|
Auditing System Security
|
|
Hits: 32 |
|
Date added: 03/07/2005 |
|
Auditing System Security (05/2003) |
|
|
|
|
|
|
Application Level DoS Attacks
|
|
Hits: 0 |
|
Date added: 07/30/2005 |
|
Denial of Services (DoS) attacks aimed at disrupting network services range from simple bandwidth exhaustion attacks and those targeted at flaws in commercial software to complex distributed attacks exploiting specific COTS software flaws. These types of attack are not new and have been used to devastating effect to prevent normal operation of the victim sites. Historically, these attacks by hacktivists and extortionists alike have targeted companies as diverse as eBay and Microsoft, the RIAA and SCO, and a plethora of online gambling companies.
Attackers have not, as yet, exploited the full range of vulnerabilities present in many online services - particularly attacks aimed at the application and data processing layer. With the rise of increasingly targeted and motivated attacks and attackers, these application level DoS attacks will inevitably be exploited for nefarious gains.
This paper gives an insight into application level Dos attacks and draws conclusions from that. |
|
|
|
|
|
Application Assessment Questioning
|
|
Hits: 4 |
|
Date added: 09/13/2006 |
|
What should a consultant be looking for when conducting an application assessment? |
|
|
|
|
|
|
AIX Heap Overflow
|
|
Hits: 15 |
|
Date added: 12/16/2005 |
|
Author:
I've just published a paper on AIX heap overflows. I wrote it back in August
but wanted to wait until a couple of flaws I discovered whilst researching
the topic were fixed by IBM. IBM released the patches today.(16 Dec 2005) |
|
|
|
|
|
Adjacent Memory Overflows
|
|
Hits: 0 |
|
Date added: 12/31/2005 |
|
|
|
|
|
