Computer security issues and links
Shields up
https://grc.com/x/ne.dll?bh0bkyd2
security issues and patches
http://grc.com/default.htm
Stay Invisible free proxy
servers
http://www.stayinvisible.com/
"Improving the Security
of Your Site by Breaking Into It."
http://www.alw.nih.gov/Security/Docs/admin-guide-to-cracking.101.html
There are approximately
1500 complete or partial security related books listed in this listing.
http://www.infosyssec.com/infosyssec/onlinebooks1.htm
The Anonymizer. A site that offers free anonymous surfing. The application acts as a middleman between you and the sites you surf. Basically, it is a more complex proxying service. It allows chaining as well, and your IP is stripped from their logs. http://www.anonymizer.com/
"Persistent Client State
HTTP Cookies," can be found at
http://home.netscape.com/newsref/std/cookie_spec.html
Cookie Jar - cookie filtering
http://www.lne.com/ericm/cookie_jar/.
Purdue University
http://www.cs.purdue.edu//coast/archive/
Raptor Systems
http://www.raptor.com/library/library.html
The Risks Forum
http://catless.ncl.ac.uk/Risks
FIRST
http://www.first.org/
DEFCON
http://www.defcon.org/
Intel v. Randal Schwartz:
Why Care
http://www.lightlink.com/spacenka/fors/intro.html
The Internet Engineering
Task Force (IETF)
http://www.ietf.cnri.reston.va.us/
Computer Attacks at Department
of Defense
http://www.securitymanagement.com/library/000215.html
titled A Circumlocuitous
review of Takedown
http://rom.oit.gatech.edu/~willday/mitnick/takedown.review.html
A database of vulnerabilities
http://www.cert.org
CERT's reports covers break ins
http://www.cert.org/cert.report.95.html
Dan Farmer's security survey at
http://www.trouble.org/survey.
study paper for a user new to security.
http://www.net.ohio-state.edu/hypertext/rfc1244/toc.html
The National Computer Security
Association (NCSA)
http://www.isrecon.ncsa.com/public/faq/isrfaq.htm.
http://www.isrecon.ncsa.com/docz/Brochure_Pages/effect.htm.
Anonymous remailers FAQ
http://www.well.com/user/abacard/remail.html.
http://www.cs.berkeley.edu/~raph/remailer-list.html.
Microsoft page that addresses the security features of ActiveX
http://www.microsoft.com/security/
Digital signatures for
ActiveX controls
http://www.packet.com/packet/garfinkel/
The ultimate list of the
world's IRC servers can be found at
http://www.webmaster.com/webstrands/resources/irc/
learning about various
viruses
http://ciac.llnl.gov/ciac/CIACVirusDatabase.html
All About Viruses by Dr.
Alan Solomon can be found at
http://www.drsolomon.com/vircen/allabout.html.
Anyone concerned with viruses
http://www.drsolomon.com/
"The Bulgarian and Soviet
Virus Factories";
http://www.drsolomon.com/ftp/papers/factory.txt.
Information on the AOLGOLD Trojan Program" at
http://www.emergency.com/aolgold.htm.
Information about the PC CYBORG (AIDS) Trojan Horse" at
http://www.sevenlocks.com/CIACA-10.htm.
"Top Master Boot Record/Boot
Sector Infecting Viruses,"
http://www.mcafee.com/support/techdocs/vinfo/1101.html.
Read the official advisory on the Ping of Death at
http://www.microsoft.com/kb/articles/q132/4/70.htm.
If you are interested in
cancel techniques (against spamers)
http://www.math.uiuc.edu/~tskirvin/home/rfc1036b.
The FAQ about cancel messages is at
http://www.lib.ox.ac.uk/internet/news/faq/archive/usenet.cancel-faq.part1.html.
Large numbers of corporate
sites could be cracked
http://www.trouble.org/survey/.
Internet warfare.
http://www.fas.org/irp/wwwinfo.html.
Traceroute gateway at
http://www.beach.net/traceroute.html.
The Netscan Tools suite is shareware and is available at
http://www.eskimo.com/~nwps/index.html.
You can find Network Toolbox at
http://www.jriver.com/netbox.html.
MacTCP Watcher
http://www.share.com/share/peterlewis/mtcpw/
Get Query It! at
http://www.cyberatl.net/~mphillip/index.html
WhatRoute is a freeware
program and is available at
http://homepages.ihug.co.nz/~bryanc/
For those interested in
studying the fine points of TCP/IP
http://204.56.55.10/Education/WhitePapers/tcpip/tcpip.htm.
You can find a copy of
Strobe
http://sunsite.kth.se/Linux/system/Network/admin/
You can obtain your copy
of SATAN
http://www.fish.com
Obtain a copy of Jakal
http://www.giga.or.at/pub/hacker/unix
Obtain a copy of IdentTCPscan
http://www.giga.or.at/pub/hacker/unix
CONNECT
http://www.giga.or.at/pub/hacker/unix/
Obtain a copy of FSPScan
http://www.giga.or.at/pub/hacker/unix
Obtain a copy of XSCAN
http://www.giga.or.at/pub/hacker/unix.
SAFEsuite can help you
to quickly design safe network topology.
http://ISS
MacKrack v2.01b1. It is
available at
http://www.borg.com/~docrain/mac-hack.html
Cyber-Rights & Cyber-Liberties
(UK) at
http://www.leeds.ac.uk/law/pgs/yaman/cryptog.htm
Wordlists
http://sdg.ncsa.uiuc.edu/~mag/Misc/Wordlists.html
http://www.cs.purdue.edu/coast/
CrackerJack is widely available
Here are a few reliable sites:
http://www.fc.net/phrack/under/misc.html
http://www.ilf.net/~toast/files/
http://www.paranoia.com/~steppin/misc.html
http://www.interware.net/~jcooper/cracks.htm
http://globalkos.org/files.html
PaceCrack95
http://tms.netrom.com/~cassidy/crack.htm.
