SmoothSec 3.2 is out!

facebooktwittergoogle_plusredditpinterestlinkedinmailby feather

Today I’m proud to announce the release of SmoothSec Version 3.2. This version enhances the usability and performances of the whole IDS system. Along with the upgrade of Snort, Suricata and Pigsty, we are delighted to introduce Sagan HIDS (Host Instruction Detection System) to work in conjunction with Arpwatch as Address Resolution Protocol anomalies detection engine. We would like to highlight the improvement of “smoothsec.first.setup” with the network interfaces detection and Snorby custom login credentials. We have also added a comprehensive set of tools to perform traffic and packet analysis from the command line (e.g. greppcap.py, tcpextract).

Download: https://sourceforge.net/projects/smoothsec/files/SmoothSec-3.2

SmoothSec documentation wiki: https://github.com/smoothsec/docs/wiki

Community support: http://www.smoothsec.org/community

Changelog

26-08-2013 SmoothSec 3.2 released

[*] Improvements and fixes
Snorby email reports fixed.
Pigsty stability and performances improved.
Pigsty logs archving.

[*] Upgrades
Snort Version 2.9.5.3
Suricata version 1.4.5
MariaDB 5.5.32
Pigsty Version 0.1.5

[*] New tools
Arpwatch
Sagan
tcpxtract
ngrep
nast
ipgrab
tshark
justniffer
python-impacket
python idstools
python tcpextract
greppcap.py
percona-toolkit‎
percona-xtrabackup

Freepto, a portable privacy-aware live operating system on encrypted USB drive.

facebooktwittergoogle_plusredditpinterestlinkedinmailby feather

freepto_3

Freepto is a live operating system based on Debian Gnu/Linux and is developed by “AvANa”, the resident hacktivist collective of Forte Prenestino, one of the oldest and most famous social centrer (squat) in Italy. The operating system runs entirely on a USB key, so you can have your favourite  tools always with you, “Metadata Anonymisation Toolkit“, “Tor Browser“, “MAC Changer” are among the best-known privacy applications. Even though, there’s already a few privacy enabled Linux distribution around, Freepto has the persistent encrypted partition feature, a unique option that makes it stand out among other similar distributions, this peculiarity allows to save data changes back to the USB encrypted storage device. Freepto aims to be a powerful tool for activists, journalists, Whistleblowers, and normal people that want to protect their privacy.

Surveillance self-defense by https://ssd.eff.org/tech/tor

GitHub: https://github.com/AvANa-BBS/freepto-lb

Please consider to help to translate the documentation from Italian to English.
https://we.riseup.net/avana/freepto-docs

Freepto installation:

You need to get the latest Freepto iso and the makefreepto script from:

http://avana.forteprenestino.net/freepto/iso/

wget http://avana.forteprenestino.net/freepto/iso/freepto-IT_0.1.1.img
wget http://avana.forteprenestino.net/freepto/iso/makefreepto

Options:
-b         skip badblocks check
-r         skip random filling (use only if you know what you are doing)
-w         skip dd of binary.img
-i IMAGE   put IMAGE on DEVICE (default is binary.img)
-p         set password (defaul is “freepto”)
-s         set secure random password (default is “freepto”)

WARNING. With this process you can easily destroy data partitions on your
computer. I’m not responsible for  any damage or data loss caused by
this procedure.

1) Plug the usb device to your linux computer.

2) Check for the USB device path with dmesg.

e.g.

[ 2999.423840] sd 6:0:0:0: [sdb] Assuming drive cache: write through
[ 2999.449517]  sdb: sdb1
[ 2999.454623] sd 6:0:0:0: [sdb] No Caching mode page present

3) Proceed (BE CAREFUL) to copy the freepto img to the USB device.

./makefreepto   -i freepto-IT_0.1.1.img -p <EncryptionPassword>  /dev/sdb

Once the process is complete you must get a message like this below.

freepto2

4) Plug the USB stick into the computer you want to boot up. Make sure your BIOS is set to boot from your USB device. Select Live mode, and in a short wile you will be prompted to enter the encryption password in order to unlock the encrypted persistent partition.

Freepto desktop.

freepto

Language, to switch from Italian to your own language you need to change the language system setting. The password for the user “paranoid” is “live”.

To change the language type: sudo dpkg-reconfigure locales

SmoothSec 3.0 is out

facebooktwittergoogle_plusredditpinterestlinkedinmailby feather

featured-image

Today I’m delighted to announce a new release of Smoothsec version 3.0.

Smooth-Sec is a fully-ready IDS/IPS (Intrusion Detection/Prevention System) Linux distribution based on Debian 7 (wheezy), available for 32 and 64 bit architecture. The distribution includes the latest version of Snorby, Snort, Suricata, PulledPork and Pigsty. An easy setup process allows to deploy a complete IDS/IPS System within minutes, even for security beginners with minimal Linux experience.

Improvements and fixes:

Debian 7 Wheezy based.
32 and 64 bit iso available.
Snorby V 2.6.2
Snort V 2.9.4.6
Suricata V 1.4.3
Pigsty V 0.1.0
PulledPork V 0.6.1

www.smoothsec.org

phpVirtualBox Google Dork

facebooktwittergoogle_plusredditpinterestlinkedinmailby feather

This is my latest Google Dork that allows to discover the VirtualBox
web interface directly exposed to the internet.

TIP: remember always to password protect (with a strong password)
your phpVirtualBox installation!!!!.

Google dork code:

[sourcecode language="bash"]

intitle:"phpVirtualBox – VirtualBox Web Console"

[/sourcecode]

Or direct link: http://is.gd/4jPCco

Happy hacking.

How to install PostgreSQL 9.2 on Debian 7 (Wheezy).

facebooktwittergoogle_plusredditpinterestlinkedinmailby feather

hdr_left

In this blog post I’m going to give you a walk through on how to install PostgreSQL 9.2 on Debian 7  (Wheezy).

Less than few weeks ago the Debian team released a new version (7.0) code name ‘Wheezy‘.
With this version the development team has improved many interesting features such
several tools to deploy private clouds, an improved installer and multiarch support.

As you probably know, the Debian stable releases can take a really long time (1.5-2 years), so
by the time of the release the packages might be not at the latest version, e.g.
Debian Wheezy comes PostgreSQL 9.1 meanwhile other distribution are already using PostgreSQL 9.2.

Top 5 reason to use PostgreSQL 9.2

Index-only scans
Replication improvements
JSON datatype
Range Types
Performance improvements

Full list at http://wiki.postgresql.org

To successfully install PostgreSQL 9.2 on Debian 7 (Wheezy), please follow the instructions below.

As root user execute:

[sourcecode language="bash"]

apt-get install python-software-properties

wget –quiet -O – http://apt.postgresql.org/pub/repos/apt/ACCC4CF8.asc | sudo apt-key add –

add-apt-repository "deb http://apt.postgresql.org/pub/repos/apt/ wheezy-pgdg main"

apt-get update && apt-get install postgresql

[/sourcecode]