Covert Channels Implementations

A covert channel is an an enforced, illicit signaling channel allowing a user to surreptitiously contravene the multilevel separation policy and unobservability requirements for an ICT system. A covert channel, if present, could be used in highly secure environments to disclose sensitive data towards users that don't have the clearances to access to. It could be useful for Security Architects to have a repository of some covert channel implementations, in order to test their security solutions against this kind of vulnerabilities. The following list represents the state of the art of the implementations present on the Internet. This is the best of my knowledge and I make no claim of completeness or correctness.

 

STORAGE COVERT CHANNELS

Ptunnel: http://www.cs.uit.no/~daniels/PingTunnel/

MsnShell: http://gray-world.net/pr_msnshell.shtml/

ICMPTX: http://thomer.com/icmptx/

DNScat: http://tadek.pietraszek.org/projects/DNScat/

Corkscrew: http://www.agroman.net/corkscrew/

AckCmd: http://ntsecurity.nu/toolbox/ackcmd/

OzymanDNS: http://dankaminsky.com/?s=ozyman

Simple ICMP Tunnel: http://sourceforge.net/projects/itun/

Covert Channel Tunneling Tool: http://gray-world.net/pr_cctt.shtml

HTTunnel: http://sourceforge.net/projects/httunnel/

Skeeve: http://www.gray-world.net/poc_skeeve.shtml

Firepass: http://gray-world.net/pr_firepass.shtml

Mailtunnel: http://packetstormsecurity.com/files/author/951/

VSTT: http://steffen-wendzel.blogspot.de/p/covert-channel-software.html

LOKI2: http://phrack.org/issues/51/6.html

 

TIMING COVERT CHANNELS

OSCTC: https://code.google.com/p/osctc/

 

Tags per sicurezza: