Menu

Security

Install rkhunter (Rootkit Hunter) on RHEL CentOS Fedora Debian Ubuntu

Overview

rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits. It does this by comparing SHA-1 hashes of important files with known good ones in online database, searching for default directories (of rootkits), wrong Read More →

Install maldetect Linux Malware Detect on CentOS/RHEL, Debian, Ubuntu

Overview

Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware Read More →

Install the coolest of all AnaLogi OSSEC web user interface on CentOS, RHEL, Debian, Ubuntu

Overview

OSSEC is a great IDS tool but you would agree that the alerts needs to be presented in a nice and cleaner way, however the default ossecwui just does not cut it. Some other IDS systems like snort and Read More →

Use afterglow to visualize iptables logs on CentOS, RHEL, Fedora

Overview

Earlier I wrote an article on setting up psad and argo firewall, this one is about using afterglow to visualize the iptables logs that are being monitored by psad. There are many reasons to perform this, I did it for Read More →

Install arno firewall with psad – iptables on steroids

Overview

arno an IPTABLES Firewall Script is a secure stateful firewall for both single and multi-homed machines. psad is a collection of three lightweight system daemons (two main daemons and one helper daemon) that run on Linux machines and analyze iptables Read More →

Audit your linux machine using lynis auditing tool CentOS/RHEL, Fedora, Ubuntu, Debian

Overview

Security experts always strive for best security practices and system hardening is an activity generally performed by security experts to make systems safer. This activity make more sense if you have some audit tool in place to help find how Read More →

Install Snorby for snort and sagan CentOS/RHEL 5 or 6

Overview

Snorby is a ruby on rails application for network security monitoring that interfaces with popular IDS Intrusion Detection Systems(Snort, Sagan and Suricata). If you are looking for a cool, simple yet powerful IDS monitoring interface, snorby is perfect for you.

Install Read More →

Installing Sagan Intrusion Detection System on CentOS RHEL 5 or 6

Overview

Sagan is a multi-threaded, real time system and event log monitoring system, but with a twist. Sagan uses a "Snort" like rule set for detecting bad things happening on your network and/or computer systems. If Sagan detects a "bad thing" Read More →

Installing OpenVAS Vulnerability Assessment Tool on CentOS/RHEL 5 or 6

Overview

OpenVas is the world's most advanced Open Source vulnerability scanner and manager. OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.

Installing OpenVAS Vulnerability Assessment Tool on CentOS 5 or Read More →

How to save yourself from the embarrassment called fork bomb?

The reason some one can start a fork bomb and make it a success is that you have not limited user processes. You can limit how many process a user or group can start on your linux box by editing /etc/security/limits.conf Read More →
Back to top