Qcrack
http://lix.polytechnique.fr/~delaunay/bookmarks/linux/qcrack.html
http://klon.ipr.nl/underground/underground.html
http://tms.netrom.com/~cassidy/crack.htm
The DOS version of John
the Ripper
http://tms.netrom.com/~cassidy/crack.htm.
Pcrack
http://tms.netrom.com/~cassidy/crack.htm
Star Cracker is available
at
http://citus.speednet.com.au/~ramms/
Killer Cracker can be obtained at these locations:
http://hack.box.sk/stuff/linux1/kc9.zip
(DOS 16 bit)
http://hack.box.sk/stuff/linux1/kc9_32.zip
(DOS 32 bit)
http://www.ilf.net/Toast/files/unix/kc9_11.tgz
(UNIX)
http://www.netaxs.com/~hager/mac/hack/KillerCrackerv8.sit.bin
(Mac)
Hellfire Cracker
http://www.ilf.net/~toast/files/.
XIT
http://www.ilf.net/~toast/files/xit20.zip
Claymore
http://www.ilf.net/~toast/files/claym10.zip
PC UNIX Cracker can be found at
http://www.ilf.net/~toast/files/pwcrackers/pcupc201.zip.
Glide is available at these
locations:
http://www.iaehv.nl/users/rvdpeet/unrelate/glide.zip
http://hack.box.sk/stuff/glide.zip
http://www.ilf.net/~toast/files/pwcrackers/glide.zip
ATP--Anti-Tampering Program can be found at
http://www.cryptonet.it/docs/atp.html.
Encryption and Checksum
Specifications." Connected: An Internet Encyclopedia.
http://www.freesoft.org/Connected/RFC/1510/69.html
ETHLOAD sniffer
http://www.med.ucalgary.ca:70/1/ftp/dos/regular
http://www.apricot.co.uk/ftp/bbs/atsbbs/allfiles.htm
Sunsniff is available at
www.catch22.com/Twilight.NET/phuncnet/hacking/proggies/sniffers/
http://mygale.mygale.org/08/datskewl/elite/
http://hacked-inhabitants.com/warez/SUNSNIFF.C
Products by ANS Communications are designed to thwart DoS attacks. ANS Communications
can be found online at http://www.ans.net/InterLock/
Berkeley Software Design, Inc. released source code that will defeat a DoS attack. It can be found online at http://www.bsdi.com/press/19961002.html
MCI Security offers links
relating to denial-of-service attacks, and can be found online at
http://www.security.mci.net/dosalert.html
Digital offers information on preventing DoS on the DEC platform, and can be found online at http://www.europe.digital.com/info/internet/document/ias/avoidtcpsynattack.html
Cisco Systems offers solutions
at the router level, and can be found online at
http://www.cisco.com/
For information about some commonly known sendmail holes, check out http://info.pitt.edu/HOME/Security/pitt-advisories/95-05-sendmail-vulnerabilities.html and http://www.crossroads.fi/~tkantola/hack/unix/sendmail.txt.
"Test-CGI Vulnerability
in Certain Setups" online at
http://www.sec.de/sec/bug.testcgi.
Amiecod--This small utility
is very reliable. It will retrieve the password last used on a motherboard sporting
an American Megatrends BIOS. See the following:
http://www.iaehv.nl/users/rvdpeet/unrelate/amidecod.zip
Ami.com--Identical in functionality
to the Amiecod, this tool will retrieve an AMI CMOS password. See the following:
http://www.iaehv.nl/users/rvdpeet/unrelate/ami.zip
Aw.com--This utility will retrieve (or recover) the password used on any board sporting an Award BIOS. See the following: http://www.iaehv.nl/users/rvdpeet/unrelate/aw.zip
You can find the authoritative
sources for information on Word macro viruses at these locations:
http://www.datafellows.com/macro/faq.html
http://gasp.berkeley.edu/virus/wordmacro.html
Dump ACL (which incidentally
has a shareware version) is probably the most important tool for a new NT administrator.
Its function is simple: It gathers all permissions on the box and displays them
in consolidated format. By analyzing this data, a system administrator can quickly
find misconfigurations, bad privilege schemes, and security holes. The analysis
provided by this tool is comprehensive, treating all permissions and privileges
on files and directories. It also reports various audit settings. In essence,
this is a start of a great security profile, saving the administrator hours
of work and providing the output in convenient, table format.This tool, created
by Somar Software, is available at the following location:
http://www.net-shopper.co.uk/software/nt/dmpacl/index.htm
The Secure HyperText Transfer
Protocol
http://www.eit.com/creations/s-http/draft-ietf-wts-shttp-00.txt
Protection of TCP/IP Based
Network
http://www.security.mci.net/check.html.
An Attack Against the NetWare
Login Protocol
http://geek-girl.com/bugtraq/1996_3/0530.html.
Shockwave Can Read User's
Email
http://www.webcomics.com/shockwave/
http://www.ntsecurity.net/
An Evening With Berferd In Which a Cracker is Lured, Endured and Studied" online at ftp://research.att.com/dist/internet_security/berferd.ps
Security Breaches: Five Recent Incidents at Columbia University" can be found online at http://www.alw.nih.gov/Security/FIRST/papers/general/fuat.ps.
