Xine for Linux with DVD
Hi everyone, I'm Captain CSS,

bringing to you a css plugin for use with a linux dvd player called xine.
Using our software, you are able to view all of your encrypted and locked dvds without even noticing that someone tried real hard to keep you from doing so... finally dvd playback _REALLY_ comes to linux.

THE BASTARD OPERATOR FROM HELL OFFICIAL ARCHIVE
It's backup day today so I'm pissed off. Being the BOFH, however, does have it's advantages. I reassign null to be the tape device - it's so much more economical on my time as I don't have to keep getting up to change tapes every 5 minutes. And it speeds up backups too, so it can't be all bad can it? Of course not.

A user rings

"Do you know why the system is slow?" they ask

"It's probably something to do with..." I look up today's excuse ".. clock speed"

"Oh" (Not knowing what I'm talking about, they're satisfied) "Do you know when it will be fixed?"

"Fixed? There's 275 users on your machine, and one of them is you. Don't be so selfish - logout now and give someone else a chance!"

"But my research results are due in tommorrow and all I need is one page of Laser Print.."

"SURE YOU DO. Well; You just keep telling yourself that buddy!" I hang up.

You'd really think people would learn not to call.

The New Hacker's Dictionary
This document is a collection of slang terms used by various subcultures of computer hackers. Though some technical material is included for background and flavor, it is not a technical dictionary; what we describe here is the language hackers use among themselves for fun, social communication, and technical debate.

Silent boots
When U.S. commandos sneak up on Osama bin Laden and put a cap in his turban, they may be wearing the fruits of the U.S. government's "Silent Boots" research project. Here are excerpts from a 1999 report prepared for the Department of State's Technical Support Working Group (whose mission is to "conduct rapid research, development, and prototyping of technologies in support of counterterrorism and antiterrorism"). We're pretty sure the last thing a Special Forces member needs is to have his boots squeak on a cave floor. (9 pages)

How to leak a secret
A PDF file.

FBI Programs and Initiatives - Carnivore Diagnostic Tool
In recent years, the FBI has encountered an increasing number of criminal investigations in which the criminal subjects use the Internet to communicate with each other or to communicate with their victims. Because many Internet Service Providers (ISP) lacked the ability to discriminate communications to identify a particular subject's messages to the exclusion of all others, the FBI designed and developed a diagnostic tool, called Carnivore.

"Real" Deal about Nuclear, Bio, and Chem Attacks
Since the media has decided to scare everyone with predictions of chemical, biological, or nuclear warfare on our turf I decided to write a paper and keep things in their proper perspective. I am a retired military weapons, munitions, and training expert.

SecureMedia
SecureMedia is the leading provider of secure digital media distribution solutions that enable complete end-to-end protection of streamed and downloaded media, from source to point of rendering.

Security-Enhanced Linux version 3
The third public release of the LSM-based SELinux prototype was made. This release contains several bug fixes and improvements to both LSM and SELinux and is based on the lsm-2001_10_11 patch against kernel 2.4.12.

Other Government Secrecy Related Web Sites

Mario's Cyberspace Station - The Global News Portal
This is USA mirror of the biggest one man's handmade website in Cyberspace with more than a thousand web pages and over 4.5 million hits so far.

Intelligence and Security Webring
Sites of intelligence, security, espionage, national security, computer security, competitive intelligence, economic intelligence and military intelligence. CIA, DIA, NSA, MI, NRO and others welcome. Knowledge Management and business intelligence.

National Security News
The Federation of American Scientists conducts analysis and advocacy on science, technology and public policy, including national security, nuclear weapons, arms sales, biological hazards, secrecy, education technology, information technology, energy and the environment. FAS is a privately-funded non-profit policy organization whose Board of Sponsors includes 58 of America's Nobel laureates in the sciences.

Advanced Electronic Security Company
Technical Surveillance Counter Measures (TSCM). Using The BEST Technology Available. Electronic Bug sweeps to detect and eliminate electronic eavesdropping and surveillance devices.
Technical Surveillance Counter Measures (TSCM) is our specialty. We eliminate telephone line bugs and wiretaps (using wiretap detection sweeps), computer data line taps and bugs (telecommunications security line sweeps), and bug sweep your conference rooms (using electronic room bug sweeping).

