 15.

GNU SASL is an implementation of the Simple Authentication and Security Layer framework and a few common SASL mechanisms. SASL is used by network servers such as IMAP and SMTP to request authentication from clients, and in clients to authenticate against servers. The library includes support for the SASL framework (with authentication functions and application data privacy and integrity functions) and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM, and KERBEROS_V5 mechanisms.

Whitepaper entitled Tactical Exploitation . This writing discusses a tactical approach to penetration testing that does not rely on exploiting known vulnerabilities. It stems from a talk given at Black Hat 2007 and Defcon 15.

Whitepaper discussing how to speed up the exploit development process as presented at VNSECON07.