UNIX Incident Guide How to Detect an Intrusion. http://ciac.llnl.gov/ciac/documents/CIAC-2305_UNIX_Incident_Guide_How_to_Detect_an_Intrusion.pdf
Java Security
http://www.swiss.ai.mit.edu/~jbank/javapaper/javapaper.html
General Accounting Office:
Information Security: Computer Attacks at Department of Defense Pose Increasing
Risks. A report on failed security at U.S. Defense sites.
http://www.epic.org/security/GAO_OMB_security.html
The Evaluated Products List (EPL). This is a list of products that have been evaluated for security ratings based on DoD guidelines. http://www.radium.ncsc.mil/tpep/epl/index.html
InterNIC (the Network Information Center). InterNIC provides comprehensive databases on networking information. These databases contain the larger portion of collected knowledge on the design and scope of the Internet. Of main importance here is the database of RFC documents. http://ds0.internic.net/ds/dspg1intdoc.html
The Rand Corporation. This site contains security resources of various sorts as well as engrossing early documents on the Internet's design. http://www.rand.org/publications/electronic/
Connected: An Internet Encyclopedia. This is an incredible online resource for RFC documents and related information, painstakingly translated into HTML. http://www.freesoft.org/Connected/RFC/826/
The Computer Emergency
Response Team (CERT). CERT is an organization that assists sites in responding
to network security violations, break-ins, and so forth. This is a great source
of information, particularly for vulnerabilities.
http://www.cert.org
Dan Farmer: Security Survey of Key Internet Hosts and Various Semi-Relevant Reflections. This is a fascinating independent study conducted by one of the authors of the now famous SATAN program. The survey involved approximately 2,200 sites; the results are disturbing. http://www.trouble.org/survey/
U.S. Department of Energy's
Computer Incident Advisory Capability (CIAC). CIAC provides computer security
services to employees and contractors of the U.S. Department of Energy, but
the site is open to the public as well. There are many tools and documents at
this location.
http://ciac.llnl.gov/
The National Computer
Security Association. This site contains a great deal of valuable security
information, including reports, papers, advisories, and analyses of computer
security products and techniques.
http://www.ncsa.com/
Short Courses in Information
Systems Security at George Mason University. This site contains information
about security courses. Moreover, you'll find links to a comprehensive bibliography
of security-related documents.
http://www.isse.gmu.edu:80/~gmuisi/
NCSA RECON. This is the site of the National Computer Security Association's special division. It offers a service where one can search through thousands of downloaded messages passed among hackers and crackers on BBS boards and the Internet. This commercial site is an incredible security resource. http://www.isrecon.ncsa.com/public/faq/isrfaq.htm
Lucent Technologies.
This site contains information about courses on security from the folks who
really know security.
http://www.attsa.com/
Massachusetts Institute
of Technology Distribution Site of Pretty Good Privacy (PGP) for U.S. Residents.
PGP provides some of the most powerful, military-grade encryption currently
available.
http://web.mit.edu/network/pgp.html
The Anonymous Remailer FAQ. This document covers all aspects of anonymous remailing techniques and tools. http://www.well.com/user/abacard/remail.html
The Anonymous Remailer List. This is a comprehensive but often-changing list of anonymous remailers. http://www.cs.berkeley.edu/~raph/remailer-list.html
Microsoft ActiveX Security.
This page addresses the security features of ActiveX.
http://www.microsoft.com/security
Purdue University COAST Archive. This is one of the more comprehensive security sites, containing many tools and documents of deep interest to the security community. http://www.cs.purdue.edu//coast/archive/
Raptor Systems. The makers of one of the better firewall products on the Net have established a fine security library. http://www.raptor.com/lib/index.html
The Risks Forum. This is a moderated digest of security and other risks in computing. This great resource is also searchable. With it, you can tap the better security minds on the Net. http://catless.ncl.ac.uk/Risks
Forum of Incident Response and Security Teams (FIRST). FIRST is a conglomeration of many organizations undertaking security measures on the Net. This powerful organization is a good starting place for sources. http://www.first.org/
The CIAC Virus Database. This is the ultimate virus database on the Internet. It's an excellent resource for learning about viruses that can affect your platform. http://ciac.llnl.gov/ciac/CIACVirusDatabase.html
Information Warfare and Information Security on the Web. This is a comprehensive list of links and other resources concerning information warfare over the Internet. http://www.fas.org/irp/wwwinfo.html
Criminal Justice Studies of the Law Faculty of University of Leeds, The United Kingdom. This site boasts interesting information on cryptography and civil liberties. http://www.leeds.ac.uk/law/pgs/yaman/cryptog.htm
Federal Information Processing Standards Publication Documents (Government Guidelines). The National Institute of Standards and Technology reports on DES encryption and related technologies. http://csrc.nist.gov/fips/fips46-2.txt
Wordlists Available at NCSA and Elsewhere. This site is for use in testing the strength of, or cracking, UNIX passwords. http://sdg.ncsa.uiuc.edu/~mag/Misc/Wordlists.html
Department of Defense Password Management Guideline. This is a treatment of password security in classified environments. http://www.alw.nih.gov/Security/FIRST/papers/password/dodpwman.txt
Dr. Solomon's. This site is filled with virus information. Anyone concerned with viruses (or anyone who just wants to know more about virus technology) should visit Dr. Solomon's site. http://www.drsolomon.com/vircen/allabout.html
The Seven Locks Server. This is an eclectic collection of security resources, including a number of papers that cannot be found elsewhere! http://www.sevenlocks.com/
S/Key Informational Page. This site provides information on S/Key and the use of one-time passwords in authentication. http://medg.lcs.mit.edu/people/wwinston/skey-overview.html
A Page Devoted to ATP, the "Anti-Tampering Program." In some ways, ATP is similar to Tripwire or Hobgoblin. http://www.cryptonet.it/docs/atp.html
