Section: .. / papers / general /
| /// File Name: |
VNSECON07-JA-Exploit_development.pd..> |
Description:
|
Whitepaper discussing how to speed up the exploit development process as presented at VNSECON07.
| | Author: | Jerome Athias | | File Size: | 1698766 | | Last Modified: | Aug 9 22:22:28 2007 |
| MD5 Checksum: | 06a895e8ac593460d4bfdf6ec7692a60 |
|
| /// File Name: |
vote.pdf |
Description:
|
Analysis of an Electronic Voting System - This paper describes several security flaws in Diebold electronic voting machines. Voters may be able to cast multiple ballots with little built in traceability, administrative functions can be performed by regular voters, and inside poll workers, software developers, and janitors can rig the vote. The smart card system is insecure and uses plaintext passwords. The code appears unaudited and there is no ability to do a paper recount.
| | Author: | Adam Stubblefield,Tadayoshi Kohno,Dan S. Wallach,Aviel D. Rubin | | File Size: | 244831 | | Last Modified: | Oct 31 14:21:22 2003 |
| MD5 Checksum: | 3b6981806063c69b646d789f3f009136 |
|
| /// File Name: |
votehack.txt |
Description:
|
Article about evidence mounting that the vote was hacked. The FBI has been called in to Florida.
| | Author: | Thom Hartmann | | Homepage: | http://CommonDreams.org | | File Size: | 14240 | | Last Modified: | Nov 10 01:49:51 2004 |
| MD5 Checksum: | 2c398b6336f2e2e0d98f62a2048297f1 |
|
| /// File Name: |
VT-belva-dekay-final.pdf |
Description:
|
Whitepaper titled "Creating Business Through Virtual Trust: How to Gain and Sustain a Competitive Advantage Using Information Security".
| | Author: | Kenneth F. Belva,Sam H. Dekay | | Homepage: | http://www.ftusecurity.com/ | | File Size: | 187709 | | Last Modified: | Aug 28 23:09:56 2006 |
| MD5 Checksum: | 7f6b399cf8ffbbe96ca5477648dc7c60 |
|
| /// File Name: |
vuln-trends.txt |
Description:
|
The primary goal of this whitepaper is to provide analysis that studies research trends using publicly reported vulnerabilities.
| | Author: | Steven M. Christey | | Homepage: | http://cwe.mitre.org/ | | File Size: | 77213 | | Last Modified: | Oct 8 23:02:12 2006 |
| MD5 Checksum: | 72c0a21ea7ec0241752f95032c5650bf |
|
| /// File Name: |
WASC-TC-v1_0.txt |
Description:
|
Whitepaper detailing the Threat Classification system for the Web Application Security Consortium. The Web Security Threat Classification is a cooperative effort to clarify and organize the threats to the security of a web site. The members of the Web Application Security Consortium have created this project to develop and promote industry standard terminology for describing these issues. Application developers, security professionals, software vendors, and compliance auditors will have the ability to access a consistent language for web security related issues.
| | Homepage: | http://www.webappsec.org | | File Size: | 118904 | | Last Modified: | Oct 7 00:18:31 2005 |
| MD5 Checksum: | 71a846da8ad5c8d4f051c2340114b530 |
|
| /// File Name: |
wasc_wass_2007.pdf |
Description:
|
The Web Application Security Consortium (WASC) is pleased to announce the WASC Web Application Security Statistics Project 2007. This initiative is a collaborative industry wide effort to pool together sanitized website vulnerability data and to gain a better understanding about the web application vulnerability landscape. The overall statistics includes analysis results of 32,717 sites and 69,476 vulnerabilities of different degrees of severity.
| | Homepage: | http://www.webappsec.org/ | | File Size: | 173892 | | Last Modified: | Sep 8 18:38:56 2008 |
| MD5 Checksum: | 86567ab3f61b08ab7690e05b87500656 |
|
| /// File Name: |
WebApp_Footprints_Disco.pdf |
Description:
|
White paper discussing web application footprints and discovery methodology for web servers hosting multiple web applications.
