Stop SSH bruteforce with endlessh

Endlessh is an open source SSH trapit. It send slow random banner string to attacker, wasting their time. Before you install endlessh, you need to change your SSH port to a higher non default port. To do this edit

Find

Replace with

If the line is commented with #, uncomment it. Now […]

Read More…

SSL Life Time Reduced to 397 days

Due to changes in Apple, Mozilla and Google Root Store Policies, as of September 1, 2020, newly issued SSL/TLS certificates with a validity period greater than 13 months (397 days) are prohibited by policy and will not be trusted. https://www.globalsign.com/en/blog/maximum-ssltls-certificate-validity-now-one-year https://blog.mozilla.org/security/2020/07/09/reducing-tls-certificate-lifespans-to-398-days/ […]

Read More…

malware

Online Malware Scanner for websites Scan a folder with clamscan maldet https://opentip.kaspersky.com https://sitecheck.sucuri.net Tools https://remnux.org/ Forums http://www.virusinfo.info http://www.rootkit.com http://www.gmer.net Blogs https://www.securelist.com/en/threats/detect?chapter=83 http://www.youtube.com/watch?v=Q5cT3YHKVsY […]

Read More…

Tripwire

Tripwire is a data integrity tool for monitoring and alerting file and directory changes. https://github.com/Tripwire/tripwire-open-source To install, run

Generate keys Run

This ask you to enter password. Creating Database

You need to edit file

customise it for your system or you may get file/directory not found errors. Checking for changes

[…]

Read More…

ModSecurity

Install ModSecurity on Debian Disable ModSecurity for a specific URL ModSecurity is a Web Application Firewall. Protect sites from SQL injection and Application level hacking. To install ModSecurity on Ubuntu/Debian with Apache, run

verify Apache module is installed with

Enable config file

Update config

Restart Apache

[…]

Read More…