Portal Home > Knowledgebase > Articles Database > Exploit Scanner s
Exploit Scanner s
Posted by ALEXEI_M, 10-02-2012, 09:02 AM |
HI All
What are the free exploit Scanners ? Please post on this thread.
I'm using Scanner (cxs) . How about you ?
|
Posted by TravisT-[SSS], 10-02-2012, 09:09 AM |
LSM and NSIV if configured right can be great services.
OSSEC/SNORT Also are amazing when setup correctly.
|
Posted by eth00, 10-02-2012, 09:24 AM |
Along with those linux maldet (lmd) can also be useful.
|
Posted by ALEXEI_M, 10-02-2012, 11:05 AM |
I found nice tools for server maintenance.
Security Installation Phase3
Install PSAD Port Scan Detector
wget http://logicsupport.com/files/psad-2.0.3.tar.gz
wget http://logicsupport.com/files/Date-Calc-5.4.tar.gz
tar -xzvf Date-Calc-5.4.tar.gz
cd Date-Calc-5.4
perl Makefile.PL
make test
make install
wget http://logicsupport.com/files/Unix-Syslog-0.100.tar.gz
tar -xzvf Unix-Syslog-0.100.tar.gz
cd Unix-Syslog-0.100
perl Makefile.PL
make test
make install
Make sure you have a firewall runing on the server.
tar -xzvf psad-2.0.3.tar.gz
cd psad-2.0.3
./install.pl
/sbin/iptables -A INPUT -j LOG log-prefix DROP
/sbin/iptables -A INPUT -j DROP
/etc/rc.d/init.d/psad start
=====================================
Install LSM Linux Socket monitor
cd /usr/local
rm -rf lsm*
wget http://logicsupport.com/files/lsm-current.tar.gz
tar -xzvf lsm-current.tar.gz
cd lsm-*
./install.sh
======================================
Install NSIV Network Socket Inode Validation
cd /usr/local
rm -rf nsiv*
wget http://logicsupport.com/files/nsiv-current.tar.gz
tar -xzvf nsiv-current.tar.gz
cd nsiv-*
./install.sh
=======================================
Install SNORT
wget http://logicsupport.com/files/snort-2.6.1.3.tar.gz
tar -xzvf snort-2.6.1.3.tar.gz
cd snort-2.6.1.3
./configure
make
make install
cp snort-2.6.1.3/etc/snort.conf
Specify IP address : HOME_NET in snortd.conf
/etc/init.d/snortd start
================================
AIDE installation and configuration
Install libmhash-devel if it is not present.
cd /usr/local
wget http://logicsupport.com/files/aide-0.13.1.tar.gz
tar -xzvf aide-0.13.1.tar.gz
cd aide-0.13.1
./configure
make
make install
================================
Install PRM Process resource monitor
cd /usr/local
rm -rf prm*
wget http://logicsupport.com/files/prm-current.tar.gz
tar -xzvf prm-current.tar.gz
cd prm-*
./install.sh
============================
Install SPRI System priority configuration
cd /usr/local
rm -rf spri*
wget http://logicsupport.com/files/spri-current.tar.gz
tar -xzvf spri-current.tar.gz
cd cpri-*
./install.sh
=============================
Install SIM System Integrity Monitor
cd /usr/local
rm -rf sim*
wget http://logicsupport.com/files/sim-current.tar.gz
tar -xzvf sim-current.tar.gz
cd sim-*
./setup -i
===============================
Install LES Linux Environment Security
cd /usr/local
wget http://logicsupport.com/files/les-current.tar.gz
tar -xzvf les-current.tar.gz
cd les-*
./install.sh
===============================
Install Munin
In WHM, Main >> cPanel >> Addon Modules,
Install Munin Server Monitor
================================
Install WhoCompiled Check for compiler usage
cd /usr/local
wget http://logicsupport.com/files/whocompiled
chmod +x whocompiled
./whocompiled
==================================
Install Watchmysql Check and limit mysql usage
cd /usr/local
wget http://logicsupport.com/files/watchmysql
chmod +x watchmysql
./watchmysql
===================================
Installation of Nobody Check
wget http://logicsupport.com/files/install.sh
chmod +x install.sh
./install.sh
Wait for the installer to finish. Open the /usr/local/nobody_check/nc.conf and
put in your email address and select your options.
