[DLC] Re: [sec-daemons] Neohapsis Security Competition at DePaul

Simbarashe Lee Mutoti ldmtoti at yahoo.com
Wed Feb 20 10:50:41 CST 2008 

Another book, which is a must buy for those interested
in Web Application Security:
Professional Pen Testing for Web Applications
(Programmer to Programmer).

--- Leigh Hollowell <Leigh at LeighHollowell.com> wrote:

> Hey everyone,
> 
> Neohapsis and DePaul will be hosting a security
> competition starting this Saturday, February 23rd
> and running until Saturday, March 8th!  This
> competition will include web-based application
> security, system-based application security, network
> security, and computer forensics challenges.  You do
> not have to compete in all four of these areas to
> participate.  The winner or winners will be
> determined by Neohapsis based on the difficulty of
> the challenges completed, the quality of the final
> report, the accuracy of the technical summary, and
> the remediation solution.  The prize is an
> internship at Neohapsis! J
> 
> Once the competition starts on Saturday, the
> challenges will be available as virtual machines and
> in the lab located in room 819 in the CTI building.
> 
> For more detailed information on the competition,
> please see the attached PowerPoint. If you are
> interested in competing, please email
>
wargames at neohapsis.com<mailto:wargames at neohapsis.com>
> for more information and to sign-up.
> 
> As always, you can also email me if you've got
> questions.
> 
> If you are interested in doing some reading to get
> more familiar with some of the things that you may
> need to know, I have included a suggested reading
> list below.  Some of the links may be dead, as it is
> an older list.
> 
> Apologies if you get this more than once...
> 
> Leigh
>
leigh at leighhollowell.com<mailto:leigh at leighhollowell.com>
> 
> 
> First as far as books go there are a few I really
> like.
> 
> The Art of Software Security Assessment - (shameless
> promotion of a friend's book) Actually this really
> is the best on the topic of software security.
> 
> The Art of Exploitation - This is one of very few
> books that actually focuses on the exploitation of
> vulnerabilities. It is geared towards Linux usermode
> and the depth isn't great but it is a good
> introduction to the exploitation of common bugs.
> 
> The entire Stealing the Network series is good
> mindset prep and fun to read as they follow a story
> with real tech.
> 
> Now as for the nitty gritty of real vulns...
> 
> As a general rule read lots of Phrack but
> specifically -
> 
> - System Security
> -- Stack based overflows
> --- Windows
>            
> http://www.cultdeadcow.com/cDc_files/cDc-351/
> --- Linux
>             http://insecure.org/stf/smashstack.html
> --- Kernel (This focuses on BSD I believe)
>            
> http://phrack.org/issues.html?issue=64&id=6&mode=txt
> --- Advanced Techniques
>             Look at Phrack articles on things like
> return to libc and off by one exploitation
> -- Heap based overflows
> ---Windows
>            
>
http://www.securiteam.com/securityreviews/6A00G0AEAS.html
>            
> http://www.securityfocus.com/infocus/1846
> --- Linux
>            
>
http://doc.bughunter.net/buffer-overflow/heap-corruption.html
>            
>
http://osdir.com/ml/security.dailydave/2005-10/msg00064.html
>            
> http://phrack.org/issues.html?issue=64&id=9&mode=txt
>            
> http://seclists.org/vuln-dev/2004/Feb/0025.html
> -- Format strings
> --- Windows
>            
> http://www.ngsconsulting.com/papers/win32format.doc
> (this doesn't apply to XP as windows devs broke
> param lengths > 255
> --- Linux
>            
>
http://doc.bughunter.net/format-string/exploit-fs.html
>            
> http://neworder.box.sk/newsread.php?newsid=9103
> -- Integer Bugs
>             http://fakehalo.us/IAO-paper.txt
> -- Protections
>             http://pax.grsecurity.net/docs/
>            
>
http://blogs.msdn.com/michael_howard/archive/2006/05/26/608315.aspx
>            
>
http://www.anomalous-security.org/phrack/phrack59/p59-0x09.txt
>             http://www.milw0rm.com/papers/55
> -- Shellcode
>            
>
http://www.hick.org/code/skape/papers/win32-shellcode.pdf
>            
>
http://www.vividmachines.com/shellcode/shellcode.html
>            
>
http://docs.cs.up.ac.za/programming/asm/derick_tut/syscalls.html
>             http://www.milw0rm.com/shellcode/
>             http://milw0rm.com/papers/120
>             http://www.ktwo.ca/security.html
> - Web app sec
> -- SQL Injection
>            
>
http://www.ngssoftware.com/papers/advanced_sql_injection.pdf
>            
>
http://www.securiteam.com/securityreviews/5DP0N1P76E.html
>            
>
http://ferruh.mavituna.com/makale/sql-injection-cheatsheet/
>            
>
http://www.spidynamics.com/whitepapers/Blind_SQLInjection.pdf
>            
> http://www.securitydocs.com/Exploits/SQL_Injection
>            
>
http://security-papers.globint.com.ar/oracle_security/sql_injection_in_oracle.php
>             Look up SQL Map
> -- XSS
>             http://ha.ckers.org/xss.html
> -- Command/Code injection
>            
>
http://prdownloads.sourceforge.net/owasp/OWASPGuide2.0.1.pdf?download
>             http://insecure.org/news/P55-07.txt
> - Reverse engineering and binary assessment
>            
>
http://thief.uninformed.org/ref/reverse_compilation_techniques-cifuentes.pdf
>             http://www.crackmes.de/
> 
> > _______________________________________________
> sec-daemons mailing list
> sec-daemons at mailman.depaul.edu
>
http://mailman.depaul.edu/mailman/listinfo/sec-daemons
>

More information about the DLC mailing list