Immunity Debugger를 만드는 Immunity 사에서 Kernel Exploit 관련 자료들을 공유하고 있습니다. ^^)/~ 원문은 http://immunityinc.com/resources-papers.shtml 에서 보실 수 있습니다.
아직 보지 않아서 무슨 자료인지는 정확히 알 수 없지만, 제목만 훓어봐도 꽤 괜찮겠다 싶은 내용이 있더군요. 아래는 위 사이트에서 소개한 목차와 내용입니다.
완전 득템이군요. ^^;;; 그럼 즐거운 주말 보내시길~ ;)
아직 보지 않아서 무슨 자료인지는 정확히 알 수 없지만, 제목만 훓어봐도 꽤 괜찮겠다 싶은 내용이 있더군요. 아래는 위 사이트에서 소개한 목차와 내용입니다.
June 11, 2008: Exploiting Kernel Pool Overflows (Kostya Kortchinsky)
ODP
June 11, 2008: The I2OMGMT Driver Impersonation Attack (Justin Seitz)
PDF
ODT
March 28, 2008: The Hacker Strategy (updated for Harvard ABCD meeting)
PDF
February 29, 2008: IO Immunity Style (Sinan Eren)
PDF
January 26, 2008: The Hacker Strategy (S4 SCADA conference keynote)
PDF
January 22, 2008: Going Against The Gradient
PDF
OpenOffice
December 14, 2007: Beyond Fast Flux
OpenOffice (presentation)
PDF
November 23, 2007: Exploit Development with Immunity Debugger
OpenOffice (presentation)
August 10, 2007: Damian Gomez - Intelligent Debugging
PDF (presentation)
Openoffice (presentation)
July 6, 2007: Nicolas Waisman - Understanding and Bypassing Windows Heap Protection
PDF (presentation)
Openoffice (presentation)
July 6, 2007: Justine Aitel - The IPO of 0days
PDF (presentation)
Openoffice (presentation)
April 8, 2007: Dave Aitel - CANVAS Command Line Executer
Openoffice (paper)
April 8, 2007: Kostya Kortchinsky - Macro-Reliability in Win32 Exploits
Openoffice (presentation)
December 6, 2006: Dave Aitel - Remote Language Detection
Openoffice (paper)
August 30, 2006: Dave Aitel - MSRPC Fuzzing
OpenOffice (paper)
OpenOffice (presentation)
February 13, 2006: Dave Aitel - Resilience
PDF
OpenDocument
TGZ source
January 26, 2006: Dave Aitel - Nematodes (updated)
PDF
OpenDocument
VisualSploit Preliminary Flash Demo
September 29, 2005 Dave Aitel - Nematodes
OpenOffice PDF
May 9th, 2005 Dave Aitel - Practical IDS Evasion
OpenOffice
Feb, 28th, 2005 Bas Alberts - Exploiting the PHP_Limit bug
PDF
Jan 29, 2005 Dave Aitel - 0days: How hacking really works
Open Office PDF HTML
Oct 12, 2004 Dave Aitel - The CANVAS Reference Implementation
Open Office
Oct 12, 2004 Dave Aitel - Advanced Ordnance 2
Open Office PDF
August 12, 2004 Dave Aitel - Microsoft Windows, a lower Total Cost of Ownership
Open Office | PDF
June 21, 2004 Dave Aitel - Beyond Best Practices (Given at OWASP AppSec 2004)
Open Office
May 19, 2004 Dave Aitel - Rapid Application Development in Linux using pyGTK
Open Office
March 1, 2004 Dave Aitel - Enterprise Secific Software Security Issues:
Open Office
Feb 4, 2003 The Advantages of Block-Based Protocol Analysis for Security Testing:
Open Office | HTML | Text | Post Script | PDF
July 29, 2002 Using SPIKE 101
Power Point | Real Media
Feb 24, 2003 - Vivisection of an Exploit Development Process
Power Point | Real Media
May 1, 2003 - Windows Exploitation for Unix Hackers
Power Point
Sep 29, 2003 - MOSDEF
Power Point
Jan 27, 2004 - Advanced MOSDEF
Open Office
March 1, 2003 Nicolas Waisman - Linux Heap Overflow Techniques
Power Point
Sep 12, 2003 Microsoft Heap Overflows I/II
PDF | Open Office
Sep 12, 2003 Microsoft Heap Overflows II/II
