Pepelux has made a windows utility to capture all traffic from net card, as a sniffer (promiscuous mode). It is configurable with filters, and captures TCP, UDP, ICMP and ARP protocols. It can export data, and has a login plain text detection mode (ftp, pop3, etc.). It is multilanguage (english + spanish).
Pepelux has wrote a paper about port scanning at low level. It explains anonymous port scan, playing with net packet headers using raw sockets. It shows most used scan techniques (xmas, fin, etc.), through own raw sockets code and examples. It also explains a little about SO’s detection.
LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry handlers, so it does not modify sys_call_table, or IDT content. It hide files, directories, and processes. Hides chunks inside of files, gives remote reverse_shell access, local root, etc.
You are reading the english version from enye-sec.org web :).
We will try to translate into english everything that we make (papers, programs, exploits, etc.). We had translated some programs / exploits, that you can find on english web version. We will try to translate old papers, and in the future we will (try) translate everything.
Our english ( specially mine :-S ) is not very good, sorry for it.
eNYe Sec | Computer Security · Green Hope Theme by Sivan & schiy · Powered by WordPress