Most Viewed
{LANG_NAVORIGIN} >
Most Viewed
102465 Views
NetCat Tutorial
{LANG_NAVORIGIN} Security Tools
Throughout this tutorial, I will be giving examples on Linux systems. The official Netcat homepage makes no reference to Windows systems, however I have successfully built Netcat from source under Cygwin, and you can find a Win32 copy built by ‘@Stake’ and all examples used below are fully supported under Windows.
By: Adam Palmer, 06/13/2005
98276 Views
Demystifying Google Hacks
{LANG_NAVORIGIN} Exploits
Google is the world’s most popular and powerful search engine. It has the ability to accept pre-defined commands as inputs which then produces unbelievable results. I have been thinking of publishing this paper since long time but due to lack of time I was not able to complete it. I use to add and keep this paper updated when I get tired of my daily research work. I shall also discuss about Google’s advance syntaxes and how it can be used as a tool for critical information digging.
65236 Views
SQL Injection Attack and Defense
{LANG_NAVORIGIN} Exploits SQL Injection
This paper focuses on educating the security professionals with the risks associated with this situation and tries to give brief understanding of various kinds of attacks that attacker may launch and outline of various strategies that can be evaluated and adopted to protect the valuable information assets.
By: Sagar Joshi, 09/23/2005
61731 Views
Implementing and Maintaining AIX Security Policies
{LANG_NAVORIGIN} Operating System
This paper is meant to serve as an introductory guide to the basic security and server hardening functions present in AIX. Many of the features and functions shown throughout this guide are applicable to AIX 4.3 and above, but are more directed toward AIX 5.2. Since security is and will always remain a major issue in server environments, it is crucial that system administrators have a strong working knowledge of security policy implementation and hardening features. This knowledge can be applied to new systems, or to bring older systems up to date.
57824 Views
Introduction to Netstat Tutorial
{LANG_NAVORIGIN} Security Tools
Netstat is a versatile tool catered for the windows platform by means of the MS-DOS (now a days referred to as "Command Prompt") command line. Netstat is also used in other platforms and operating systems apart from Windows such as Unix and Linux. In the following thesis I will demonstrate the security-oriented uses for this basic DOS and bash command designed for the newbie.
By: LearnSecurityOnline, 05/25/2005
50849 Views
How to Setup Password-less SSH Using Public - Private Keys
{LANG_NAVORIGIN} Encryption SSH
This HOWTO is a step-by-step guide for configuring and using password-less SSH service on Linux systems and is intended for a technical audience, Linux system administrators and security people in corporations and organizations that want to use password-less SSH service on their Linux systems.
By: Emre Celebi, 06/15/2005
39575 Views
Shell Script Programming
{LANG_NAVORIGIN} Operating System Linux
There is only one thing you must have in a shell script and that's a line specifying what interpreter is to be used to interpret this script. This begins with the symbols #! and is followed by the full path to the interpreter, this will usually be "/bin/bash" for bash scripts and "/bin/sh" for bourne shell scripts. Some system administrators may install bash elsewhere ("/usr/local/bin" is common) you can find out where by typing "which bash". So basically the first line of the script should be "#!/bin/bash". In order to run the script you must first give it execute permissions, this is done by typing "chmod u+x scriptname", you only need to do this once per script.
By: Colin Sauze, 07/02/2005
37763 Views
Experiences with Password Policies
{LANG_NAVORIGIN} Security Policies
This article has been written based on my own experiences while performing penetration testing and security audits for large and small organizations domestic and abroad. This article is targeted at providing a better understanding of the weaknesses that often surrounds the choice and change of passwords on both administrative and technical levels, and gives ideas on how to reduce such risks.