LANguard File Integrity Checker
LANguard File Integrity Checker is a utility that provides intrusion detection by checking whether files have been changed, added or deleted on a Windows 2000/NT system. If this happens it will alert the administrator by email. Since hackers need to change certain system files to gain access, this FREEWARE utility provides a great means to further secure any servers open to attack.

LANguard Network Scanner
LANguard Network Scanner is a freeware security & port scanner to audit your network security. It scans entire networks and provides NETBIOS information for each computer such as hostname, shares, logged on user name. It does OS detection, password strength testing, detects registry issues and more. Reports are outputted in HTML.

Meet the computer criminals: they'll see you in your office
It doesn't take technical wizardry or a cunning disguise to gain access to your confidential data, as Mark Halper discovers.

Visit the home of a computer security professional and you'd expect to see the usual trappings of the trade: a collection of keyboards, monitors, tangled phone wires and racks of anti-virus software.

But for one IBM security consultant called Paul, there's something a bit more curious. Hanging in Paul's ward-robe is a collection of tradesmen's outfits including hard hats, boiler suits, phone equipment belts and meter-reader shirts.

John the Ripper
John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), DOS, Win32, and BeOS. Its primary purpose is to detect weak Unix passwords, but a number of other hash types are supported as well.

SAINT:: Vulnerability Tool
The Security Administrator's Integrated Network Tool (SAINT™), an updated and enhanced version of SATAN, is designed to assess the security of computer networks.

Gartner: Most IT security problems self-inflicted
About 90% of security breaches occur because attackers take advantage of software that IT staffers have either misconfigured or failed to patch, a Gartner Inc. analyst said.

UK Report on Responsibility for the September 11 Terrorist Attacks
This document does not purport to provide a prosecutable case against Usama Bin Laden in a court of law. Intelligence often cannot be used evidentially, due both to the strict rules of admissibility and to the need to protect the safety of sources. But on the basis of all the information available HMG is confident of its conclusions as expressed in this document.

Men & Mice - Domain Health Survey
Since 1998, Men & Mice has conducted numerous surveys on DNS (Domain Name System) "health" issues. The purpose of these surveys is to increase awareness of DNS security for organizations with on-line presence. The Domain Name System is the heartbeat of the Internet and every task performed using a web browser or email application relies on DNS. Numeous publications have cited our research.

Crypto Law Survey
This is a survey of existing and proposed laws and regulations on cryptography - systems used for protecting information against unauthorized access. Governments have long restricted export of cryptography for fear that their intelligence activities are hampered by the crypto use of foreign states and scoundrels. Since the rise of crypto use over the past decades, governments increasingly worry about criminals using cryptography to thwart law enforcement. Thus, many countries are considering laws focusing on maintaining law-enforcement and national-security capabilities through regulation of cryptography.
This survey gives an overview of the current state of affairs, with entries per country on import/export controls, domestic laws, developments to restrict cryptography, and developments favoring crypto use.

Uncle Sam Should Learn to Hack
With the specter of the World Trade Center and Pentagon disasters looming large in the minds of lawmakers, the cry to ban U.S. exports of sophisticated encryption software has risen anew. Encryption, or cryptography [crypto for short], is the science of devising codes that cloak messages in secret language. It involves using complex algorithms to mix characters of a message with other characters or values in a seemingly nonsensical way. The result is gibberish that even the biggest supercomputers struggle to decode.

In 1998, the U.S. government removed a ban on the production and export for sale of advanced cryptographic software and equipment. That raised the ire of law-enforcement officials and national-security hawks. But the hubbub quickly died down thanks to the glowing aura of the boom economy. Now, it appears that encryption exports may be in jeopardy again as the U.S. scours the globe for Osama bin Laden and his Al Qaeda cohorts.

Basic Steps in Forensic Analysis of Unix Systems
One especially important element to crime solving is the effective use of science and technology. Science and technology applied to the solution of criminal acts, or forensic science, solves crimes by assisting police investigators to identify suspects and victims, clearing innocent persons of suspicion and ultimately bringing the wrongdoer to justice.

Common Criteria Mutual Recognition Arrangement
The Arrangement on the Mutual Recognition of Common Criteria Certificates in the field of Information Technology Security is now available to view.

