Windows System Application
Kernel Exploit 관련 자료들
kkamagui(까마귀, 한승훈)
2008. 6. 15. 12:29
Immunity Debugger를 만드는 Immunity 사에서 Kernel Exploit 관련 자료들을 공유하고 있습니다. ^^)/~ 원문은 http://immunityinc.com/resources-papers.shtml 에서 보실 수 있습니다.
아직 보지 않아서 무슨 자료인지는 정확히 알 수 없지만, 제목만 훓어봐도 꽤 괜찮겠다 싶은 내용이 있더군요. 아래는 위 사이트에서 소개한 목차와 내용입니다.
완전 득템이군요. ^^;;; 그럼 즐거운 주말 보내시길~ ;)
아직 보지 않아서 무슨 자료인지는 정확히 알 수 없지만, 제목만 훓어봐도 꽤 괜찮겠다 싶은 내용이 있더군요. 아래는 위 사이트에서 소개한 목차와 내용입니다.
June 11, 2008: Exploiting Kernel Pool Overflows (Kostya Kortchinsky)
ODP
June 11, 2008: The I2OMGMT Driver Impersonation Attack (Justin Seitz)
PDF
ODT
March 28, 2008: The Hacker Strategy (updated for Harvard ABCD meeting)
PDF
February 29, 2008: IO Immunity Style (Sinan Eren)
PDF
January 26, 2008: The Hacker Strategy (S4 SCADA conference keynote)
PDF
January 22, 2008: Going Against The Gradient
PDF
OpenOffice
December 14, 2007: Beyond Fast Flux
OpenOffice (presentation)
PDF
November 23, 2007: Exploit Development with Immunity Debugger
OpenOffice (presentation)
August 10, 2007: Damian Gomez - Intelligent Debugging
PDF (presentation)
Openoffice (presentation)
July 6, 2007: Nicolas Waisman - Understanding and Bypassing Windows Heap Protection
PDF (presentation)
Openoffice (presentation)
July 6, 2007: Justine Aitel - The IPO of 0days
PDF (presentation)
Openoffice (presentation)
April 8, 2007: Dave Aitel - CANVAS Command Line Executer
Openoffice (paper)
April 8, 2007: Kostya Kortchinsky - Macro-Reliability in Win32 Exploits
Openoffice (presentation)
December 6, 2006: Dave Aitel - Remote Language Detection
Openoffice (paper)
August 30, 2006: Dave Aitel - MSRPC Fuzzing
OpenOffice (paper)
OpenOffice (presentation)
February 13, 2006: Dave Aitel - Resilience
PDF
OpenDocument
TGZ source
January 26, 2006: Dave Aitel - Nematodes (updated)
PDF
OpenDocument
VisualSploit Preliminary Flash Demo
September 29, 2005 Dave Aitel - Nematodes
OpenOffice PDF
May 9th, 2005 Dave Aitel - Practical IDS Evasion
OpenOffice
Feb, 28th, 2005 Bas Alberts - Exploiting the PHP_Limit bug
PDF
Jan 29, 2005 Dave Aitel - 0days: How hacking really works
Open Office PDF HTML
Oct 12, 2004 Dave Aitel - The CANVAS Reference Implementation
Open Office
Oct 12, 2004 Dave Aitel - Advanced Ordnance 2
Open Office PDF
August 12, 2004 Dave Aitel - Microsoft Windows, a lower Total Cost of Ownership
Open Office | PDF
June 21, 2004 Dave Aitel - Beyond Best Practices (Given at OWASP AppSec 2004)
Open Office
May 19, 2004 Dave Aitel - Rapid Application Development in Linux using pyGTK
Open Office
March 1, 2004 Dave Aitel - Enterprise Secific Software Security Issues:
Open Office
Feb 4, 2003 The Advantages of Block-Based Protocol Analysis for Security Testing:
Open Office | HTML | Text | Post Script | PDF
July 29, 2002 Using SPIKE 101
Power Point | Real Media
Feb 24, 2003 - Vivisection of an Exploit Development Process
Power Point | Real Media
May 1, 2003 - Windows Exploitation for Unix Hackers
Power Point
Sep 29, 2003 - MOSDEF