By: Per Thorsheim , 06/30/2005
36157 Views
The Administrator Shortcut Guide to Active Directory Security Chapter 3
{LANG_NAVORIGIN} Operating System Microsoft
Before we dive into who will manage GPOs—we will tackle the details of controlling the management of GPOs in the next chapter—we must first establish a foundation of knowledge by exploring the basics of GPOs. One of the most important aspects of a GPO is its ability to control security for user and computer accounts in the domain. A GPO has almost 1000 policy settings. The security settings are spread throughout the structure of the GPO, so simply finding a specific GPO setting can be a daunting task. This chapter will lay out the structure of a GPO, indicating where the essential security policies reside, allowing you to efficiently find the settings that you need.
By: Derek Melber, Dave Kearns, and Beth Sheresh, 04/14/2005
32110 Views
The Administrator Shortcut Guide to Active Directory Security Chapter 2
{LANG_NAVORIGIN} Operating System Microsoft
The security that you design for AD must be implemented properly to be effective. Failure to follow your design documents can leave AD vulnerable to attacks from both within and outside of the LAN. In addition, AD security is very difficult to audit and track if not set up properly. In some cases, it will be easier to start over rather than to attempt to secure the AD environment after it has been installed and configured with many objects, settings, and features.
By: Derek Melber, Dave Kearns, and Beth Sheresh, 04/06/2005
30769 Views
Laptop Security
{LANG_NAVORIGIN} Disaster Recovery Physical Security
This paper discusses about the various threats to laptops with respect to physical security, information security and wireless security domains. The threats are followed by suggested countermeasures which would help in reducing laptop security compromise. The suggestions made in this paper have been researched from various valid resources and security reports. Towards the end of this paper, we have included an example of organizational security policy for laptops used in an organization.
By: Ramanujam Narasimman , 06/23/2005
28284 Views
Low-Level Enumeration With TCP/IP
{LANG_NAVORIGIN} Vulnerability Management Auditing
We've all used most of the popular stealth scanning techniques out there right now. Tools such as nmap are excellent for enumerating remote hosts with increasingly complex techniques. The only problem being most of the nmap users out there do not take the time to find out exactly what is going on behind the scenes to make these scans work. In the following paragraphs I will attempt to explain the theory and concept behind many of today's advanced scanning techniques, and try to show you what is going on behind the scenes with them.
By: Randy Williams, 02/16/2005
26110 Views
SQL Injection, Are Your Web Applications Vulnerable?
{LANG_NAVORIGIN} Exploits SQL Injection
The objective of this paper is to educate the professional security community on the techniques that can be used to take advantage of a web application that is vulnerable to SQL injection, and to make clear the correct mechanisms that should be put in place to protect against SQL injection and input validation problems in general.
By: SPI Dynamics, Inc., 10/29/2004
25229 Views
Blind SQL Injection
{LANG_NAVORIGIN} Exploits SQL Injection
Let’s talk first about plain, old-fashioned, no-frills SQL injection. This is a hacking method that allows an unauthorized attacker to access a database server. It is facilitated by a common coding blunder: the program accepts data from a client and executes SQL queries without first validating the client’s input. The attacker is then free to extract, modify, add, or delete content from the database. In some circumstances, he may even penetrate past the database server and into the underlying operating system.
By: Kevin Spett, 10/26/2004
24656 Views
Cross Site Scripting (XSS) FAQ
{LANG_NAVORIGIN} Exploits
XSS vulnerabilities have been found in all sorts of websites including fbi.gov, yahoo.com, ebay.com and many other popular and important websites. This paper details XSS attacks and hopes to educate you on what they are, how attackers use them and of course how you can prevent them from happening.
By: Chris Morganti, 07/20/2005
23894 Views
Diffie-Hellman Key Exchange - A Non-Mathematician's Explanation
{LANG_NAVORIGIN} Encryption
A colleague recently asked if I could help him understand the Diffie-Hellman key exchange protocol? without digging through the math. My answer was "Yes I can, but not easily." Doing so requires a few diagrams because, in this particular case, a picture is worth at least a thousand words!
23316 Views
Advanced Topics in Shell Scripting
{LANG_NAVORIGIN} Operating System Linux
This article focuses on more advanced topics in shell scripting including a number of common utilities which can help you write more versatile shell scripts.