Cisco presentations

• Introduction and Motivation by Tames van der Does


• Threat analysis by Michael Behringer


• Step 1: Securing Network Elements by Luc Billot


• Step 2: Securing Routing and Switching by Tames van der Does


• Step 3: Prevention of Address Spoofing by Michael Behringer


• Value-add Security Services by Tames van der Does


• Tracing Attacks by Michael Behringer


• Creating Emergency Response Teams and co-operation with other teams by Tames van der Does


• MPLS security by Michael Behringer

Security-Enhanced Linux Version II
The second public release of the LSM-based SELinux prototype was made. This release contains many bug fixes and improvements to both LSM and SELinux and is based on the lsm-2001_09_23 patch against kernel 2.4.10.

µPKI
A Public Key Infrastructure (PKI) is the set of technologies and policies that provide scalable infrastructure for securing internet interactions through the use of public key cryptography. PKI is used in many applications such as IPsec VPN, Code signing, SSL, and secure mail.
µPKI is a C toolkit optimized for embedded devices. It minimizes memory, code and stack usage yet provides a very comprehensive feature set, allowing it to scale up and down to a wide range of devices.

Microsoft Personal Security Advisor
Microsoft Personal Security Advisor (MPSA) is an easy to use web application that will help you secure your Windows NT™ 4.0 or Windows 2000™ personal computer system. Simply press the Scan Now button to receive a detailed report of your computer's security settings and recommendations for improvement.
MPSA will scan your system and build a customized report on items such as: missing security patches, weak passwords, Internet Explorer and Outlook Express security settings, and Office macro protection settings. More details on the specific tests performed by MPSA are available by clicking on the "Features" menu option above.

For each weakness identified on your computer, MPSA provides easy to understand information on the security issue at hand, how to fix it, and links to additional information about the issue. Once you correct a reported deficiency, you can run the scan again and see the results of the change. Running MPSA on a regular basis will help ensure that your system stays up to date and secure.

What are Islamic fundamentalists doing in porn sites? The CIA tells you...
NOW WE know how jehadis get their kicks. CIA chief George Tenet let it out of the brown paper bag during a session with US Senators. Osama bin Laden and other Islamicists, it seems, use cyberporn to send messages secure from Western intelligence's peeping Toms.

FBI operation penetrates hacker underground
The FBI has gained a foothold in the hacker underground thanks to an 18-month undercover operation launched during the height of the U.S. military's 1999 bombing campaign in Kosovo.

SAFER - Security Alert For Enterprise Resources
SAFER has been published by eGlobal Technology's security team since June 1998. Its purpose is to provide a service to the security community by summarizing and commenting on all new security vulnerabilities and tools, on a monthly basis.
If you are responsible for the security of any system, then we hope that you will subscribe and find it useful.

Qtfw
Qtfw is a Qt GUI frontend for FreeBSD's ipfw utility. It helps configure the firewall in FreeBSD with a nice and comprehensive user interface. User can edit rules in the current list, save rules for future use, configure kernel sysctl variables, and finally, create shell script from qtfw rules.

Global Network Security Services
GNSS is an Internet and network security company established by pioneers of data transfer and secure communications.
GNSS provides data and network protection for businesses connected to the internet, networks, and businesses that transmit and store digitally formatted information and proprietary assets.

CounterPunch
CounterPunch is the bi-weekly muckraking newsletter edited by Alexander Cockburn and Jeffrey St. Clair. Twice a month we bring our readers the stories that the corporate press never prints. We aren't side-line journalists here at CounterPunch. Ours is muckraking with a radical attitude and nothing makes us happier than when CounterPunch readers write in to say how useful they've found our newsletter in their battles against the war machine, big business and the rapers of nature.

Did the CIA Push An Aussie Officer Over the Edge?
From the Bloodbaths In East Timor to a Suicide in Arlington.

Internet Fraud Complaint Center
The Internet Fraud Complaint Center (IFCC) is a partnership between the Federal Bureau of Investigation (FBI) and the National White Collar Crime Center (NW3C).
IFCC's mission is to address fraud committed over the Internet. For victims of Internet fraud, IFCC provides a convenient and easy-to-use reporting mechanism that alerts authorities of a suspected criminal or civil violation. For law enforcement and regulatory agencies at all levels, IFCC offers a central repository for complaints related to Internet fraud, works to quantify fraud patterns, and provides timely statistical data of current fraud trends.

