Difference between revisions of "Summerschool Aachen 2004/Links"
Mario Manno (talk | contribs) |
(→Web) |
||
(33 intermediate revisions by 7 users not shown) | |||
Line 1: | Line 1: | ||
+ | = About Links = | ||
+ | |||
+ | You can do Interwiki links to nerxs like this: | ||
+ | [[nerxs:InsecureProgramming]] | ||
+ | Normal links to other sites: | ||
+ | [http://example.org Description] | ||
+ | |||
+ | Please also look at the [http://nerxs.de/moin nerxs Wiki]. | ||
+ | |||
+ | = Links = | ||
+ | |||
+ | == Mailinglist == | ||
+ | I created a Mailinglist for the participants of the Summerschool to use. You can see the mailman listinfo page at: | ||
+ | https://helga.asta.rwth-aachen.de/mailman/listinfo/security <br> | ||
+ | -- [[Lutz Böhne]] | ||
+ | |||
+ | == Interesting nerxs.de Interwiki Links == | ||
+ | * [[nerxs:InsecureProgramming]] | ||
+ | ** [[nerxs:BufferOverflows]] | ||
+ | ** [[nerxs:UserControlledFormatStrings]] | ||
+ | |||
+ | ==Wargames== | ||
+ | |||
* [http://www.dievo.org dievo.org] | * [http://www.dievo.org dievo.org] | ||
* [http://www.hackerslab.org hackerslab.org] | * [http://www.hackerslab.org hackerslab.org] | ||
Line 7: | Line 30: | ||
* http://blackhole.labs.pulltheplug.com | * http://blackhole.labs.pulltheplug.com | ||
* http://void.labs.pulltheplug.com | * http://void.labs.pulltheplug.com | ||
+ | |||
+ | |||
+ | ==Tools== | ||
+ | |||
+ | ===Web Attacking Tools=== | ||
+ | * [http://livehttpheaders.mozdev.org/ LiveHTTP Headers Firefox Extension] | ||
+ | * [http://jgillick.nettripper.com/switchproxy/ Switch Proxy Firefox Extension] | ||
+ | * [http://www.owasp.org/software/webscarab.html Webscarab Proxy] | ||
+ | * [http://www.proofsecure.com/paros-3.1.3-src.zip Paros Proxy] | ||
+ | * [http://packages.debian.org/unstable/net/spikeproxy spikeproxy] | ||
+ | |||
+ | ===Debugging/Disassembling=== | ||
+ | * [http://home.t-online.de/home/Ollydbg/ OllyDBG] | ||
+ | * [http://biew.sourceforge.net/ Binary View] | ||
+ | * [http://www.heaventools.com/download.htm PE Explorer] | ||
+ | * [http://www.simtel.net/product.php?url_fb_product_page=29498 IDA Free] | ||
+ | |||
+ | |||
+ | == Papers / Documentation == | ||
+ | === Web === | ||
+ | * [http://www.cgisecurity.com/ CGISecurity.com - Web Security News] | ||
+ | * [http://www.webappsec.org/ The Web Application Security Consortium] | ||
+ | * [http://sourceforge.net/projects/owasp/ OWASP - Web Security] | ||
+ | * [http://fravia.com Search the Web] | ||
+ | |||
+ | === Debugging / Disassembling === | ||
+ | * [http://developer.apple.com/documentation/DeveloperTools/gdb/gdb/gdb_toc.html Debugging with GDB] | ||
+ | * [http://fravia.anticrack.de/ Fravia's Page of Reverse Engeneering] | ||
+ | |||
+ | === Debugging / Disassembling Tools for Linux === | ||
+ | * [http://bastard.sourceforge.net/ the bastard disassembly environment] | ||
+ | * [http://lcamtuf.coredump.cx/fenris/devel.shtml fenris] | ||
+ | * [http://biew.sourceforge.net Binary vIEWer - a hex editor and more] | ||
+ | * [http://bvi.sourceforge.net - a vi clone for binary files] | ||
+ | |||
+ | === Old Code === | ||
+ | * http://snapshot.debian.net/ | ||
+ | * ftp://ftp.slackware.com./pub/slackware | ||
+ | * ftp://ftp-archive.FreeBSD.org/pub/FreeBSD-Archive/old-releases/.<br>The FreeBSD project has also been using CVS since FreeBSD 2.0. The first commits I found are from more than 10 years ago.<br>Have a look at http://www.freebsd.org/support.html#cvs | ||
+ | |||
+ | === XML === | ||
+ | * [http://www.w3.org/TR/xmldsig-core/ XML Signature Syntax] | ||
+ | * [http://www.nue.et-inf.uni-siegen.de/~geuer-pollmann/xml_security.html XML Security] | ||
+ | |||
+ | === Randomness === | ||
+ | * [http://www.bindview.com/Support/RAZOR/Papers/2001/tcpseq.cfm Strange Attractors and TCP/IP Sequence Number Analysis] | ||
+ | * [http://lcamtuf.coredump.cx/newtcp/ Strange Attractors and TCP/IP Sequence Number Analysis - One year later] | ||
+ | |||
+ | === Address randomisation === | ||
+ | |||
+ | * [http://www.stanford.edu/~blp/papers/asrandom.pdf On the Effectiveness of Address-Space Randomization] | ||
+ | |||
+ | === Forensics === | ||
+ | * http://kuba.unix.se/code/mem-dump.c | ||
+ | * http://www.supertrick.net/files/hdddriver.rar | ||
+ | * [http://sourceforge.net/project/showfiles.php?group_id=107869&package_id=116435 diskeditor] | ||
+ | * http://lde.sourceforge.net | ||
+ | * http://www.hexworkshop.com/ | ||
+ | |||
+ | [[Category:Summerschools]] |
Latest revision as of 03:22, 12 January 2006
Contents
About Links
You can do Interwiki links to nerxs like this:
nerxs:InsecureProgramming
Normal links to other sites:
Description
Please also look at the nerxs Wiki.
Links
Mailinglist
I created a Mailinglist for the participants of the Summerschool to use. You can see the mailman listinfo page at:
https://helga.asta.rwth-aachen.de/mailman/listinfo/security
-- Lutz Böhne
Interesting nerxs.de Interwiki Links
Wargames
some more nice wargames:
- http://vortex.labs.pulltheplug.com
- http://blackhole.labs.pulltheplug.com
- http://void.labs.pulltheplug.com
Tools
Web Attacking Tools
- LiveHTTP Headers Firefox Extension
- Switch Proxy Firefox Extension
- Webscarab Proxy
- Paros Proxy
- spikeproxy
Debugging/Disassembling
Papers / Documentation
Web
- CGISecurity.com - Web Security News
- The Web Application Security Consortium
- OWASP - Web Security
- Search the Web
Debugging / Disassembling
Debugging / Disassembling Tools for Linux
- the bastard disassembly environment
- fenris
- Binary vIEWer - a hex editor and more
- - a vi clone for binary files
Old Code
- http://snapshot.debian.net/
- ftp://ftp.slackware.com./pub/slackware
- ftp://ftp-archive.FreeBSD.org/pub/FreeBSD-Archive/old-releases/.
The FreeBSD project has also been using CVS since FreeBSD 2.0. The first commits I found are from more than 10 years ago.
Have a look at http://www.freebsd.org/support.html#cvs
XML
Randomness
- Strange Attractors and TCP/IP Sequence Number Analysis
- Strange Attractors and TCP/IP Sequence Number Analysis - One year later