====================================
Logwatch installation and configuration
cd /usr/local
wget http://logicsupport.com/files/logwatch-7.3.4.tar.gz
cd logwatch-*
mkdir /etc/logwatch
mkdir /etc/logwatch/scripts
mkdir /etc/logwatch/conf
mkdir /etc/logwatch/conf/logfiles
mkdir /etc/logwatch/conf/services
touch /etc/logwatch/conf/logwatch.conf
touch /etc/logwatch/conf/ignore.conf
touch /etc/logwatch/conf/override.conf
mkdir /usr/share/logwatch
mkdir /usr/share/logwatch/dist.conf
mkdir /usr/share/logwatch/dist.conf/logfiles
mkdir /usr/share/logwatch/dist.conf/services
mv conf/ /usr/share/logwatch/default.conf
mv scripts/ /usr/share/logwatch/scripts
mv lib /usr/share/logwatch/lib
mkdir /var/cache/logwatch
ln -s /usr/share/logwatch/scripts/logwatch.pl /etc/cron.daily/0logwatch
ln -s /usr/share/logwatch/scripts/logwatch.pl /usr/sbin/logwatch
====================================
Logrotater Installation and configuration
Check if /etc/logrotate.conf and /etc/cron.daily/logrotate exists. Or else
download,
wget http://logicsupport.com/files/logrotate.conf
wget http://logicsupport.com/files/logrotate
cp logrotate.conf /etc
cp logrotate /etc/cron.daily/
===================================
mod_evasive
http://www.eth0.us/mod_evasive
cd /usr/local/src
wget http://www.zdziarski.com/projects/mo..._1.10.1.tar.gz
tar -zxf mod_evasive_1.10.1.tar.gz
cd mod_evasive
/usr/sbin/apxs -cia mod_evasive20.c
note: apxs is use to install module in apache without re-compiling
DOSHashTableSize 3097
DOSPageCount 5
DOSSiteCount 100
DOSPageInterval 2
DOSSiteInterval 2
DOSBlockingPeriod 10
DOSBlockingPeriod 600
============================================================
Install MyTOP
cd /usr/local
wget http://logicsupport.com/files/TermReadKey-2.30.tar.gz
tar -zxf TermReadKey-2.30.tar.gz
cd TermRead*
perl Makefile.PL
make test
make
make install
cd ..
Now install DBI:
wget http://logicsupport.com/files/DBI-1.48.tar.gz
tar -zxf DBI-1.48.tar.gz
cd DBI*
perl Makefile.PL
make test
make
make install
cd ..
Install mytop:
wget http://logicsupport.com/files/mytop-1.4.tar.gz
tar -zxf mytop-1.4.tar.gz
cd mytop*
perl Makefile.PL
make test
make
make install
========================================
Iftop Installation and configuration
cd cd /usr/local
wget http://logicsupport.com/files/iftop-0.16.tar.gz
tar -xzvf iftop-0.16.tar.gz
cd iftop-0.16
./configure
make
make install
================================
Install Eaccelerator
cd /
mkdir ea
cd ea
wget http://logisupport.com/files/eaccelerator-0.9.3.tar.gz
tar xvzf eaccelerator-0.9.3.tar.gz
cd eaccelerator-0.9.3
export PHP_PREFIX=/usr
$PHP_PREFIX/bin/phpize
./configure enable-eaccelerator=shared
with-php-config=$PHP_PREFIX/bin/php-config
make
make install
Edit php.ini,Find this:
;Windows Extensions
Above this, comment out or remove the PHPA or mmcache lines if you have
them. Replace them with this:
To install as a ZEND extension:
zend_extension=/ea/eaccelerator-0.9.3/modules/eaccelerator.so
eaccelerator.shm_size=16″
eaccelerator.cache_dir=/tmp/eaccelerator
eaccelerator.enable=1″
eaccelerator.optimizer=1″
eaccelerator.check_mtime=1″
eaccelerator.debug=0″
eaccelerator.filter="
eaccelerator.shm_max=0″
eaccelerator.shm_ttl=0″
eaccelerator.shm_prune_period=0″
eaccelerator.shm_only=0″
eaccelerator.compress=1″
eaccelerator.compress_level=9″
OR to install as a PHP extension:
extension=/ea/eaccelerator-0.9.3/modules/eaccelerator.so
eaccelerator.shm_size=16″
eaccelerator.cache_dir=/tmp/eaccelerator
eaccelerator.enable=1″
eaccelerator.optimizer=1″
eaccelerator.check_mtime=1″
eaccelerator.debug=0″
eaccelerator.filter="
eaccelerator.shm_max=0″
eaccelerator.shm_ttl=0″
eaccelerator.shm_prune_period=0″
eaccelerator.shm_only=0″
eaccelerator.compress=1″
eaccelerator.compress_level=9″
mkdir /tmp/eaccelerator
chmod 0777 /tmp/eaccelerator
service httpd restart
=======================================
Install ZendOptimizer
/scripts/installzendopt
OR
cd /usr/local
wget http://logicsupport.com/files/ZendOp...21-i386.tar.gz
tar -xzvf ZendOptimizer-3.0.1-linux-glibc21-i386.tar.gz
cd ZendOptimizer-3.0.1-linux-glibc21-i386
./install.sh
Source http://abinz.wordpress.com/security-...lation-phase3/
|
Posted by WebHostDog, 10-02-2012, 11:15 AM |
cxs is really good. All their products are good.
|
Add to Favourites Print this Article
Also Read