You are here: Home
Written By :
on : Monday, 1 Jan, 2007

Function overwriting using ptrace()

First of all, I have to say, that this text is Linux specific and ANSI C programming and some ASM knowledge is required. In the past there have been various process injection techniques involving ptrace(), a few public as well as some private exploits, backdoors and other applications. We will take a detailed look at the ptrace() function and learn how to write our own backdoors. Author: Stefan Klaas Source: http://hakin9.org Hakin9 1/2007 What you will learn...
  • how to understand the ptrace() Systemcall,
  • how to use it to alter the execution flow of running programs by injecting your own instructions into its process memory, thus taking
Filed under: Articles - Tagged with: , , , , ,
Written By :
on : Monday, 1 Jan, 2007

Introduction to XPath Injection techniques

An XPath Injection attack involves employing manipulating XPath queries in certain ways in order to extract information from an XML database. It is a relatively new technique, which as one will be able to see further into the article, is similar to some degree to SQL injection attacks. Author: Jaime Blasco Source: http://hakin9.org Hakin9 1/2007 What you will learn...
  • how XML and XPath work,
  • how to employ XPath injection techniques to bypass safeguards in applications and extract information from XML databases.
What you should know...
  • the basics of C# (if you know Java it will take you no effort to learn this either),
  • how the HTTP protocol works.
Before we
Filed under: Articles - Tagged with: , , , ,
Written By :
on : Monday, 1 Jan, 2007

XSS – Cross-site scripting

Websites security has been a persistent and major concern ever since the Internet became an essential part of many people's lives. Injection of code into various parts of dynamic websites posess a dangerous, but also very interesting threat to security.
Written By :
on : Monday, 1 Jan, 2007

General Purpose Fuzzer (GPF)

GPF provides developers, security researchers, and quality assurance professionals the capability to quickly search for bugs/vulnerabilities in the exposed interface of networked applications. GPF uses captured packet sessions (pcap files) to construct a protocol description from real traffic. Author: Jared DeMott Source: 
Written By :
on : Monday, 1 Jan, 2007

Scanrand (part of Paketto Keiretsu)

Quick start. Let’s say you want to make quick network scan, check hosts available as well as services run on them. You can say: Hey, I’ve got nmap!. Nmap surely is the most popular tool for that. But where time
Written By :
on : Thursday, 2 Feb, 2006

Snort_inline as a solution

Using Snort_inline in many different environments and scenarios has proved to be a winning strategy to secure internal networks, DMZ networks or home networks. In order to work properly in the drop mode, it should adapt to the features of
Written By :
on : Wednesday, 1 Feb, 2006

IE plugins: BHOs and toolbars

The online advertisement industry has never been so prosperous and some people think it will continue to thrive the fi ve next year. One of the problem advertisers face is: how can they increase the ROI by targeting more users?
Written By :
on : Wednesday, 1 Feb, 2006

Security violation and policy enforcement with IDS and firewall

In this article, we will discuss how to detect security violation of a firewall policy using a Network Intrusion Detection System (NIDS) comparing in real time traffic on the outside with traffic on the inside and alerting if it’s contradicting
Written By :
on : Wednesday, 1 Feb, 2006

Hooking-oriented size disassembler for malware analysis

Day after day, malware researchers, forensic analysts or administrators have to face security threats on information systems. The objective can be to analyse unauthorised intrusions, to protect users from viruses, or to prevent a system from being compromised. To achieve
Written By :
on : Wednesday, 1 Feb, 2006

Steganos Security Suite 6

Steganos Security Suite 6 is a complete security package with different userfriendly tools for protecting PC combining encryption with steganography. Author: Carlos Ruiz Moreno Source: http://hakin9.org Hakin9 2/2006 Quick start. Let´s imagine you want to increase the security level in your Windows box, and
Written By :
on : Wednesday, 1 Feb, 2006

WS-DNS-BFX

WS-DNS-BFX extracts valid hosts from DNS servers that don't allow zone transfers. Support IPv4, IPv6, Threads and extract multiple IPs in servers with NLB, HA, etc. Author: Daniel de Oliveira Silva Source: http://hakin9.org Hakin9 2/2006 Quick start. Everybody knows that the first step in
Written By :
on : Sunday, 1 Jan, 2006

Can one fool application-layer fingerprinting?

Numerous tools exist which allow one to determine what service runs on some given port and what software provides it. Let us attempt to understand how they work, then ponder upon whether it would be possible (or easy) to trick
You are here: Home
Top