Bugtraq Archives. This is an archive of the popular mailing list, Bugtraq, one of the most reliable sources for up-to-date reports on new-found vulnerabilities in UNIX (and at times, other operating systems). http://geek-girl.com/bugtraq/
Wang Federal. This company produces high-quality security operating systems and other security solutions. It is the leader in TEMPEST technology. http://www.wangfed.com
The Center for Secure Information Systems. This site, affiliated with the Center at George Mason University, has some truly incredible papers. There is much cutting-edge research going on here. The following URL sends you directly to the publications page, but you really should explore the entire site. http://www.isse.gmu.edu/~csis/publication.html
SRI International. This site boasts some very highbrow technical information. The technical reports here are of extreme value. However, you must have at least a fleeting background in security to even grasp some of the concepts. http://www.sri.com/
The Security Reference Index. This site, maintained by the folks at telstra.com, is a comprehensive pointer page to many security resources. http://www.telstra.com.au/info/security.html
Gamelan. The ultimate Java archive. http://www-a.gamelan.com/index.shtml
H-38: Internet Explorer 3.x Vulnerability. CIAC Advisory, March 4, 1997. http://ciac.llnl.gov/ciac/bulletins/h-38.shtml
Internet Java & ActiveX Advisor. Journal. http://www.advisor.com/ia.ht
Javaworld. Journal. http://www.javaworld.com/
Java & HotJava: Waking Up the Web. Sean González. PC Magazine, October 1995. http://www.zdnet.com/~pcmag/issues/1418/pcm00085.htm
Java as an Intermediate Language. Technical Report, School of Computer Science, Carnegie Mellon University, Number CMU-CS-96-161, August 1996. http://www.cs.cmu.edu/afs/cs.cmu.edu/project/scandal/public/papers/CMU-CS-96-161.ps.Z
Java Developer's Journal. http://www.javadevelopersjournal.com/java/
Java Report. Journal. http://www.sigs.com/jro/
Java: The Inside Story. Michael O'Connell. Sunworld Online, Volume 07, July 1995. http://www.sun.com/sunworldonline/swol-07-1995/swol-07-java.html
MIME Encapsulation of Aggregate Applet Objects (Mapplet). A. Bahreman, J. Galvin, R. Narayanaswamy. http://src.doc.ic.ac.uk/computing/internet/internet-drafts/draft-bahreman-mapplet-spec-00.txt.Z
An Extended Authorization Model for Relational Databases. E. Bertino, P. Samarati, and S. Jajodia. IEEE Transactions on Knowledge and Data Engineering, Volume 9, Number 1, 1997, pp. 85-101. http://www.isse.gmu.edu/~csis/publications/ieee-97.ps
Decentralized Management of Security in Distributed Systems. R.S. Sandhu, DSOM. 1991. http://www.list.gmu.edu/~sandhu/papers/confrnc/misconf/ps_ver/dsom91.ps
Ensuring Atomicity of Multilevel Transactions. P. Ammann, S. Jajodia, and I. Ray. IEEE Symposium on Research in Security and Privacy. Oakland, CA, May 1996. pp. 74-84. http://www.isse.gmu.edu/~csis/publications/oklnd96-indrksi.ps
Honest Databases That Can Keep Secrets. R. S. Sandhu and S. Jajjodia, NCSC. http://www.list.gmu.edu/~sandhu/papers/confrnc/ncsc/ps_ver/b91poly.ps
Microsoft Access 2.0 Security. Tom Lucas. PC Solutions. http://www.pc-solutionsinc.com/lucasec.html
The Microsoft Internet Security Framework (MISF) Technology for Secure Communication, Access Control, and Commerce. " 1997 Microsoft Corporation. (All rights reserved.) http://www.microsoft.com/intdev/security/
Why Safeguard Information? Computer Audit Update, Elsevier Advanced Technology, 1996. Abo Akademi University, Institute for Advanced Management Systems Research, Turku Centre for Computer Science. Thomas Finne. http://www.tucs.abo.fi/publications/techreports/TR38.html
"ActiveX Used as Hacking Tool." Wingfield, N. CNET News, February 7, 1997. http://www.news.com/News/Item/0,4,7761,4000.html?latest
"A Tiger Team Can Save You Time and Money and Improve Your Ability to Respond to Security Incidents." Peter Galvin. SunWorld Online. February 1996. http://www.sandcastle-ltd.com/articles.html
"Billions and Billions of Bugs." Peter Galvin. SunWorld Online. http://www.sun.com/sunworldonline/swol-03-1996/swol-03-security.html
"Digital IDs Combat Trojan Horses on the Web." Bray, H. Computer News Daily. February 1997. http://computernewsdaily.com/live/Latest_columns/052_022197_124200_25016.html
"FBI Investigates Hacker Attack at World Lynx." B. Violino. InformationWeek Online. November 12, 1996. http://techweb.cmp.com/iw/newsflash/nf605/1112_st2.htm
"Gang War in Cyberspace." Slatalla, M. and Quitner, J. Wired, Volume 2, Number 12. December, 1994. http://www.hotwired.com/wired/2.12/features/hacker.html
"KC Wrestles With Equipment Theft Problem." Timothy Heider. Kansas City Star. February 17, 1997. http://www.isecure.com/newslet.htm
"Macros Under the Microscope: To Stop the Spread of Macro Viruses, First Understand How They Work." Kenneth R. van Wyk. Infosecnews. http://www.infosecnews.com/article5.htm
"Pentagon Web Sites Closed After Visit from Hacker." Nando.net News Service. December 30, 1996. http://www.nando.net/newsroom/ntn/info/123096/info1_29951.html
"SATAN Uncovers High Risk of Web Attack." S. L. Garfinkel. San Jose Mercury News. December 19, 1996. http://www1.sjmercury.com/business/compute/satan1218.htm
"Security and the World
Wide Web." D. I. Dalva. Data Security Letter. June, 1994.
http://www.ja.net/CERT/Dalva/WWW_security.html
"Security Is Lost in Cyberspace." News & Observer. February 21, 1995. http://www.nando.net/newsroom/ntn/info/other/02219540865.html
"Student's Expulsion Over E-Mail Use Raises Concern." Amy Harmon. Los Angeles Times. November 15, 1995. http://www.caltech.edu/~media/times.html
"The First Internet War; The State of Nature and the First Internet War: Scientology, its Critics, Anarchy, and Law in Cyberspace." David G. Post. Reason Magazine. April, 1996. http://www.cli.org/DPost/X0003_ARTICLE4.html
"What's the Plan? Get a Grip on Improving Security Through a Security Plan." Peter Galvin. SunWorld Online. September 1995. http://www.sun.com/sunworldonline/swol-09-1995/swol-09-security.html
"Windows NT Security Questioned: Experts Say Hackers Could Gain Entry to System." Stuart J. Johnston (http://www.informationweek.com ) . CMP Media, Techweb. http://techweb.cmp.com/iw/610/10iunt.htm
Following is a list of tools. Some of these tools were coded by the establishment (the legitimate security community). Others were authored by amateur hackers and crackers.