Encryption Information
The intention of this page is to introduce the reader to the processes of encryption techniques. It will first begin with a definition of what exactly encryption is, followed by a description of the origins of encryption. Then I will discuss a few of the different types of encryption systems and definitions.

This chapter is not going to be a mathematical description of encryption. It has been written with the non-mathematical person in mind. If you wish to know more about encryption systems there are many good books that have been written on every type of encryption system. This chapter will just give a brief overview of the types of encryption systems and how they work.

Typhon
Typhon, an updated version of Cerberus Internet Scanner, is a vulnerability assessment tool. It will scan a given host for known security holes and vulnerabilities. It does this by looking at the services offered by a host and each of these are examined for holes. For example, Typhon will check for over 180 known vulnerabilities in the web service or daemon offered by a server. Once a scan has been completed a report in HTML is produced detailing what security holes were found, the impact of those holes and how to fix them. Once these holes have been removed then the host will be more secure against attacks. As new vulnerabilities are discovered almost on a daily basis it is necessary to ensure that the Typhon is kept upto date and hosts are scanned on a regular basis.

Linux Administrators Security Guide
New version!

PGP Security - PGPsdk 2.1.1. Source Code for Peer Review
Download the PGP SKD source code for Mac, Unix or Windows.

NSA upgrades
The National Security Agency is beginning a 15-year, multibillion-dollar effort to modernize the nation's cryptographic systems, which are rapidly growing obsolete and vulnerable.

National Infrastructure Protection Center (NIPC)
The National Infrastructure Protection Center (NIPC) serves as a national critical infrastructure threat assessment, warning, vulnerability, and law enforcement investigation and response entity. The NIPC provides timely warnings of international threats, comprehensive analysis and law enforcement investigation and response.

Secrets of the Spies
Discover spy secrets from Mata Hari through the Cold War and meet the biggest double agents.

Secrets Of The NSA
To find out more about America's most secretive agency, Correspondent David Martin interviewed the NSA's Robert Bogart and Vernon Shiflett. Bogart teaches code breaking and Shiflett runs the recycling facility. Here are some nuggets from his conversations with them.

National Security Nightmare
The National Security Agency is the largest spy agency in the United States, and perhaps the world. Twice as big as the CIA, the NSA eavesdrops on communications worldwide.

News cameras have never been allowed inside the ultra-secret agency - until now.

Kerberos: The Network Authentication Protocol
Kerberos is a network authentication protocol. It is designed to provide strong authentication for client/server applications by using secret-key cryptography. A free implementation of this protocol is available from the Massachusetts Institute of Technology. Kerberos is available in many commercial products as well.

Bugnosis
Detect Web bugs. A Web bug is a graphic on a Web page or in an e-mail message designed to monitor who is reading the page or message. Web bugs are often invisible because they are typically only 1-by-1 pixels in size. In many cases, Web bugs are placed on Web pages by third parties interested in collecting data about visitors to those pages.

The Intelligence Network
IntellNet is dedicated to providing individuals and groups aggregated news and documents from around the world in an easy-to-access and understand format.
Our software and human experts traverse a network of more than five hundred Web sites to deliver the latest news, documents, photographs, videos and other content. We also provide original content based on reports received from our sources on the ground.

Science, Technology and the CIA
Mention of the Central Intelligence Agency generally elicits visions of espionage and covert action operations. It may also produce images of the multitude of finished intelligence products the agency turns out – from the tightly controlled President’s Daily Brief, available only to the president and a select circle of advisers, to a number of less restricted intelligence assessments. The CIA’s role in the application of science and technology to the art of intelligence is far less appreciated.

Windows XP activation technology revealed
A German copy-protection company has published details of Microsoft's technology for preventing casual copying of Windows XP but concluded the technology allows for reasonable upgrades and doesn't threaten customers' privacy.

OPSEC Professionals Society The OPSEC Professionals Society was established in March 1990 to further the practice of Operations Security as a profession and to foster the highest quality of professionalism and competence among its members. OPSEC is a process used to deny to potential adversaries information about capabilities and/or intentions by identifying, controlling and protecting evidence of the planning and executing of sensitive activities. This process is equally applicable to government, its contractors, and to private enterprise in the protection of their trade secrets and other proprietary information. While military strength and capability still are required during the next years of uncertainty, we must likewise protect our critical economic information and technologies from those who seek to exploit them to their benefit and to our disadvantage.
The Society provides a network through which all members can exchange views and information on such topics as methodology and procedures for planning, conducting and managing OPSEC programs and related activities. Its training sessions and publications emphasize practical and common sense approaches to solving OPSEC problems.

