The Security Resource Library
Courtesy of Core Competence, Inc.
- Incident Response, Advisories
- Portals & Publications
- Security: General
- Authentication, PKI, IdM
- Intrusion Detection
- VPNs, IPsec, SSL, SSH
- Firewalls
- Secure Email, Spam
- Extranet, B2B, B2C, Privacy
- Secure Broadband Access
- Desktop Security
- Security & DNS
- Denial of Service Attacks
- Operating System Security
- 3rd Party Host Scanners
- Wireless LAN Security
- Anti-Hacking, Forensics
- Secure Programming
- Application Security
- Web Server Security
- Spyware
- Viruses, Worms
- VOIP Security
This page uses style sheets created by Ruthsarian Labs
Denial of Service (DOS) Attacks
A stacheldraht agent scanner (C source code) by Dave Dittrich, Marcus Ranum, and others
A trinoo/TFN/stacheldraht agent scanner (C source code, BETA) by Dave Dittrich, Marcus Ranum, George Weaver, David Brumley, and others
AntiCode
AntiOnline
Distributed Denial of Service Attacks by Rik Farrow>
Distributed Denial of Service (DDoS) Attacks/tools by David Dittrich
Egress Filtering by Mark T. Edmead
Egress Routing
Future denial of service attacks by Kurt Seifried
Hacker News Network
How to Spot Source Address Spoofing by Rik Farrow
Information on network ingress filtering, RFC 2267
Quality of Service for Denial of Service Attack Prevention by Steve Kohalmi, Randy Charland
Network Defense Richard Power & Rik Farrow's archive of Network Magazine columns
Some TCP/IP Vulnerabilities: Weaknesses, attack tools, defenses by David Dittrich
SYN cookies by D. J. Bernstein
The "stacheldraht" distributed denial of service attack tool by David Dittrich
The "Tribe Flood Network" distributed denial of service attack tool by David Dittrich
The DoS Project's "trinoo" distributed denial of service attack tool by David Dittrich
Operating System Security
*nix operating systems
A Simple Linux Firewall by David Wagner
Anti-Trojan and Trojan Detection with In-Kernel Digital Signature testing of Executables by Michael Williams
Another Paper on Linux Security by Bronc Buster
Armoring Linux by Lance Spitzner
Basic Steps in Forensic Analysis of Unix Systems by Dave Dittrich
Hacking Linux and How to Stop It by Craig Ozancin
Implementing Security on Linux by Patrick Lambert
Linux firewalling with ipchains by Vincent Danen
Making UNIX Servers More Secure by Rik Farrow
Secure interprocess communication by D. J. Bernstein
Security Enhanced Linux from the NSA
Tuning Solaris for FireWall-1 by Rob Thomas
Unix Auditor's Practical Handbook by K. K. Mookhey
Unix Computer Security Checklist
UNIX IP Stack Tuning Guide by Rob Thomas
UNIX Security by guidob
Windows Operating Systems
A Complete List of Windows Event Identifiers
Cracking User Passwords in Windows 2000
A Starting guide to armoring NT by Lance Spitzner
Hardening EFS by Roberta Bragg
How to Make Windows 2000 and NT 4 Passwords Uncrackable by Joel Kleppinger
National Security Agency Security Recommendations: Windows 2000 Guides
NTBug Traq
NTSecurity.Net
NTToolbox.com
Automated NT Vulnerability Testing by Dave Piscitello
Microsoft Security Bulletins at Microsoft TechNet
searchNT.com
Securing your Operating System: Guidelines for Hardening Windows 2000
A friendly alternative to registry editing by Dave Piscitello
The Microsoft Security Advisor
Security Settings in Windows Server 2003 and Windows XP at Microsoft TechNet
Windows NT Passwords by Bill Wall
Windows NT/2000 Tips, Tricks, Registry Hacks and more at Microsoft TechNet
Windows 2000 Magazine Online at Microsoft TechNet
Windows 2000 Security Hardening Guide at Microsoft TechNet
Windows 2000: An Early Security Perspective by James Michael Stewart and Ed Tittel
Windows 2000's VPN-Related Security Issues by Lisa Phifer
Windows 2000 Vulnerabilities by Phil Cox
Windows Server 2003 Security Guide at Microsoft TechNet
Windows XP SP2 Resources Core Competence
Stepping up to XP: What to expect at your firewall by Dave Piscitello
Securing XP Desktops: Account and Auditing Policies by Dave Piscitello
Securing XP Desktops: Controlling Local Use and Network Access by Dave Piscitello
Host, Virus, Spyware Scanners
Antivirus Resources Core Competence
FutureSoft Free External Security Scan
Hacker Whacker Free Security Scan
PestPatrol's PestScan Spyware Scanner
Spyware Resources Core Competence
SecuritySpace Desktop Security Audit
SeigeSoft's Privacy Analysis of your Internet Connection
Shavlik Technologies QuickInspector for the Web
WebTrends Online Security Analyzer
Steve Gibson's Shields Up!
Steve Gibson's LeakTest
SyGate Online Security Scan
Symantec Security Check