"How To Build Your Own Network Intrusion Kit."

Greetings;

The enclosed are the written-up notes for a presentation I did at the
recent "Access All Areas II" conference in London; the talk (based on
ideas from my presentation slides from the '95 USENIX Security
Symposium) describes how a simple network auditing tool/intrusion kit
can be constructed with a minimum of keystrokes, with an aim of
convincing journalists that this is not rocket science.

Kindly bear this fact (that the talk is aimed at non-security non-unix
people) before flaming me to death for such a "trivial" posting that
may be beneath your dignity.

That said, some of the concepts herein are quite amusing, and the
modular toolkit approach to auditing tool construction is used to the
full.

The examples may provide useful teaching material for some people.

Further reading may be found at:

	ftp://coast.cs.purdue.edu/pub/doc/network/
as:	muffett-wanhack.ps.Z
and:	muffett-wanhack-slides.tar.gz

If you have positive feedback for the document, or possibly extensions
and/or contributions, please feel free to contact me, and I may post
revisions occasionally.

	- alec

ps: I apologise in advance for the fact that this is (in contravention
of USENET regs) a uue'd gzip'ped tar file.  Yes, as a backup moderator
for the (moribund) comp.sources.misc I should know better, but to be
quite honest given the nature to the contents of the file (symlinks,
gifs, etc) it's a whole lot easier to tar it up and post it, than to
fight uphill against GNU sharutils.