U.S. Navy caught hacking into British marine charity Web site
The U.S. Navy has been caught attempting to break in to secure areas of a World Wide Web site sponsored by a U.K. marine-mammal preservation charity, according to officials at the organization.

SpyLOG Has Sights Set on World
Russian Internet rating agency SpyLOG has crossed the border and is gearing up to market itself in other European countries, including the Czech Republic, Germany and Britain.
But visitors would never guess the agency's origins by glancing at its English-language site, www.mytrix.com. Its Russian roots are nowhere to be found — which is how SpyLOG wants it.
"We conducted polls and concluded that a statistical service that uses the word 'spy' in its name — and which has Russian roots on top of that — would surely provoke fears in people," SpyLOG head Andrei Andreyev, 26, said in an e-mail interview.

Microsoft withdraws Windows XP security claim
A promotional Web site for Microsoft's soon-to-be-released Windows XP operating system said it would offer the same protection from viruses and hackers that major corporations use, but the company has since rescinded those assurances.

...:::[Root-Core Network]:::...
Root-Core was formaly know as Neblonica and was founded in 1998. In 1999 the named changed to Root-Core. We mainly focus on information sharing not causing havoc. We do not spend all day searching for boxes to root. We are a open group, we almost always accept members.

Computer Key Stroke Logger
The KEYKatcher Monitors computer use in the home or the office and insures computer usage policy compliance. The KEYKatcher is a tiny recording device that clips onto your keyboard cable. It's used to log keystrokes typed on the computer. It doesn't require any external power source and it installs in less than 10 seconds. The KEYKatcher records all keystrokes, and stores them in a non-volatile memory. Even if the device is unplugged, or your computer is turned off, the KEYKatcher will continue to store the information.

[lf] Cyber Citizen lands Felony Charges?
Brian K. West, who did nothing more than try to get a local copy of an html document to pre-test how an ad would look on a webpage, using Microsoft FrontPage, may well have his reputation ruined and his finances destroyed as a result of his actions. He did not deface the site. He did not damage anything. He accidentally found a security hole, tested it to make sure it was real, and then called the owner of the site to inform him of the problem. In short, West faces a felony conviction for telling the Poteau Daily News that he discovered a serious misconfiguration in their server.

Weekend: Encryption effort
There have been many articles recently extolling the virtues of encrypting your communications via the internet. But there is another side to this debate. Russell Kay, senior reviews editor of Computerworld in the US, gives us his view.

Components of the Nigerian Letter Scam

The Nigerian Letter Scam and its infinite variations has been around since the late 70's and is probably known by every fraud officer in the world. This scam has now moved from being committed through snail mail to being committed via e-mail but its essential components are remain the same. The only difference is that the perpetrators have become more sophisticated in their letter writing.

In its simplest form, the scam involves an innocent recipient who receives a letter from an individual posing as a Government Official or an officer of a Nigerian state business who claims to have stolen millions of dollars and needs to get the money out of the country. The person cannot use his own bank account and therefore asks to send money to your bank account after which he would give you 10-35% of the money in exchange for this service. Once the fraudster has your account number he then empties your account.

ImageSat International
This is the Web page for the Israeli EROS A spysat. (The one launched by Russia that the Taiwanese are using to spy on the PRC.)

Censorship in action: why I don't publish my HDCP results
I have written a paper detailing security weaknesses in the HDCP content protection system. I have decided to censor myself and not publish this paper for fear of prosecution and/or liability under the US DMCA law.

Net activists launch campaign to jam 'Echelon'
Internet privacy activists and "hacktivists" have announced a day-long cyber-protest intended to jam a computer surveillance network whose existence isn't acknowledged by the governments said to run it.

Highlights The Report of the Independent Panel on the CIA In-Q-Tel Venture.

