PoC exploit for the NetFilter SNMP ALG helper DoS vulnerability
June 30, 2006

Proof of concept exploit code for the double-free vulnerability in NetFilter’s snmp_trap_decode() function in Linux kernels and older, causing a kernel panic (CVE-2006-2444)

NIDS polymorphic evasion - The End?
July 25, 2005

Today’s Network Intrusion Detection Systems, alarmed of the dangers brought by polymorphic shellcodes, try to detect them using desperate methods that eat up CPU cycles. This is done so the claim can be made that such NIDS foil even the most devious crackers. The truth of the matter is, they don’t.

This paper demonstrates the weaknesses in today’s polymorphism detection methods, and explores techniques to exploit them. The accompanying ECL-Polynop tool can be obtained from here.

Exploit for a stack-based buffer overflow in MySQL MaxDB
April 29, 2005

An exploit for the HTTP GET request with long file parameter after a percent (“%”) character vulnerability in MySQL MaxDB and earlier (CVE-2005-0684)