Crack: Cracks UNIX passwords on UNIX platforms. http://ciac.llnl.gov/ciac/ToolsUNIXNetSec.html
MacKrack v2.01b1: Cracks UNIX passwords on the MacOS platform. http://www.borg.com/~docrain/mac-hack.html
CrackerJack: Cracks UNIX passwords on the Microsoft platform. http://www.fc.net/phrack/under/misc.html
PaceCrack95: Cracks UNIX passwords on the Windows 95 platform. http://tms.netrom.com/~cassidy/crack.htm
Qcrack: Cracks UNIX passwords on DOS, Linux, and Windows platforms. http://tms.netrom.com/~cassidy/crack.htm
John the Ripper: Cracks UNIX passwords on the DOS and Linux platforms. http://tms.netrom.com/~cassidy/crack.htm
Pcrack (PerlCrack): Cracks UNIX passwords on the UNIX platform. http://tms.netrom.com/~cassidy/crack.htm
Star Cracker: This utility is for the DOS4GW environment. It cracks UNIX passwords. http://citus.speednet.com.au/~ramms/
Killer Cracker: Cracks UNIX passwords under UNIX. http://www.ilf.net/~toast/files/
Hellfire Cracker: Cracks UNIX passwords on the DOS platform. http://www.ilf.net/~toast/files/
XIT: Cracks UNIX passwords on the DOS platform. http://www.ilf.net/~toast/files/xit20.zip
Claymore: A generalized password cracker for Windows. http://www.ilf.net/~toast/files/claym10.zip
ZipCrack: Cracks the passwords on Zip archives. Try the search string zipcrk10.zip.
Password NT: Cracks NT passwords. http://www.omna.com/yes/AndyBaron/recovery.htm
Gobbler: Sniffs in the DOS environment. This tool is good for sniffing Novell NetWare networks. http://www.macatawa.org/~agent43/gobbler.zip
Netman: Awesome sniffer suite for use on UNIX platforms. http://www.cs.curtin.edu.au/~netman/
Esniff.c: Sniffer for use on UNIX machines (specifically SunOS and Solaris). http://pokey.nswc.navy.mil/Docs/Progs/ensnif.txt
Sunsniff: The title says it all. This utility is a good sniffer for SunOS. http://mygale.mygale.org/08/datskewl/elite/
linux_sniffer.c: Runs on the Linux platform. http://www.hacked-inhabitants.com/warez/
Nitwit.c: For use on the Sun platform. www.catch22.com/Twilight.NET/phuncnet/hacking/proggies/sniffers/nitwit.c
NSS: Network Security Scanner. Written in Perl, runs on UNIX. http://www.giga.or.at/pub/hacker/unix
Strobe: Runs on UNIX. http://sunsite.kth.se/Linux/system/Network/admin/
SATAN: Runs on UNIX; you must have Perl. http://www.fish.com
Jakal: Runs on UNIX. Scans behind firewalls. http://www.giga.or.at/pub/hacker/unix
IdentTCPscan: Runs on UNIX; identifies the UID of all running processes. http://www.giga.or.at/pub/hacker/unix
CONNECT: Are you looking for a vulnerable TFTP server? Try this utility. It runs on UNIX. http://www.giga.or.at/pub/hacker/unix/
FSPScan: This UNIX utility identifies vulnerable FSP servers. http://www.giga.or.at/pub/hacker/unix
XSCAN: Locates vulnerable X servers. http://www.giga.or.at/pub/hacker/unix
NetScan Tools: Win95 port of many UNIX snooping utilities. http://www.eskimo.com/~nwps/index.html
Network Toolbox: Runs on Windows 95. Has many common UNIX snooping utilities and a port scanner. http://www.jriver.com/netbox.html
IS User Information for Windows 95: A very good generalized network analysis tool. http://www.csn.net/~franklin/user_info.html
MacTCP Watcher: TCP/IP analysis tool for the Macintosh platform. http://www.share.com/share/peterlewis/mtcpw/
Query It!: Nslookup utility for Mac. http://www.cyberatl.net/~mphillip/index.html#Query It!
WhatRoute: Port of the popular UNIX utility Traceroute to Mac. http://homepages.ihug.co.nz/~bryanc/
The UpYours Mail Bombing Program: To obtain UpYours, try the string upyours3.zip.
Kaboom: This device is an e-mail bomber. To obtain it, try the string kaboom3.exe.
Avalanche: This device is yet another mail-bombing utility. Avalanche is for Windows. Try the search string avalanche20.zip.
The UnaBomber: This utility is a mail bomber for the Windows platform. To obtain it, try the search string unabomb.exe.
eXtreme Mail: This utility is a mail bomber for the Windows platform. To obtain it, try the search string xmailb1.exe.
Homicide: This utility is a mail bomber for the Windows. platform. To obtain it, try the search string homicide.exe.
The UNIX MailBomb: This mail-bomb utility by CyBerGoAT works on all UNIX platforms. To obtain it, try the search string MailBomb by CyBerGoAT.
Bombtrack: This is a mail bombing utility for Macintosh.