Satellite Vulnerability: a post-Cold War issue?
The widely discussed use of US reconnaissance satellites during the Gulf War will strongly motivate future regional adversaries to seek ways of countering US space-based assets. The presumption that reconnaissance satellites can operate covertly is obsolete. Tracking US reconnaissance satellites can provide valuable support to a hostile country's concealment and deception programs. Iraq's ability to conceal both major weapons programs and many SCUD launchers is a warning of the serious consequences such programs can have. Space surveillance systems of the type likely to be acquired by Third World countries are inconspicuous and may well go undetected, while direct ascent ASAT rockets are within the reach of many countries. This article argues that fundamental reexamination of the functions and architecture of US overhead reconnaissance is needed, and should be done outside the traditional Cold War bureaucratic structures.

Mike McCants' Satellite Tracking TLE ZIP Files
The "McCants" weekly file has approximately 1570 LEO satellite elements (including elements on classified satellites). This file is updated daily about 4:25PM Central Time. The "higher drag" and "visual" elements are updated daily. The other OIG elements are updated on Wednesday and Thursday afternoons. The classified objects are updated whenever I receive and process observations.

The NT Toolbox
This page contains links to files we are making available for download here. This may change around from time to time. Click on the appropriate link to begin downloading. Please do not send any email asking support for these. These programs are freely available on the Internet. We just thought we'd save you the trouble of scouring for the best utilities. ,

Foundstone
As part of our ongoing R&D efforts, the Foundstone team has created several unique utilities that have assumed an indispensable place in our security toolkit. Foundstone programmers wrote these utilities, and we use them in our own security assessments. Foundstone is providing the software free of charge to the public.

..:: CD Freaks ::.. [ The Power of United Burners ] - [ Main Page ]
How to bypass the anti-copy measurements on CD's.

My Code Red Advisory
A new worm appeared on the Internet and began propagating using Microsoft's increasingly infamous "Can O'Worms" IIS web servers.

Calling itself CodeRedII, this is a completely new worm, written from scratch and with a very different agenda and replication technology.

HackerHeaven
This is hackerheaven, a site for hackers, by hackers. With hacker, I mean the hacker mentioned in the Jargon file (no, not the one carving furniture :)

Dshield - Distributed Intrusion Detection System
DShield.org is an attempt to collect data about cracker activity from all over the internet. This data will be cataloged and summarized. It can be used to discover trends in activity and prepare better firewall rules.
Right now, the system is tailored to simple packet filters. As firewall systems that produce easy to parse packet filter logs are now available for most operating systems, this data can be submitted and used without much effort.
More complex patterns, such as are used by application level firewalls may be handled in the future.

Cops, Crimes and HAL2001
HAL2001 is an event similar to HIP97, where hackers come together, learn about lots of nifty new stuff and pick each others brains clean. Unfortunately, a lot of scriptkiddies that call themselves 'hackers' attend as well, and usually only because of the 1 Gbit uplink that will be present.
Rop Gonggrijp (from hacktic fame) wrote a short text about HAL2001, targeted at that dubious group of people. A fun read for real hackers (tm) and a wise lesson for neophytes. Read on for the text.

Hacker Grabs JDS Earnings Release Prior To Posting
Executives at the fiber-optics company, based here, said during the company's earnings call Thursday that a hacker gained access to a draft of its fourth-quarter financial release as it was being prepared for the company's Web site. JDS quickly halted trading of its stock because of the incident.
JDS had its earnings release ready to post on its Web site with the push of a button Thursday, and someone was able to guess the release's URL before it became public on the site, a company spokesman said Friday.

Save Your Site
For the fullest online security, companies need the broadest array of defenses. Many commercial sites maintain firewalls to control access and allow certain kinds of content (or people) in or out. Most encrypt sensitive data like credit card numbers in transit over the Internet. Yet web applications inside your firewall are essentially wide-open targets. Holes and vulnerabilities in commercial web software constantly crop up and need to be filled or plugged with upgrades or patches from vendors.
Businesses can't afford to wait passively for security glitches to be discovered and fixed manually. And continually fixing code written in-house by hand is an expensive, time-consuming and never-ending task. In fact, most sites add so much new code every day that they could never hope to keep up by patching or fixing holes manually. This makes a majority of sites essentially insecure.
Sanctum's AppShield™ can make your online business all but impenetrable to Web Perversion. And our AppScan™ software can show you where your applications are vulnerable, and recommend how to fix them.
Protecting the applications running at the heart of your online business by manually patching or upgrading is a strategy that will fail you, sooner or later.

