Review: Penetration Testing with the Bash shell by Keith Makan – Packt Pub.

Penetration Testing with the Bash shell I’ll have to say that, for some reason, I thought this book was going to be some kind of guide to using only bash itself to do penetration testing. It’s not that at all. It’s really more like doing penetration testing FROM the bash shell, or command line of […]

BackTrack 5 Cookbook: Quick answers to common problems

You know, sometimes, just sometimes something fortuitous happens to me. This was one of those times. I was contacted by my friends over at Pakt Publishing to review their new book on BackTrack. Of course I said sure. Hey, I am a Linux junkie after all! It had actually been quite a while since I […]

Lost your Mint password?

First time this happened! A coworker asked me today how to get into his Linux Mint box after he forgot his password. Of course I rattled off the old GRUB way to get things done, but, what?? This is GRUB 2! No so fast there! Turns out it’s quite different. You hold down the shift […]

Book Review – BackTrack 4: Assuring Security by Penetration Testing

Right after I got this book, Backtrack 5 was released. My intention was to go through the book and compare/contrast things to Backtrack 5. Well, we all know the saying about the best layed plans… That being said, I believe the information in this book to be directly applicable to Backtrack 5 and a good […]

Why I use OSSEC

There are some great reasons to use OSSEC. One of them is you get emails like these I received this morning: Jun 10 09:24:51 pukwudgie sshd[28651]: Failed password for invalid user pureftp from 202.121.49.62 port 45542 ssh2 Jun 10 09:24:48 pukwudgie sshd[28651]: Invalid user pureftp from 202.121.49.62 Jun 10 09:24:29 pukwudgie sshd[28630]: Failed password for […]

Server Build

Last night on the TechShow I was asked about providing some info on a decent default server build. Here are some quick notes to get people going. Adjust as necessary. Just for ease, here, lets assume you are installing CentOS 5, a nice robust enterprise class Linux for your server needs. CentOS 5 / RHEL […]

Diagnosis: Paranoia

You know, there are just some things you do not need first thing on a Monday morning. This was one of them… I came and and started reviewing my reports and was looking at an access report, which is basically a “last | grep $TheDateIWant” from over the weekend. I keep a pretty tight ship […]

Prey

Prey is a lightweight application that will help you track and find your laptop if it ever gets stolen. It works in all operating systems and not only is it Open Source but also completely free. That’s what their website says anyway. You have to admit that it sounds quite intriguing. There are a lot […]

Sys_Basher

Late last ‘week I noticed that my new nagios server was not responding anymore. Well, I checked it and it was down. Not only that, it was a vm on my test server and the entire server was down as well. Arrrgh. Usually I use this as a foray to tell you all to remember […]

Nagios

Even though I wrote and use OSM I also use Nagios at work (along with OSM). Actually, I administer Nagios there, however I have never actually installed and configured it. It was in place before I started there. That being said, my manager asked me how to get it installed and running today, as he […]