| | Author: | Shreeraj Shah | | Homepage: | http://www.net-square.com/ | | File Size: | 176061 | | Last Modified: | Feb 22 22:08:59 2005 |
| MD5 Checksum: | 82336e368c3d8dab95146586a8ffda39 |
|
| /// File Name: |
WebApp_HTTPMod.pdf |
Description:
|
Web Application Defense At The Gates - Leveraging IHttpModule. Whitepaper describing how the IHttpModule that comes with the .Net framework can be used to man-in-the-middle HTTP transactions in order to help filter against input validation attacks.
| | Author: | Shreeraj Shah | | Homepage: | http://www.net-square.com/ | | File Size: | 199513 | | Last Modified: | Mar 25 00:04:18 2005 |
| MD5 Checksum: | 4b2e7e176a2fc54e80924b01621117e7 |
|
| /// File Name: |
webhack.pdf |
Description:
|
Whitepaper discussing simple web hacking techniques.
| | Author: | Nikolaos Rangos | | File Size: | 193580 | | Last Modified: | Jul 28 11:18:01 2008 |
| MD5 Checksum: | 4d69db9891c1fa3cd11b93d5e1c50d34 |
|
| /// File Name: |
whitepaper_httpresponse.pdf |
Description:
|
Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics. This whitepaper discusses a new application attack technique and provides use cases.
| | Author: | Amit Klein | | File Size: | 297302 | | Last Modified: | Mar 4 18:07:00 2004 |
| MD5 Checksum: | a88cdaabfffc1297b09a899e0cadf9c1 |
|
| /// File Name: |
WIPv011.tgz |
Description:
|
Whitepaper giving an overview of a security assessment against Windows NT machines when penetration testing. Provides insight from both attacker and administrative perspectives.
| | Author: | Adrian Pastor aka pagvac | | File Size: | 740406 | | Last Modified: | Jan 26 23:29:09 2005 |
| MD5 Checksum: | 6c638d17610ae47a614b8c4765cfc7b1 |
|
| /// File Name: |
wiretap.pdf |
Description:
|
Signaling Vulnerabilities In Wiretapping Systems. This white paper discusses vulnerabilities and countermeasures that exist within commonly used wiretapping systems by the government.
| | Author: | Micah Sherr,Eric Cronin,Sandy Clark,Matt Blaze | | Homepage: | http://www.crypto.com/papers/wiretapping/ | | File Size: | 464443 | | Last Modified: | Dec 10 16:37:51 2005 |
| MD5 Checksum: | 60ff9fa476112db51624c46807aa29b8 |
|
| /// File Name: |
wmf-faq.txt |
Description:
|
A brief faq regarding the recent Microsoft Windows WMF vulnerability.
| | Author: | H D Moore | | File Size: | 3905 | | Last Modified: | Jan 8 00:13:49 2006 |
| MD5 Checksum: | c4aa0fb7f467b7586999221784a46bb7 |
|
| /// File Name: |
Writing_nasl_scripts.pdf |
Description:
|
Small whitepaper discussing Nessus and the functions related to writing NASL scripts along with some debugging tips.
| | Author: | Hemil Shah | | File Size: | 33273 | | Last Modified: | Jan 29 11:40:43 2007 |
| MD5 Checksum: | 36b024263ba35ed9530a0e4f24d249a9 |
|
| /// File Name: |
z4ck-book_final.pdf |
Description:
|
Z4CK is a cyber thriller which includes a gripping story line with an insight into realistic hacker tools and techniques. The main story is about a hacker who creates the ultimate security tool capable of breaching any network security. Other tools such as Nmap, Nessus, Hydra, and Netcat are also put to good use in this novel. The PDF is completely free to download.
| | Author: | Kev Milne | | Homepage: | http://www.z4ck.org | | Related File: | digiforce-isbn-0955292905.pdf | | File Size: | 1406687 | | Last Modified: | Jun 28 22:22:11 2006 |
| MD5 Checksum: | daa81c32eef55724ce130f8638bbcb2b |
|
| /// File Name: |
ZCsocksChainWin.txt |
Description:
|
Guide to Anonymity with MS-Windows. This little tutorial will explain step by step how to add support for socks chains to all your windows programs like telnet, ftp, irc, http, portscanners... (even if they don't support socks).
| | Author: | Zoa_chien | | File Size: | 6483 | | Last Modified: | May 22 18:20:04 2000 |
| MD5 Checksum: | ef3837f013583747982bf3e17bfb73a7 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
