Reflective Dll Injection [PDF]
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process. As such the library is responsible for loading itself by implementing a minimal Portable Executable (PE) file loader.

ARP Poisoning : An investigation into spoofing the Address Resolution Protocol [PDF]
ARP spoofing is the technique of forging fake ARP messages on a network. It is possible to update a host's ARP cache with false information via spoofed ARP Replies. This technique is known as 'ARP Poisoning' and is the basis of more complex attacks such as TCP/IP connection spoofing and hijacking.

Security Weaknesses Inherent in the Design of TCP Over IP [PDF]
An investigation into the techniques and issues dealing with Source Routing, Sequence Number Prediction, Connection Spoofing and Connection Hijacking. As an accompaniment to this paper I have designed two tools. The first (isnsampler.c) is a tool to sample the initial sequence numbers of a machines TCP/IP stack. The second, Janus is a non-blind TCP/IP connection spoofer with ARP spoofing to increase performance.

SSL : A discussion of the Secure Socket Layer [PDF]
The Secure Socket Layer is the protocol that gives e-commerce the confidence it needs to allow on-line banking and shopping. SSL provides and encrypted bi-directional data stream. It is commonly used for secure HTTP connections where credit card information is going to be sent along a network. This is a paper discussing the theory and practice of SSL.

Buffer Overflows : Defending against arbitrary code insertion and execution [PDF]
Buffer Overflows are one of the most common and potentially deadly forms of attack against computer systems to date. They allow an attacker to locally or remotely inject malicious code into a system and compromise its security. This paper deals with the technical details concerning buffer overflows and the methods of prevention.