Difference between pages "LEET '08" and "Libuna"

From ForensicsWiki
(Difference between pages)
Jump to: navigation, search
m (New page: As the Internet has become a universal mechanism for commerce and communication, it has also become an attractive medium for online criminal enterprise. Today, widespread vulnerabilities i...)
 
 
Line 1: Line 1:
As the Internet has become a universal mechanism for commerce and
+
{{Infobox_Software |
communication, it has also become an attractive medium for online
+
  name = libuna |
criminal enterprise. Today, widespread vulnerabilities in both software
+
  maintainer = [[Joachim Metz]] |
and user behavior allow miscreants to compromise millions of hosts,
+
  os = [[Linux]], [[FreeBSD]], [[NetBSD]], [[OpenBSD]], [[Mac OS X]], [[Windows]] |
conceal their activities with sophisticated system software, and manage
+
  genre = {{Analysis}} |
these resources via a distributed command and control framework. This
+
  license = {{LGPL}} |
platform in turn provides economics of scale for a wide range of
+
  website = [http://code.google.com/p/libuna/ http://code.google.com/p/libuna/] |
criminal activities including spam, phishing, DDoS, click fraud, and so
+
}}
on.
+
  
LEET has evolved from the combination of two other successful workshops,
+
The '''libuna''' package contains a library and application to read and write the [[Text File (TXT)]] format in different characters encodings.
the ACM Workshop on Recurring Malcode (WORM) and the USENIX Workshop on
+
Hot Topics in Understanding Botnets (HotBots), which have each dealt
+
with aspects of this problem. However, while papers relating to both
+
worms and botnets are explicitly solicited, LEET has a broader charter
+
than its predecessors. We encourage submissions of papers that focus on
+
any aspect of the underlying mechanisms used to compromise and control
+
hosts, the large-scale "applications" being perpetrated upon this
+
framework, or the social and economic networks driving these threats.
+
  
Topics of interest include, but are not limited to:
+
Libuna currently supports:
 +
* 7-bit ASCII
 +
* ISO 8859-1, 8859-2, 8859-3, 8859-4, 8859-5, 8859-6, 8859-7, 8859-8, 8859-9, 8859-10, 8859-11, 8859-13, 8859-14, 8859-15
 +
* [[Windows]] 874, 932, 936, 949, 950, 1250, 1251, 1252, 1253, 1254, 1255, 1256, 1257, 1258
 +
* Kod Obmena Informatsiey 8-bit; KOI8-R, KOI8-U
 +
* UTF-7, UTF-8, UTF-16, UTF-32
  
- Infection vectors for malware (worms, viruses, etc.)
+
== History ==
- Botnets, command, and control channels
+
- Spyware
+
- Operational experience
+
- Forensics
+
- Click fraud
+
- Measurement studies
+
- New threats and related challenges
+
- Boutique and targeted malware
+
- Phishing
+
- Spam
+
- Underground markets
+
- Carding and identity theft
+
- Miscreant counterintelligence
+
- Denial-of-service attacks
+
- Hardware vulnerabilities
+
- Legal issues
+
- The arms race (rootkits, anti-anti-virus, etc.)
+
- New platforms (cellular networks, wireless networks, mobile devices)
+
- Camouflage and detection
+
- Reverse engineering
+
- Vulnerability markets and zero-day economics
+
- Online money laundering
+
- Understanding the enemy
+
- Data collection challenges
+
  
LEET '08 will be a one-day event, Tuesday, April 15, 2008, co-located
+
Libuna was created by [[Joachim Metz]] in 2008, while working for [http://en.hoffmannbv.nl/ Hoffmann Investigations].
with the 5th USENIX Symposium on Networked Systems Design and
+
Implementation (NSDI '08), which will take place April 16-18, 2008.
+
  
The submissions deadline is 11:59 p.m. EST on Monday, February 11, 2008.
+
The codepages are based on [http://www.gnu.org/software/libiconv/ libiconv] and documentation available by [[Microsoft]].
Submissions guidelines can be found at
+
http://www.usenix.org/leet08/cfpb
+
  
We look forward to your submissions.
+
Currently libuna mainly supports the Windows codepages to be able to convert these when encountered in file formats that use them.
  
Fabian Monrose, Johns Hopkins University
+
Libuna is intended as a character encoding support library and is used in:
LEET '08 Program Chair
+
* [[libewf]]
leet08chair@usenix.org
+
* [[libnk2]]
 +
* [[libpff]]
 +
 
 +
== Tools ==
 +
The '''libuna''' package contains the following tools:
 +
* '''unaexport''', which exports the plain text files in different encodings. It also allows end of line conversion and control over the byte order mark (BOM).
 +
 
 +
== External Links ==
 +
 
 +
* [http://code.google.com/p/libuna/ project site]
 +
* [http://libuna.sourceforge.net Old project site]

Revision as of 16:35, 24 June 2012

libuna
Maintainer: Joachim Metz
OS: Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows
Genre: Analysis
License: LGPL
Website: http://code.google.com/p/libuna/

The libuna package contains a library and application to read and write the Text File (TXT) format in different characters encodings.

Libuna currently supports:

  • 7-bit ASCII
  • ISO 8859-1, 8859-2, 8859-3, 8859-4, 8859-5, 8859-6, 8859-7, 8859-8, 8859-9, 8859-10, 8859-11, 8859-13, 8859-14, 8859-15
  • Windows 874, 932, 936, 949, 950, 1250, 1251, 1252, 1253, 1254, 1255, 1256, 1257, 1258
  • Kod Obmena Informatsiey 8-bit; KOI8-R, KOI8-U
  • UTF-7, UTF-8, UTF-16, UTF-32

History

Libuna was created by Joachim Metz in 2008, while working for Hoffmann Investigations.

The codepages are based on libiconv and documentation available by Microsoft.

Currently libuna mainly supports the Windows codepages to be able to convert these when encountered in file formats that use them.

Libuna is intended as a character encoding support library and is used in:

Tools

The libuna package contains the following tools:

  • unaexport, which exports the plain text files in different encodings. It also allows end of line conversion and control over the byte order mark (BOM).

External Links