By: Colin Sauze, 07/28/2005
23280 Views
Introduction to Nessus Tutorial
{LANG_NAVORIGIN} Security Tools Nessus
This tutorial covers the basic installation, configuration, and usage of Nessus. Nessus is released under the GPL and is designed to automate the testing and discovery of known security problems. Allowing system administrators to correct problems before they are exploited.
23250 Views
Global war on local Administrator
{LANG_NAVORIGIN} Operating System Microsoft Windows 2000 and NT
Securing local administrator account
By: Sergey V. Gordeychik, 07/22/2004
22769 Views
Session Hijacking Packet Analysis
{LANG_NAVORIGIN} Exploits
TCP session hijacking is a very dangerous attack vector because most systems are vulnerable to it, as most systems use TCP/IP as their primary communication protocol. Newer operating systems have attempted to secure themselves from session hijacking by using pseudo-random number generators to calculate the Initial Sequence Number, making it harder to guess. Any security measure in randomly generating an ISN is ineffective if the attacker is able to sniff ACK packets, as they give all the information required to perform this attack.
By: Lee Lawson, 07/25/2005
22652 Views
Malicious Codes in Depth
{LANG_NAVORIGIN} Malicious Code
Malicious code refers to a broad category of software threats to your network and systems. Perhaps the most sophisticated types of threats to computer systems are presented by malicious codes that exploit vulnerabilities in computer systems. Any code which modifies or destroys data, steals data , allows unauthorized access Exploits or damage a system, and does something that user did not intend to do, is called malicious code. This paper will briefly introduce you to the various types of malicious code you will encounter, including Viruses, Trojan horses, Logic bombs and Worms.
By: Mohammad Heidari, 11/29/2004
21252 Views
Snort for WinXP Installation Non-Enterprise Network
{LANG_NAVORIGIN} Intrusion Detection Snort
This setup procedure basically follows the instructions on Winsnort.com under Winsnort with Snortsnarf. As we all know all instruction is not complete and always leaves something out and what I have tried here is to clarify and expand on the setup. My goal is to make a simple to follow instruction by outlining each step until the setup is completed. Also, I made some changes in the configuration and added in other components (freesmtp and oinkmaster) to assist the administrator in operating the Winsnort.
By: Allen K. Yim, 11/15/2004
20896 Views
Threats to Enterprise Security
{LANG_NAVORIGIN} Enterprise Security
With attacks becoming more aggressive, faster, and multi-pronged, there is growing emphasis on consistent assessments, preventative measures, and security information management. No longer will an attack entail a single virus—often well-thought out assaults are being implemented. Simultaneously, organizations are exposing more systems that are effectively dissolving the boundaries between what have been considered internal and external threats. In addition, the need for IT groups to find new ways to do more with less are discovering ways to reuse legacy mainframe infrastructure. This recycling has, in turn, exposed more IT resources—such as mainframes that until recently have been considered very secure—to the same challenges faced by distributed systems.
By: Dan Sullivan, 04/18/2005
20508 Views
Foundation for Minimal Solaris 10 Systems
{LANG_NAVORIGIN} Operating System Solaris
The topic for this article is the Solaris 10 Reduced Networking Software Group (also commonly known as the Solaris 10 Reduced Networking Meta Cluster). This software group is new and joins the five existing software groups available in Solaris today: Core, End User, Developer, Entire and Entire + OEM software groups. The Reduced Networking Software Group is positioned as a subset of Core and represents the smallest amount of Solaris that can or should be installed and have a working and supported system.
20372 Views
Practical Threat Analysis for the Software Industry
{LANG_NAVORIGIN} Vulnerability Management Risk Assessment
This paper describes Practical Threat Analysis (PTA); a calculative threat modeling methodology and a CASE tool that assists software security analysts and software developers in assessing system risks and building the most effective risk reduction policy for their system.