FlameThrower: This is a Macintosh mail-bombing utility.
WSFinger (Windows) ftp://papa.indstate.edu/winsock-l/finger/wsfngr14.zip
Macfinger (Macintosh) ftp://ftp.global.net.id/pub/mac/
FFEU (OS/2) http://www.musthave.com/OS2/
"A Basis for Secure Communication in Large Distributed Systems." David P. Anderson and P. Venkat Rangan. UCB//CSD-87-328. January 1987. ftp://tr-ftp.cs.berkeley.edu/pub/tech-reports/csd/csd-87-328/
"A Network Perimeter With Secure External Access." Frederick M. Avolio and Marcus J. Ranum. An extraordinary paper that details the implementation of a firewall purportedly at the White House. Trusted Information Systems, Incorporated. Glenwood, MD. January 25, 1994. http://www.alw.nih.gov/Security/FIRST/papers/firewall/isoc94.ps
"A Security Architecture for Fault-Tolerant Systems." Michael K. Reiter, Kenneth P. Birman, and Robbert Van Renesse. TR93-1354. June 1993. http://cs-tr.cs.cornell.edu:80/Dienst/Repository/2.0/Body/ncstrl.cornell%2fTR93-1354/ocr
"Check Point FireWall-1 Introduction." Checkpoint Technologies firewall Information. http://www.checkpoint.com/products/firewall/intro.html
"Cisco PIX Firewall." Cisco Systems firewall information. http://www.cisco.com/univercd/data/doc/cintrnet/prod_cat/pcpix.htm
"Comparison: Firewalls." LANTimes. June 17, 1996. Comprehensive comparison of a wide variety of firewall products. http://www.lantimes.com/lantimes/usetech/compare/pcfirewl.html
"Covert Channels in the TCP/IP Protocol Suite." Craig Rowland. Rotherwick & Psionics Software Systems Inc. http://www.zeuros.co.uk/firewall/papers.htm
"Dyad: A System for Using Physically Secure Coprocessors." Dr. (Professor) J. Douglas Tygar and Bennet Yee, School of Computer Science at Carnegie Mellon University. http://www.cni.org/docs/ima.ip-workshop/www/Tygar.Yee.html
"Features of the Centri Firewall." Centri firewall information. http://www.gi.net/security/centrifirewall/features.html
"Firewall Application Notes." Good document that starts by describing how to build a firewall. Also addresses application proxies, sendmail in relation to firewalls, and the characteristics of a bastion host. Livingston Enterprises, Inc. http://www.telstra.com.au/pub/docs/security/firewall-1.1.ps.Z
"Firewall Performance Measurement Techniques: A Scientific Approach." Marcus Ranum. February 4, 1996 (last known date of modification). http://www.v-one.com/pubs/perf/approaches.htm
Firewalls FAQ. Marcus J. Ranum. http://www.cis.ohio-state.edu/hypertext/faq/usenet/firewalls-faq/faq.html
"Five Reasons Why an Application Gateway is the Most Secure Firewall." Global Internet. http://www.gi.net/security/centrifirewall/fivereasons.html
"Group of 15 Firewalls Hold Up Under Security Scrutiny." Stephen Lawson. InfoWorld. June 1996. http://www.infoworld.com/cgi-bin/displayStory.pl?96067.firewall.htm
"If You Can Reach Them, They Can Reach You." William Dutcher. A PC Week Online Special Report. June 19, 1995. http://www.pcweek.com/sr/0619/tfire.html
"Improving the Security of Your Site by Breaking Into It." Dan Farmer and Wietse Venema. 1995. http://www.craftwork.com/papers/security.html
"Integrating Security in a Group Oriented Distributed System." Michael K. Reiter, Kenneth P. Birman, and Li Gong. TR92-1269. February 1992. http://cs-tr.cs.cornell.edu:80/Dienst/Repository/2.0/Body/ncstrl.cornell%2fTR92-1269/postscript
"Internet Firewalls: An Introduction." Firewall white paper. NMI Internet Expert Services. http://www.netmaine.com/netmaine/whitepaper.html
"Keeping Your Site Comfortably Secure: An Introduction to Internet Firewalls." John P. Wack and Lisa J. Carnahan. National Institute of Standards and Technology. February 9, 1995. http://csrc.ncsl.nist.gov/nistpubs/800-10/
"Making Your Setup More Secure." NCSA tutorial pages. http://hoohoo.ncsa.uiuc.edu/docs/tutorials/security.html
"NCSA Firewall Policy Guide." Compiled by Stephen Cobb, Director of Special Projects. National Computer Security Association. http://www.ncsa.com/fwpg_p1.html
"Networks Without User Observability: Design Options." Andreas Pfitzmann and Michael Waidner. Eurocrypt '85, LNCS 219, Springer-Verlag, Berlin 1986, 245-253. http://www.informatik.uni-hildesheim.de/FB4/Projekte/sirene/publ/PfWa_86anonyNetze.html
"On Access Checking in Capability-Based Systems." Richard Y. Kain and C. E. Landwehr. IEEE Trans. on Software Engineering Volume SE-13, Number 2 (Feb. 1987) pp. 202-207; reprinted from Proc. 1986 IEEE Symposium on Security and Privacy, April, 1986, Oakland, CA. http://www.itd.nrl.navy.mil/ITD/5540/publications/CHACS/Before1990/1987landwehr-tse.ps
"On the (In)Security of the Windowing System X." Marc VanHeyningen. Indiana University. September 14, 1994. http://www.cs.indiana.edu/X/security/intro.html
"Packet Filtering for Firewall Systems." February 1995. CERT (and Carnegie Mellon University). ftp://info.cert.org/pub/tech_tips/packet_filtering