Power Point
Jan 27, 2004 - Advanced MOSDEF
Open Office
March 1, 2003 Nicolas Waisman - Linux Heap Overflow Techniques
Power Point
Sep 12, 2003 Microsoft Heap Overflows I/II
PDF | Open Office
Sep 12, 2003 Microsoft Heap Overflows II/II
PDF | Open Office
ODP
June 11, 2008: The I2OMGMT Driver Impersonation Attack (Justin Seitz)
ODT
March 28, 2008: The Hacker Strategy (updated for Harvard ABCD meeting)
February 29, 2008: IO Immunity Style (Sinan Eren)
January 26, 2008: The Hacker Strategy (S4 SCADA conference keynote)
January 22, 2008: Going Against The Gradient
OpenOffice
December 14, 2007: Beyond Fast Flux
OpenOffice (presentation)
November 23, 2007: Exploit Development with Immunity Debugger
OpenOffice (presentation)
August 10, 2007: Damian Gomez - Intelligent Debugging
PDF (presentation)
Openoffice (presentation)
July 6, 2007: Nicolas Waisman - Understanding and Bypassing Windows Heap Protection
PDF (presentation)
Openoffice (presentation)
July 6, 2007: Justine Aitel - The IPO of 0days
PDF (presentation)
Openoffice (presentation)
April 8, 2007: Dave Aitel - CANVAS Command Line Executer
Openoffice (paper)
April 8, 2007: Kostya Kortchinsky - Macro-Reliability in Win32 Exploits
Openoffice (presentation)
December 6, 2006: Dave Aitel - Remote Language Detection
Openoffice (paper)
August 30, 2006: Dave Aitel - MSRPC Fuzzing
OpenOffice (paper)
OpenOffice (presentation)
February 13, 2006: Dave Aitel - Resilience
OpenDocument
TGZ source
January 26, 2006: Dave Aitel - Nematodes (updated)
OpenDocument
VisualSploit Preliminary Flash Demo
September 29, 2005 Dave Aitel - Nematodes
OpenOffice PDF
May 9th, 2005 Dave Aitel - Practical IDS Evasion
OpenOffice
Feb, 28th, 2005 Bas Alberts - Exploiting the PHP_Limit bug
Jan 29, 2005 Dave Aitel - 0days: How hacking really works
Open Office PDF HTML
Oct 12, 2004 Dave Aitel - The CANVAS Reference Implementation
Open Office
Oct 12, 2004 Dave Aitel - Advanced Ordnance 2
Open Office PDF
August 12, 2004 Dave Aitel - Microsoft Windows, a lower Total Cost of Ownership
Open Office | PDF
June 21, 2004 Dave Aitel - Beyond Best Practices (Given at OWASP AppSec 2004)
Open Office
May 19, 2004 Dave Aitel - Rapid Application Development in Linux using pyGTK
Open Office
March 1, 2004 Dave Aitel - Enterprise Secific Software Security Issues:
Open Office
Feb 4, 2003 The Advantages of Block-Based Protocol Analysis for Security Testing:
Open Office | HTML | Text | Post Script | PDF
July 29, 2002 Using SPIKE 101
Power Point | Real Media
Feb 24, 2003 - Vivisection of an Exploit Development Process
Power Point | Real Media
May 1, 2003 - Windows Exploitation for Unix Hackers
Power Point
Sep 29, 2003 - MOSDEF
Power Point
Jan 27, 2004 - Advanced MOSDEF
Open Office
March 1, 2003 Nicolas Waisman - Linux Heap Overflow Techniques
Power Point
Sep 12, 2003 Microsoft Heap Overflows I/II
PDF | Open Office
Sep 12, 2003 Microsoft Heap Overflows II/II
PDF | Open Office
완전 득템이군요. ^^;;; 그럼 즐거운 주말 보내시길~ ;)