Nessus (www.nessus.org) for all.
nikto and whisker for webserver.
Also MBSA for all NT/Win* servers.
Regards
Muhammad Faisal Rauf Danka
Head of GemSEC / Chief Technology Officer
Gem Internet Services (Pvt) Ltd.
web: www.gem.net.pk
Key Id: 0x784B0202
Key Fingerprint: 6F8C EDCF 6C6E 06A5
http://www.insecure.org/nmap/
http://www.wwdsi.com/saint/
http://www-arc.com/sara/
http://www.nessus.org/
http://www.google.com/search?hl=enlr=ie=UTF-8oe=utf-8q=windows+security+scannersbtnG=Google+Search
On Thursday 03 October 2002 11:10 am, Kevin Bachelder wrote:
Hi everyone,
We are a
Ben Corman said:
Hello Ben,
One that I highly reccomend, and use in the same scenario as you - is
LogSentry, available from http://www.psionic.com/
Chip
I recently brought up a PIX firewall and have all the logs directed to
a Linux syslog server. I'm hoping you all can direct me towards a
Shell scripting for custom pattern searching in syslog messages and alerting via
mail/web etc, would do the job.
But I'd like you to check Lire from www.logreport.org
Basically it is a log analyser for various log formats and all, including PIX.
I hope it is of some help to you :)
Regards
Hi
Swatch and Logsurfer are both good products.
Try a google search on them as i do not remember the URL's
Good luck
-Naveed
-Original Message-
From: Ben Corman [mailto:[EMAIL PROTECTED]]
Sent: Thursday, October 03, 2002 11:55 PM
To: [EMAIL PROTECTED]
Subject: Log Watcher For a PIX
I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
At 11:28 AM 10/4/2002 +1000, you loudly proclaimed:
Peoples,
I have been having a few issues with a Windows NT system and the
mountain of insecurities associated. I am now looking at alternative
solutions that should help secure the system.
On 03/10/02 14:24 -0400, Ben Corman wrote:
I recently brought up a PIX firewall and have all the logs directed to a
Linux syslog server. I'm hoping you all can direct me towards a good log
watcher / parser that will alert me to suspicious activity.
Well, you could go with syslog-ng and
Greetings to all. I have came across a problem. My scenario appears to be
complicated as I can't find referrences in any of my books to this setup.
I have:
DSL Modem
External IP x.x.x.x
Internal IP 192.168.250.1
MS ISA firewall
External 192.168.250.2
Internal 192.168.0.1
Here's the
For a more comprehensive list and breakdown I suggest
reading up on the Wassenaar Arrangement; http://www.wassenaar.org
or http://www.dfait-maeci.gc.ca/~eicb/eicbintro-e.htm.
You'll notice that adhering to export controls aren't quite as simple as
you've stated below. Especially in areas of
On Friday 04 Oct 2002 2:28 am, Sleepy_all_day wrote:
Peoples,
I have been having a few issues with a Windows NT system and the
mountain of insecurities associated. I am now looking at alternative
solutions that should help secure the system.
There is no difference between a properly
I have no idea why this happened! The problem is new, i've used this email
certificate for more than six month without any problems Is it due to an
update of the Internet Explorer suite? I've no idea. But for now, I removed
the certificate and any digital signature.
To everyone that had
Hello all,
Quick opinion based question. I have an switched internal network that
currently uses a lot of rcp with rsh authentication to moves files
about. Platforms are unix and nt (ftp on the nt side)
More secure is ssh and scp for all platforms, but I have several scripts
that would all
SWATCH (simple watch). It's the best. Written in perl.
RGdS!
G.
=
Patriotism is the virtue of the vicious, Oscar Wilde
-Original Message-
From: Ben Corman [mailto:[EMAIL PROTECTED]]
Sent: 03 ÃßÊæÈÑ, 2002 08:25 ã
To: [EMAIL
Maybe I missed your earlier post, but this seems easy to solve, its just
text, you'll get amazing compression, just zip or tar it, and shove it onto
removeable media, properly labeled, and let it gather dust.
From: James Liddil [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Policy Issue
Hi.
|Subject: Re: To Netmeeting or not???
|From: Johan Denoyer [EMAIL PROTECTED]
|Date: Tue, 1 Oct 2002 19:26:42 +0200
|Message-Id: 00d601c2696f$b5fb5930$fb00a8c0@portablerj45
|X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
|User-Agent: Microsoft Outlook Express 6.00.2800.1106
| the
Oct 7 03:02:31 myserver sshd[16715]: scanned from 212.71.139.82 with
SSH-1.0-SSH_Version_Mapper. Don't panic.
I got this on my logs some other way.
Can someone explain what this is and if the fact that SSH is blocked on
the firewall should prevent this messages from showing up?
Could be
I have found Shadow Security Scan to be very helpful. www.safety-lab.com
I have tried a lot of other assessment scanners and found the above to be
well rounded and has worked well. I have tried Typhon II, Net IQ, Retina,
and others. The security scanner from safety labs was around $100 and
17 matches
Mail list logo