"Packets Found on an Internet." Steven M. Bellovin. Interesting analysis of packets appearing at the application gateway of AT&T. Lambda. August 23, 1993. ftp://ftp.research.att.com/dist/smb/packets.ps
"Password Security: A Case History." Robert Morris and Ken Thompson. http://www.sevenlocks.com/papers/password/pwstudy.ps
"Product Overview for IBM Internet Connection Secured Network Gateway for AIX, Version 2.2." IBM firewall information. http://www.ics.raleigh.ibm.com/firewall/overview.htm
"Program Predictability and Data Security." Charles G. Moore III and Richard W. Conway. TR74-212. http://cs-tr.cs.cornell.edu:80/Dienst/UI/2.0/Describe/ncstrl.cornell%2fTR74-212?abstract=Security
"Protecting the Fortress From Within and Without." R. Scott Raynovich. LAN Times. April 1996. http://www.wcmh.com/lantimes/96apr/604c051a.html
"Rating of Application Layer Proxies." Michael Richardson. November 13, 1996. http://www.sandelman.ottawa.on.ca/SSW/proxyrating/proxyrating.html
"Secure Computing Firewall for NT." Overview. Secure Computing. http://www.sctc.com/NT/HTML/overview.html
"Security and the X Window System." Dennis Sheldrick. UNIX World. 9(1), p. 103. January 1992. http://ftp.digital.com/pub/Digital/info/SPD/46-21-XX.txt
"Security in Public Mobile Communication Networks." Hannes Federrath, Anja Jerichow, Dogan Kesdogan, and Andreas Pfitzmann. Proceedings of the IFIP TC 6 International Workshop on Personal Wireless Communications, Prague 1995, pp. 105-116. http://www.informatik.uni-hildesheim.de/FB4/Projekte/sirene/publ/FJKP_95FunkEngl.ps.gz
"Security in Open Systems." (NIST) John Barkley, editor (with Lisa Carnahan, Richard Kuhn, Robert Bagwill, Anastase Nakassis, Michael Ransom, John Wack, Karen Olsen, Paul Markovitz, and Shu-Jen Chang). U.S. Department of Commerce. Section: The X Window System: Bagwill, Robert. http://csrc.ncsl.nist.gov/nistpubs/800-7/node62.html#SECTION06200000000000000000
"Security in the X11 Environment." Pangolin. University of Bristol, UK. January, 1995. http://sw.cse.bris.ac.uk/public/Xsecurity.html
"Selective Security Capabilities in ASAP--A File Management System." Richard W. Conway, W. L. Maxwell, and Howard L. Morgan. TR70-62. June 1970. http://cs-tr.cs.cornell.edu:80/Dienst/UI/2.0/Print/ncstrl.cornell%2fTR70-62
"Session-Layer Encryption." Matt Blaze and Steve Bellovin. Proceedings of the Usenix Security Workshop, June 1995.
"Site Security Handbook." Update and Idraft version; June 1996, CMU. Draft-ietf-ssh-handbook-03.txt. Barbara Fraser. http://www.internic.net/internet-drafts/draft-ietf-ssh-handbook-03.txt
"SQL*Net and Firewalls." David Sidwell and Oracle Corporation. http://www.zeuros.co.uk/firewall/library/oracle-and-fw.pdf
"Talking Securely." Mark Arnold, Anthony Boyd, Susan Dalton, Flora Lo, Adam Millard, and Shalini Shah.1994. http://julmara.ce.chalmers.se/Security/sectalk.ps.Z
The Cuckoo's Egg. Pocket Books. Cliff Stoll. ISBN: 0-671-72688-9. 1989. http://www.raptor.com/lib/9371.ps
"The Eagle Firewall Family." Raptor firewall information. http://www.raptor.com/products/brochure/40broch.html
"The Empirical Evaluation of a Security-Oriented Datagram Protocol." David P. Anderson, Domenico Ferrari, P. Venkat Rangan, B. Sartirana. U of California Berkeley, CS csd-87-350. UCB//CSD-87-350, April 1987. ftp://tr-ftp.cs.berkeley.edu/pub/tech-reports/csd/csd-87-350/
"The Secure HyperText Transfer Protocol." E. Rescorla and A. Schiffman. EIT. July 1995. http://www.eit.com/creations/s-http/draft-ietf-wts-shttp-00.txt
"The SSL Protocol." (IDraft) Alan O. Freier and Philip Karlton (Netscape Communications) with Paul C. Kocher. http://home.netscape.com/eng/ssl3/ssl-toc.html
"The SunScreen Product Line Overview." Sun Microsystems. http://www.sun.com/security/overview.html http://www.telstra.com.au/pub/docs/security/tamu-security-overview.ps.Z
"The X Window System." Robert W. Scheifler and Jim Gettys. ACM Transactions on Graphics. Volume5, Number 2, pp. 79-109. April 1986. http://www.acm.org/pubs/toc/Abstracts/0730-0301/24053.html
"Using Screend to Implement TCP/IP Security Policies." Jeff Mogul. Rotherwick and Digital. http://www.zeuros.co.uk/firewall/library/screend.ps
"Vulnerability in Cisco Routers Used as Firewalls." Computer Incident Advisory Capability Advisory: Number D-15. May 12, 1993. http://ciac.llnl.gov/ciac/bulletins/d-15.shtml
"WAN-Hacking with AutoHack--Auditing Security behind the Firewall." Alec D.E. Muffett. (Network Security Group, Sun Microsystems, United Kingdom.) Written by the author of Crack, the famous password-cracking program. Extraordinary document that deals with methods of auditing security from behind a firewall (and auditing of a network so large that it contained tens of thousands of hosts). June 6, 1995. http://www.telstra.com.au/pub/docs/security/muffett-autohack.ps
"Warding Off the Cyberspace Invaders." Amy Cortese. Business Week. March 13, 1995.
