IP Spoofing: An Introduction
Criminals have long employed the tactic of masking their true identity, from disguises to aliases to caller-id blocking. It should come as no surprise then, that criminals who conduct their nefarious activities on networks and computers should employ such techniques. IP spoofing is one of the most common forms of on-line camouflage. In IP spoofing, an attacker gains unauthorized access to a computer or a network by making it appear that a malicious message has come from a trusted machine by "spoofing" the IP address of that machine. In this article, we will examine the concepts of IP spoofing: why it is possible, how it works, what it is used for and how to defend against it.
Read the Article
|
Exploitation - Returning into libc
The intention of this article is not to teach you the in's and out's of buffer overflows, but to explain in a little detail another technique used to execute arbitrary code as opposed to the classic 'NOP sled + shellcode + repeated retaddr' method. I assume readers are familiar with buffer overflow vulnerabilities and the basics of how to exploit them. Also a little bit of the theory of memory organization is desirable, such as how the little-endian bit ordering system works. To those who are not familiar with buffer overflow bugs, I suggest you read "Smashing the Stack for Fun and Profit".
Read the Article
|
Adjacent Overwrite BUG
This article is meant to be presented as an informative, step by step log of exploiting an adjacent memory overflow. It is aimed at those who have buffer overflow experience, and hopefully have knowledge of the organization of the stack. An article has been posted in phrack magazine with a very good overview and introduction to this topic, I suggest you read that and use this text as a reference to theorys presented.
Read the Article
|
Buffer Overflow for Beginners
A starting point for this tutorial requires the readers to have a simple understanding of the C programming language, the way the stack and memory is organized, and asm knowledge is helpfull though not essential. (I always wanted to say that heh) When I refer to Buffer overflows throughout this article, I am refering to stack based overflows, there is a difference between stack based overflows, and heap based, though as your research progresses you will find that out.
Read the Article
|
Application Security: Attackers Won't Stop at the Firewall (Why should you?)
Kenneth Newman's presentation highlights what Application Security is about, what are bad applications and what makes them insecure. The presentation focuses on Application Security Framework, Application Security Integration & Application Security Awareness.
Read the Article
|
Remote Automatic Exploitation of Stack Overflows
The purpose of this paper is to prove that it is possible to remotely exploit hostile enviroments without having any idea of what the server-side software sources are.
Read the Article
|
Stack Overflows
Covers a vulnerability commonly found in the wild: the stack overflow. Explains and provides examples of stack overflows.
Read the Article
|
CASR - ACAT: PHP TopSites Vulnerability Report
The purpose of this document is to show several vulnerabilities and provide fixes for the PHP TopSites Pro/Free script. This report is published for educational purposes only. The authors take no responsibility for damage resulting from the misuse of this information. All copyrights are retained by the authors. This information may not be reproduced without prior written consent from the authors.
Read the Article
|
Format String Attacks
These slides show a picture of what's happening on the stack during such an attack.
Read the Article
|
Improving the Security of Your Site by Breaking Into it
*The early '90s perspective* "In this paper we will take an unusual approach to system security. Instead of merely saying that something is a problem, we will look through the eyes of a potential intruder, and show why it is one..."
Read the Article
|