PDF | Open Office
ODP
June 11, 2008: The I2OMGMT Driver Impersonation Attack (Justin Seitz)
ODT
March 28, 2008: The Hacker Strategy (updated for Harvard ABCD meeting)
February 29, 2008: IO Immunity Style (Sinan Eren)
January 26, 2008: The Hacker Strategy (S4 SCADA conference keynote)
January 22, 2008: Going Against The Gradient
OpenOffice
December 14, 2007: Beyond Fast Flux
OpenOffice (presentation)
November 23, 2007: Exploit Development with Immunity Debugger
OpenOffice (presentation)
August 10, 2007: Damian Gomez - Intelligent Debugging
PDF (presentation)
Openoffice (presentation)
July 6, 2007: Nicolas Waisman - Understanding and Bypassing Windows Heap Protection
PDF (presentation)
Openoffice (presentation)
July 6, 2007: Justine Aitel - The IPO of 0days
PDF (presentation)
Openoffice (presentation)
April 8, 2007: Dave Aitel - CANVAS Command Line Executer
Openoffice (paper)
April 8, 2007: Kostya Kortchinsky - Macro-Reliability in Win32 Exploits
Openoffice (presentation)
December 6, 2006: Dave Aitel - Remote Language Detection
Openoffice (paper)
August 30, 2006: Dave Aitel - MSRPC Fuzzing
OpenOffice (paper)
OpenOffice (presentation)
February 13, 2006: Dave Aitel - Resilience
OpenDocument
TGZ source
January 26, 2006: Dave Aitel - Nematodes (updated)
OpenDocument
VisualSploit Preliminary Flash Demo
September 29, 2005 Dave Aitel - Nematodes
OpenOffice PDF
May 9th, 2005 Dave Aitel - Practical IDS Evasion
OpenOffice
Feb, 28th, 2005 Bas Alberts - Exploiting the PHP_Limit bug
Jan 29, 2005 Dave Aitel - 0days: How hacking really works
Open Office PDF HTML
Oct 12, 2004 Dave Aitel - The CANVAS Reference Implementation
Open Office
Oct 12, 2004 Dave Aitel - Advanced Ordnance 2
Open Office PDF
August 12, 2004 Dave Aitel - Microsoft Windows, a lower Total Cost of Ownership
Open Office | PDF
June 21, 2004 Dave Aitel - Beyond Best Practices (Given at OWASP AppSec 2004)
Open Office
May 19, 2004 Dave Aitel - Rapid Application Development in Linux using pyGTK
Open Office
March 1, 2004 Dave Aitel - Enterprise Secific Software Security Issues:
Open Office
Feb 4, 2003 The Advantages of Block-Based Protocol Analysis for Security Testing:
Open Office | HTML | Text | Post Script | PDF
July 29, 2002 Using SPIKE 101
Power Point | Real Media
Feb 24, 2003 - Vivisection of an Exploit Development Process
Power Point | Real Media
May 1, 2003 - Windows Exploitation for Unix Hackers
Power Point
Sep 29, 2003 - MOSDEF
Power Point
Jan 27, 2004 - Advanced MOSDEF
Open Office
March 1, 2003 Nicolas Waisman - Linux Heap Overflow Techniques
Power Point
Sep 12, 2003 Microsoft Heap Overflows I/II
PDF | Open Office
Sep 12, 2003 Microsoft Heap Overflows II/II
PDF | Open Office
완전 득템이군요. ^^;;; 그럼 즐거운 주말 보내시길~ ;)
'Windows System Application' 카테고리의 다른 글
| 숨어있는 드라이버를 찾아내는 방법 (0) | 2008.08.30 |
|---|---|
| 아아~ 간만에 또 키보드 마우스 필터 드라이버 소스를 손봤습니다. ^^;;;; (3) | 2008.08.29 |
| 드디어 가상 HID 드라이버(Virtual HID Driver)가 동작했습니다. ㅜ_ㅜ)/~!!! (50) | 2008.06.08 |
| 가상 HID(Virtual HID)관련 작업이 예상보다 많이 늦어지고 있습니다. ㅜ_ㅜ (2) | 2008.06.04 |
| 가상 HID(Virtual HID) 작업중입니다. @0@ (4) | 2008.06.03 |