"Windows NT Firewalls
Are Born." PC Magazine. February 4, 1997. Jeffrey G. Witt. http://www.pcmagazine.com/features/firewall/_open.htm
http://www.raptor.com/lib/9419.ps
"X Window System Security." Ben Gross and Baba Buehler. Beckman Institute System Services. Last Apparent Date of Modification: January 11, 1996. http://www.beckman.uiuc.edu/groups/biss/VirtualLibrary/xsecurity.html
"A Methodology for Testing Intrusion Detection Systems." N. F. Puketza, K. Zhang, M. Chung, B. Mukherjee, R. A. Olsson. IEEE Transactions on Software Engineering, Volume 22, Number 10. October 1996. http://seclab.cs.ucdavis.edu/papers/tse96.ps
"An Introduction to Intrusion Detection." Aurobindo Sundaram. Last apparent date of modification: October 26, 1996. http://www.techmanager.com/nov96/intrus.html
Bibliography on Intrusion Detection. The Collection of Computer Science Bibliographies. http://src.doc.ic.ac.uk/computing/bibliographies/Karlsruhe/Misc/intrusion.detection.html
"Detecting Unusual Program Behavior Using the Statistical Component of the Next-generation Intrusion Detection Expert System (NIDES)." Debra Anderson, Teresa F. Lunt, Harold Javitz, Ann Tamaru, and Alfonso Valdes. SRI-CSL-95-06, May 1995. Available in hard copy only. The abstract is at http://www.csl.sri.com/tr-abstracts.html#csl9506
"Fraud and Intrusion Detection in Financial Information Systems." S. Stolfo, P. Chan, D. Wei, W. Lee, and A. Prodromidis. 4th ACM Computer and Communications Security Conference, 1997. http://www.cs.columbia.edu/~sal/hpapers/acmpaper.ps.gz
"GrIDS--A Graph-Based Intrusion Detection System for Large Networks." S. Staniford-Chen, S. Cheung, R. Crawford, M. Dilger, J. Frank, J. Hoagland, K. Levitt, C. Wee, R. Yip, and D. Zerkle. The 19th National Information Systems Security Conference. http://seclab.cs.ucdavis.edu/papers/nissc96.ps
"Holding Intruders Accountable on the Internet." S. Staniford-Chen and L.T. Heberlein. Proceedings of the 1995 IEEE Symposium on Security and Privacy, Oakland, CA, May 8-10, 1995. http://seclab.cs.ucdavis.edu/~stanifor/seclab_only/notes/ieee_conf_94/revision/submitted.ps
Intrusion Detection Bibliography. http://www.cs.purdue.edu/coast/intrusion-detection/ids_bib.html
Intrusion Detection Bibliography (Another) http://doe-is.llnl.gov/nitb/refs/bibs/bib1.html
"Intrusion Detection for Network Infrastructures." S. Cheung, K.N. Levitt, C. Ko. 1995 IEEE Symposium on Security and Privacy, Oakland, CA, May 1995. http://seclab.cs.ucdavis.edu/papers/clk95.ps
"NetKuang--A Multi-Host Configuration Vulnerability Checker." D. Zerkle and K. Levitt. Proceedings of the 6th Usenix Security Symposium. San Jose, California. 1996. http://seclab.cs.ucdavis.edu/papers/zl96.ps
"Network Intrusion Detection." Biswanath Mukherjee, L. Todd Heberlein, and Karl N. Levitt. IEEE Network, May 1994. http://seclab.cs.ucdavis.edu/papers/bd96.ps
"Simulating Concurrent Intrusions for Testing Intrusion Detection Systems: Parallelizing Intrusions." M. Chung, N. Puketza, R.A. Olsson, B. Mukherjee. Proceedings of the 1995 National Information Systems Security Conference. Baltimore, Maryland. 1995. http://seclab.cs.ucdavis.edu/papers/cpo95.ps
Phrack Magazine: A hacker e-zine that has been in existence for many years. There is a great deal of hard-core technical information in it, as well as a fascinating section called "Phrack World News," which recounts cracker and hacker activities in recent months. http://www.fc.net/phrack.html
Underground: The home page of Aleph 1 (and the computer underground society). This page has practical information and tools. Aleph 1 is an authority of UNIX security, and Underground is probably one of the best underground pages ever posted. http://underground.org/
LHI Technologies (L0pht Heavy Industries): This group is composed of some of most talented underground hackers. The archives at this site contain rare papers and reports, some written by the site's proprietors. http://l0pht.com/
The Infonexus: This site houses most of the tools that have ever been made for UNIX, NT, Novell, and DOS. It also houses some very interesting files that you cannot find elsewhere. The proprietor is Route, an individual who authored one of the most recent denial-of-service tools, the syn_flooder. This site is smokin'. http://www.infonexus.com/~daemon9/
Eight Little Green Men [8LGM]: A group of individuals who work independently to discover holes in various platforms. Famous for posting exploit scripts. http://www.8lgm.org/home.html
The alt.2600/#hack FAQ: The FAQ for the popular Usenet newsgroup, alt.2600. Some interesting information can be found here, ranging from info about war dialers to tips for covering your tracks after a break-in. http://www-personal.engin.umich.edu/~jgotts/hack-faq/hack-faq-cp.html
The Hacks and Cracks Page: Files, files, and more files. Many files for different platforms, including but not limited to DOS, Windows, and Mac. http://home.earthlink.net/~mumbv/index.html
The Mac Hack Page: Mac hacking and cracking. Many files and links to other sites. A good starting place for the Mac hacker or cracker. http://members.tripod.com/~Buzzguy/The_Mac_Hack_Page
H/P/A Links and Bullshit: A rather anarchistic but somewhat informational page with many, many links. http://www.paranoia.com/hpa/
EFF "Hacking, Cracking, Phreaking" Archive: This is the archive of the Electronic Frontier Foundation, a non-profit organization that advocates civil liberties in cyberspace. http://www.eff.org/pub/Privacy/Security/Hacking_cracking_phreaking/