GRAY-WORLD.NET TEAM
Técnicas inusuales para atravesar Firewalls, seguridad en redes y sistemas.

It was all very well to say `Drink me,' but the wise little Alice was not going to do that in a hurry. `No, I'll look first,' she said, `and see whether it's marked "poison" or not'; for she had read several nice little histories about children who had got burnt, and eaten up by wild beasts and other unpleasant things, all because they would not remember the simple rules their friends had taught them: such as, that a red-hot poker will burn you if you hold it too long; and that if you cut your finger very deeply with a knife, it usually bleeds; and she had never forgotten that, if you drink much from a bottle marked `poison,' it is almost certain to disagree with you, sooner or later.

Lewis Carroll "Alice In Wonderland"
Alice
English Chinese French Russian Polish Italian
Inicio | Proyectos | Documentos | Foro | Equipo | Enlaces | Colaborar
 Projects 

Cooking channels - is a set of two python scripts (CGI and client) allowing to build a communication channel over HTTP cookies.

The paper How to cook a covert channel [Hakin9 Pdf] originally released in the hakin9 magazine describes step by step how to implement a few covert channel concepts over HTTP cookies :
   o Control communication channel
   o As stealth as possible (don't care about latency or bandwith)
   o Backdoor oriented

The paper finally describes a funny second level caching method allowing to use HTTP proxy servers as intermediaries to build a communication channel thus having a way to communicate with a third party without having to reach the remote server for each data packet.

TGW
Current version: 1.1; README , CHANGELOG
Download | md5sum: 2ea1c6a47486e123439a40c3ca64484a
http://gray-world.net/projects/cooking_channels/cooking_channels-1.1.tar.gz

Index of projects



Httpostng - is POC tool converting a text file into one or several png images and sending them to a remote CGI so that a detector has to figure if all POST images are legitimate or suspicious. [learn more]


Team member's sites: blog.0x557.org/icbm/


GNU  GNU General Public License
 GNU Free Documentation License
IRC://irc.0x557.org:3331/gray-world.net
CHANGELOG, MIRRORS, LEGAL NOTICE