SECUROM
SecuROM™ is a PC CD-ROM copy protection solution developed by Sony DADC. Together with its sister plants Sony DADC is the world market leader in CD replication services. Protect your profits with SecuROM™and see what a difference it makes.

The Spread of the Code-Red Worm (CRv2)
Around 10:00 UTC in the morning of July 19th, 2001 a random seed variant of the Code-Red worm (CRv2) began to infect hosts running unpatched versions of Microsoft's IIS webserver. The worm spreads by probing random IP addresses and infecting all hosts vulnerable to the IIS exploit. As noted by others, there are at least two variants of the worm: one that used a fixed, static seed for its random number generator, and another that used a random seed. [eeye] [stuart] In this paper, we examine the characteristics of the random seed variant of Code-Red (CRv2).

ITNet exposes job seekers' details online
A job applicant to IT services firm ITNet had more to worry about than company perks after sensitive details from his application form were left accessible online.

FAQ and Guide to Cracking

I am going to describe the methods and strategies used to access various UNIX hosts among the internet unauthorizedly. This guide will not teach you how to hack, neither do you have to be a hacker to use the techniques described here. Hacking means finding your own way to do it, and finding new approaches to accomplishing something. I am only going to supply you with one possible approach to cracking.

Commonly overlooked audit trails on intrusions
This is my attempt of compiling a 'top list' of audit trails that
are being left after intrusions where the intruders try to cover their
tracks but don't do a good job. To put it short, there are actually
a lot of audit trails on a normal UNIX system, which can almost all
be overcome, but with some effort, that most intruders evade.

Protecting against the unknown - improving information security for the future
This paper attempts to define the problem and answer the question:
What pure or applied technical measures can be taken to protect the Internet against future forms of attack?

Inside the E-Mails of a Spy
The following are representative samples of Robert P. Hanssen's thinking on various issues, from the breakdown in security at DOE facilities and Clinton-administration bungling to Israeli intelligence operations to Fidel Castro and the Elian Gonzalez case. All are taken from a collection of Hanssen's e-mails.

Inside the E-Mails of a Spy
The following are representative samples of Robert P. Hanssen's thinking on various issues, from the breakdown in security at DOE facilities and Clinton-administration bungling to Israeli intelligence operations to Fidel Castro and the Elian Gonzalez case. All are taken from a collection of Hanssen's e-mails.

STUDY MANUAL   COUNTER INTELLIGENCE  PROLOGUELN324
The purpose of this booklet is to present basic information on the mission and activities of Counter Intelligence. But, with the understanding that the primary mission is to support the commanders of the armed forces. This booklet is dedicated to the concepts of Counter Intelligence in relation with its functional areas, the application of these functions, and a specific dedication and instructions on how to apply these functions. The terms "special agent of Counter Intelligence" (SA) refers to all those persons who conduct and contribute to the handling and gathering of information of the
multi-disciplinary intelligence of the hostile services. This booklet is
primarily oriented at those persons involved in the control and execution of the operations of CI. In like manner, this booklet has a very significant value for other members of the armed forces that function in the areas and services of security and other departments of intelligence.

When Secrets Crash
When a passenger airliner crashes, investigators from the National Transportation Safety Board quickly arrive on the scene to try to determine what went wrong. Press conferences and press coverage follow. The NTSB Web site notes that media are briefed at least once a day by one of the board members accompanying the investigating team and that a public affairs officer maintains contact with the media. Viewers of the nightly news often see aerial images of the crash site. The flight and airplane involved will be precisely identified by the airline and NTSB. Eventually, the public can expect a detailed report on the conclusions.
Things can be very different when the crash involves a military aircraft--particularly if it is an airplane whose existence or mission the United States has not yet acknowledged or that carries particularly sensitive equipment. Over the years, a variety of secret intelligence and military aircraft have crashed, and the specifics of US government responses have varied--sometimes as the result of the different circumstances of the crashes, other times as the result of different rules for dealing with the press queries concerning classified programs. However, preserving secrecy has been a constant objective.

