Unusual firewall bypassing techniques, network and computer security.

It was all very well to say `Drink me,' but the wise little Alice was not going to do that in a hurry. `No, I'll look first,' she said, `and see whether it's marked "poison" or not'; for she had read several nice little histories about children who had got burnt, and eaten up by wild beasts and other unpleasant things, all because they would not remember the simple rules their friends had taught them: such as, that a red-hot poker will burn you if you hold it too long; and that if you cut your finger very deeply with a knife, it usually bleeds; and she had never forgotten that, if you drink much from a bottle marked `poison,' it is almost certain to disagree with you, sooner or later.

Lewis Carroll "Alice In Wonderland"
Chinese French Russian Spanish Polish Italian
Home | Projects | Papers | Forum | Team | Links | Contributions

Welcome on the GW team website dedicated to our main areas of interest and research which are the "Network Access Control Systems" bypassing techniques : Tunneling, Covert channels, Network related steganographic methods and so on.

Covert channels are simple yet very effective mechanisms that enable communication via unauthorized or not even thought of methods. They can pass over various access control, monitoring and reporting network systems as these systems usually fail to check the intrinsic value of data streams in transit.

Network Covert Channels are often based on the concept of Tunneling. This mechanism allows encapsulation of any protocol within another enabling thus authorized data streams to carry arbitrary data.

At present, we've developed some projects that allow to establish Covert Channels inside TCP (HTTP, HTTPS, MSN) and UDP protocols : Active Port Forwarder - SSL secure packet tunneling; CCTT - arbitrary TCP and UDP data transfers through TCP,UDP and HTTP POST messages; Firepass - arbitrary TCP and UDP data transfers through HTTP POST messages; MsnShell - remote Linux shell through the MSN protocol; Wsh - remote Unix/Win shell through HTTP and HTTPS protocols; Cooking channels - communication channel over HTTP cookies; g00gle CrewBots - communication channels over the g00Gle.

Read our papers related to Covert Channel techniques : creation, covering and detection of such kind data flows.

All of our programs/papers are released under the GNU General Public License (GPL) version 2.0 or under the GNU Free Documentation License, Version 1.2 (GFDL). They are meant to be used for educational/research purposes.

We also have other interesting links and papers, related to our favorite topic or to the main computer and network security research field. If you have any suggestion or comment, don't hesitate to drop few lines at our general discussion forum or to visit us on the Irc.

Along with NACS bypassing topics, we are also interested to team up or cooperate on other areas related to computer and network security.

If you find our work of interest or use, please do consider contributing.

Skeeve - is POC tool allowing to tunnel TCP connection into ICMP echo requests/reply using a spoofing method and a bounce server. [learn more]

Team member's sites: hhworld/ The Hitchhiker's World e-zine

GNU  GNU General Public License
 GNU Free Documentation License