[31183] in bugtraq
[ paper + project release ] kless - connecting to void and getting
daemon@ATHENA.MIT.EDU (setuid)
Thu Aug 14 16:46:10 2003
Message-ID: <3F3BDF2E.2070201@violating.us>
Date: Thu, 14 Aug 2003 16:12:46 -0300
From: setuid <s3tuid@violating.us>
MIME-Version: 1.0
To: bugtraq@securityfocus.com, focus-linux@securityfocus.com
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
hello list,
For the last couple of months i've been researching some peculiarites
of the
transport layer protocol which deflowered into a project of mine.
The name is kless, and its goal is to be able to communicate using
transport
layer protocols (tcp/udp) without opening any ports ( at least on the
server-
side ) and still be able to talk transparently to a client. Even if this
topic
and probly the same technique are already known and a few tools already
exists
i've written a paper which explains the whole concept and further more
extends
it.
The project also explains a way for you to kill udp sockets, even if
you do-
nt have anything todo with the connection and a few other tricks. The
text wi-
ll culminate into the coding of a remote portless shell and some other
tools
for explaning purpose..
Hope you guys enjoy it, comments/flames/feedbacks are expected...
[kless paper + proof of concept code + few other tools ]
http://setuid.violating.us/releases/kless.tar.gz
setuid at violating dot us | s3tuid at violating dot us