U.S. News: China: How big a threat? (7/23/01)
It was originally created by the U.S. Air Force and is now entrusted with some of the U.S. government's most sensitive and secretive national security studies. So executives at Rand, a think tank based in Santa Monica, Calif., were stunned when intelligence officials called on June 8 to say they were firing Rand from a classified project ordered by Congress to assess China's future military capabilities. The National Intelligence Council (NIC), a group that reports directly to CIA chief George Tenet, concluded that Rand was failing to do its job adequately and decided it needed to hire another contractor.

Fight over Euro-intelligence plans
The sudden closure of one of the world’s largest spy stations is a potential harbinger of confrontation between the U.S. and Germany.

The alt.2600 FAQ file on hacking, including loops
The purpose of this FAQ is to give you a general introduction to the topics covered in alt.2600 and #hack. No document will make you a hacker.

Internet Storm Watch Project
Today Internet Storm Center gathers more than 3,000,000 intrusion detection log entries every day. It is rapidly expanding in a quest to do a better job of finding new storms faster, isolating the sites that are used for attacks, and providing authoritative data on the types of attacks that are being mounted against computers in various industries and regions around the globe. Internet Storm Center is a free service to the Internet community. The work is supported by the SANS Institute from tuition paid by students attending SANS security education programs.

www.hack.co.za
Known exploits.

.:[packet storm]:.
An extremely large and current security tools resource which is for the community, by the community. Packetstorm is a non-profit organization kept alive for the sole purpose of helping secure the World's networks.

GaRe's Free Security Info
This site is dedicated to protecting internet users from Denial of Services (Dos) attacks for windows, explotes, by providing ways of protecting your system. These pages up to date with the most recient attacks, and explotes. If this page is missing a protection you know is avalible, has incorrect information, or missing information on some explote, please let me know.

A rogue's gallery of denial of service attacks
Tuesday, May 22, started out as just another day at CERT Coordination Center at Carnegie Mellon University in Pittsburgh. By day's end, CERT, widely regarded as the Fort Knox of computer security, would be knocked off the net by a distributed denial of service (DDoS) attack. In 2001, even the crème de la crème of network security is vulnerable. If it can happen to CERT, it can happen to you.

Secure Online Behavior: Developing Good Security Habits

The Internet has evolved to be a fundamental business innovation with a clearly demonstrated ability to positively affect organizations as well as individuals. Unfortunately, the Internet was not designed with security in mind - it is inherently insecure. Regardless of how many anti-virus programs, firewalls, and other security programs computer users may use, security continues to be a serious issue. And human error continues to be the weakest link in the security chain.

While human error can never be entirely eliminated, it can certainly be minimized. One of the best things that users can do to protect themselves and their information is to be aware of which behaviors may place them at risk, and to eliminate those behaviors. This article is the first in a series of three that will attempt to introduce readers to good security habits. This installment will offer a brief overview of some of the security threats that prey on bad user habits, and will introduce some fundamental secure habits that should be used for all computer applications. The ensuing articles will offer more in-depth examinations of the threats posed specifically by e-mail and Internet usage, and the habits that users can adopt to minimize the risks posed by these threats.

The Attacks on GRC.COM
Nothing more than the whim of a 13-year old hacker is required to knock any user, site, or server right off the Internet.

I believe you will be as fascinated and concerned as I am by the findings of my post-attack forensic analysis, and the results of my subsequent infiltration into the networks and technologies being used by some of the Internet's most active hackers.

Microsoft Does Not Understand Security
With a bit of horror, I learned that Microsoft's developers have no understanding of security.

Spy Suspect Hanssen to Plead Guilty
Trying to close the books on an espionage debacle that rocked the FBI, the government struck a deal with ex-agent Robert Hanssen that would spare his life in exchange for a full confession detailing secrets he sold the Russians, people familiar with the case said Tuesday.

Spy Agency Reveals Some, Not All
Hidden along Route 32, in a drab beige building that looks every bit the cheap motel it once was, is America's official museum of secrets.

Windows 2000 Security Recommendation Guides
NSA has developed and distributed configuration guidance for Microsoft Windows NT in the form of NT configuration guides. These guides are currently being used throughout the government and by numerous entities as a security baseline for their NT systems.
To assist our Windows 2000 user community, NSA has developed security configuration guidance for Windows 2000, with the cooperation of the other government agencies and industry partners who provided their expertise and extensive technical review. The configuration guides for Microsoft Windows 2000 are being posted on the NSA web site and are presented in three parts: ".inf" files, configuration guides, and supporting documents.