Fundacja Rozwoju Regionu Gołdapedukacja techniczno informatyczna

Anatomy of pharming - how your money is stolen 5/2005 (Viewed: 11447)

» No 09/2005 (5) subscription		 Anatomy of pharming - how your money is stolen 5/2005
add to cart | quick buy » Pharming – DNS cache poisoning attacks
Mariusz Tomaszewski
We explain how DNS cache poisoning attacks work, then demonstrate how such attacks are used in the new financial fraud technique called pharming. Finally, we test the most popular DNS cache server resistance to DNS cache poisoning attacks.

[ level: | type: ]
add to cart | quick buy » Robot Wars - How Botnets Work
Massimiliano Romano, Simone Rosignoli, Ennio Giannini
We discuss the concept of bots and botnets, then explain how they operate and how victim computers are infected. A practical example of creating a botnet using one of the available tools is presented. We also teach how to protect a computer from being exploited by a botnet.

[ level: | type: ]
add to cart | quick buy » Voice over IP security - SIP and RTP protocols
Tobias Glemser, Reto Lorenz
We provide a detailed overview of protocols used in Voice over IP (VoIP) transmissions, particularly of the SIP protocol. Then we take a look at seven most common, most effective and best-described methods of attacking VoIP, and how these methods can be applied in practice.

[ level: | type: ]
add to cart | quick buy » Exploiting Java VM security vulnerabilities
Tomasz Rybicki
We present the security model of the Java virtual machine, then describe several methods of attacking it. Described techniques include taking advantage of sandbox holes, direct access to memory and a differential analysis of power consumption. Finally, we describe how an audit of Java VM is conducted.

[ level: | type: ]
add to cart | quick buy » Advanced SQL Injection Techniques
Mike Shema
We demonstrate how to execute advanced attacks against syntax and logic of the SQL language. Several interesting tricks involving SQL injection are presented. Finally, we discuss basic methods of protecting applications against SQL injection attacks.

[ level: | type: ]
add to cart | quick buy » Linux shellcode optimisation
Micha³ Piotrowski
Let's write four simple shellcodes from scratch, starting with programs in C, then converting them into assembly. Afterwards let's prepare them for shellcode use and finally optimise them.

[ level: | type: ]
add to cart | quick buy » Bad Tools Make Bad Software - an interview with Dan J. Bernstein
hakin9.org
Dan, well-known for his controversial opinions, and for creating such systems as qmail or djbdns, talks with us about non-ethical approach of *NIX distributors, alleged bugs in qmail, methods used to write secure applications, DNS and hash function security, and more

[ level: | type: ]
add to cart | quick buy » A new RFC proposal

This document specifies the User Awareness Factor (UAF) - a new standard for security measurements. The User Awareness Factor is based on one, simple principle, which is believed to hold for an infinite time: most users are lame.

[ level: | type: ]
add to cart | quick buy » Security Tools - Firestarter 1.0.3

A graphical interface for creating simple rules for a netfilter/iptables-based firewall.

[ level: | type: ]
SDJhakin9

.SDJ Users:


.:Login
.:Password

[Register]
[Forgotten your password?]

...hakin9 StarterKit IT Practical Solutions for Newbies

...Shopping Cart

sum: 0 €
Choose currency:

...SUBSCRIBE TO
hakin9 Print Edition


...Advertisement



...Conferences

...Topics

...Advertisement

 

 

Subscribe | Contact Us | Newsletter | See all issues | About Hakin9
Copyright C 2006 by Software Developer's Journal. All rights reserved.