Articles inside the category: Articles
on :
Tuesday, 1 Mar, 2005
Knock is a client-server tool allowing users to safely use SSH connections in situations where permanent access to that service is undesirable.
Author: Roman Polesek
Source: http://hakin9.org Hakin9 3/2005
Quick start: The Linux fi rewall we are administering has a very restrictive security policy. Although, the sshd daemon is running, our fi rewall generally does not allow for using the SSH service: iptables refuses all connection attempts to port 22. However, the administrator should have the possibility to remotely log onto such a machine if only for the purpose of updating software. How can this be achieved without decreasing the fi rewall's security level?
on :
Tuesday, 1 Mar, 2005
Ant is a graphical tool (based on the GTK library) which greatly simplifi es the analysis and security tests of networks and computer systems. Ant enables users to create and send frames for all common protocol headers: IPv4/IPv6, TCP, UDP, ARP, IPX, SPX etc. It was the winner of the SendIP front end competition organised by hakin9 and is included on the hakin9.live CD.
Author: Roman Polesek
Source: http://hakin9.org Hakin9 2/2005
Quick start: suppose you are the administrator of a small network and want to test your router's responses to different frames sent out from the local network. Preparing the many different types of
on :
Tuesday, 1 Feb, 2005
People who share Internet connections in discord with agreements made between them and their Internet service provider can cause severe headaches for both the provider and the network administrator. There are, however, several ways to detect such practice. These methods
on :
Tuesday, 1 Feb, 2005
The fi rst stage of protecting software from reverse engineering is the discovery of debuggers and virtual machines. Contrary to popular belief, this is not difficult.
Authors: Mariusz Burdach
Source: http://hakin9.org Hakin9 2/2005
What you will learn...
- how to expose debuggers,
- how to expose the VMware
on :
Tuesday, 1 Feb, 2005
Dynamic analysis of code in the Executable and Linkable Format (ELF) presents more possibilities than static analysis – it allows users to infl uence the execution of the tested program. It is not diffi cult to carry out, but requires
on :
Tuesday, 1 Feb, 2005
If an attacker takes control over system logs, we will not be able to trace their actions. The level of protection provided by existing solutions has proven to be insuffi cient.
Author: Michał Piotrowski
Source: http://hakin9.org Hakin9 2/2005
What you will learn...
on :
Tuesday, 1 Feb, 2005
MD5 is probably the most used one-way hash function nowadays. Its area of application starts with simple file checksums and propagates even to DRM (Digital Rights Management). Although serious openings within MD5 had been considered problematic, one of them was
on :
Tuesday, 1 Feb, 2005
The main purpose of rootkits is to hide specific files and processes in a compromised system. This might sound complicated, however, as we are going to see, creating your own rootkit is not rocket science.
Author: Mariusz Burdach
Source: http://hakin9.org Hakin9 2/2005
What you
on :
Tuesday, 1 Feb, 2005
Java 2 Micro Edition, used mainly in portable devices, is seen as a relatively safe programming environment. There are, however, ways of attacking mobile applications. Mostly, they take advantage of the inattention or carelessness of application programmers and distributors.
Author: Tomasz Rybicki
Source:
on :
Tuesday, 1 Feb, 2005
When Usenet was created, nobody thought about security. Unfortunately, today one cannot assume that good manners will stop Internet users from deleting someone else's messages, removing groups, or sending vulgar swearwords to moderated newsgroups. We will take a look at
on :
Tuesday, 1 Feb, 2005
Spammers often use insuffi ciently secured systems. The trouble and cost of sending tens or hundreds of thousands of messages are transferred to third parties. You will learn what techniques spammers use and how to protect yourself.
Authors: Tomasz Nidecki
Source: http://hakin9.org Hakin9
