tag:blogger.com,1999:blog-74908175706521803122024-03-06T03:00:22.062-03:00Security HackSitio personal de Ariel M. Liguori De GottigAriel M. Liguori de Gottighttp://www.blogger.com/profile/02714929794781699420noreply@blogger.comBlogger6125tag:blogger.com,1999:blog-7490817570652180312.post-613207413998214932009-03-10T09:40:00.002-02:002009-03-10T10:30:08.195-02:00Hardening, hay cosas que debemos tener en cuenta.Hoy he leído en el <a href="http://blog.segu-info.com.ar">blog de segu-info</a> una noticia acerca de "<a href="http://blog.segu-info.com.ar/2009/03/hardening-basico-de-gnulinux-e.html">Hardening básico de GNU/Linux e instalación y configuración básica de Snort</a>" en donde en realidad lo que hay es un video que nos muestra como proteger en simples pasos nuestro S.O.<br />He aquí algo que pasa por mi mente cada vez que hablo o leo de "Hardening", acaso no queremos todos que nuestro sistema sea seguro? entonces porque no nos interesamos en ver como sería un apropiado hardening del SO que poseemos.<br />Puede que muchos lo vean como una reflexión que se logra con el paso del tiempo y de la experiencia, sin embargo creo yo que debe ser todo lo contrario ya que es esencial y básico proteger nuestro sistema e inclusive el más novato de todos debe estar familiarizado con los pasos a seguir para lograr esa meta.Ariel M. Liguori de Gottighttp://www.blogger.com/profile/02714929794781699420noreply@blogger.com0tag:blogger.com,1999:blog-7490817570652180312.post-59576895551040468992008-11-27T10:27:00.003-02:002008-11-27T10:34:57.866-02:00Distros de Linux relacionadas con SIClikéa en "Leer más" para ver la inmensa lista :-)<br /><span id="fullpost"><br /><div style="font-style: italic;" class="title">Security Distros</div><span style="font-style: italic;">Here is the full list of Security Distros and their descriptions. Select the tool that best fits your needs. </span><table><tbody><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/1/BackTrack.php">BackTrack</a></span></h1><span style="font-size:100%;">BackTrack is a distribution based off of what used to be WHAX and <a title="Auditor Main" href="http://www.securitydistro.com/index.php?option=com_content&task=category&sectionid=1&id=12&Itemid=2" target="_self">Auditor</a> . It is a full size distro built off of SLAX.<br /><a href="http://securitydistro.com/security-distros/1/BackTrack.php">BackTrack Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=26">Discuss</a> <a href="http://securitydistro.com/downloads/1/BackTrack.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/1/BackTrack.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/2/Damn-Vulnerable-Linux-DVL.php">Damn Vulnerable Linux ( DVL )</a></span></h1><span style="font-size:100%;">"Damn Vulnerable Linux (DVL) is a Linux-based tool for IT-Security. It was initiated for training tasks during university lessons by the <i>IITAC (International Institute for Training, Assessment, and Certification)</i> and <i>S²e - Secure Software Engineering</i> in cooperation with the <i>French Reverse Engineering Team</i>." - DamnVulnerableLinux.org<br /><a href="http://securitydistro.com/security-distros/2/Damn-Vulnerable-Linux-DVL.php">Damn Vulnerable Linux ( DVL ) Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=31">Discuss</a> <a href="http://securitydistro.com/downloads/2/Damn-Vulnerable-Linux-DVL.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/2/Damn-Vulnerable-Linux-DVL.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/6/DEFT.php">DEFT</a></span></h1><span style="font-size:100%;"><span style="font-size: 10pt;">DEFT (acronym of "Digital Evidence & Forensic Toolkit) is a customized distribution of the Kubuntu live Linux CD. It is a very easy to use system that includes an excellent hardware detection and the best open source applications dedicated to incident response and computer forensics. -Deft.yourside.it</span><br /><a href="http://securitydistro.com/security-distros/6/DEFT.php">DEFT Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=45">Discuss</a> <a href="http://securitydistro.com/downloads/6/DEFT.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/6/DEFT.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/40/FCCU.php">FCCU</a></span></h1><span style="font-size:100%;">The <i>Gnu/Linux boot CD-Rom</i> is made by the Belgian Federal Computer Crime Unit <b>(FCCU)</b><br />It's based on the <i>KNOPPIX Live CD</i> version 4.02 by Klaus Knopper.<br />The main purpose of the CD : help the forensic analyze of computers<br />All scripts made by the FCCU begin with the "fccu" prefix -lnx4n6.be<br /><a href="http://securitydistro.com/security-distros/40/FCCU.php">FCCU Main</a> <a href="http://securitydistro.com/downloads/40/FCCU.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/22/Frenzy.php">Frenzy</a></span></h1><span style="font-size:100%;">"Frenzy is a "portable system administrator toolkit," LiveCD based on FreeBSD. It generally contains software for hardware tests, file system check, security check and network setup and analysis. Size of ISO-image is 200 MBytes (3" CD)"<br />-http://frenzy.org.ua/eng/<br /><a href="http://securitydistro.com/security-distros/22/Frenzy.php">Frenzy Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=38">Discuss</a> <a href="http://securitydistro.com/downloads/22/Frenzy.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/22/Frenzy.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/33/grml.php">grml</a></span></h1><span style="font-size:100%;">"grml is a bootable CD (Live-CD) based on <a href="http://www.knopper.net/knoppix/">Knoppix</a> and <a href="http://www.debian.org/">Debian</a>. grml includes a collection of GNU/Linux software especially for users of texttools and system administrators. grml provides automatic hardware detection. You can use grml for example as a rescue system, for analyzing systems/networks or as a working environment." -http://grml.org/<br /><a href="http://securitydistro.com/security-distros/33/grml.php">grml Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=18">Discuss</a> <a href="http://securitydistro.com/downloads/33/grml.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/33/grml.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/7/Hakin9.php">Hakin9</a></span></h1><span style="font-size:100%;">"a bootable distribution containing all the tools and materials needed for practising methods and techniques described in the hackin9 magazine"<br />-http://www.hakin9.org/en/index.php?page=hakin9_live-<br /><a href="http://securitydistro.com/security-distros/7/Hakin9.php">Hakin9 Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=13">Discuss</a> <a href="http://securitydistro.com/downloads/7/Hakin9.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/7/Hakin9.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/8/Helix.php">Helix</a></span></h1><span style="font-size:100%;">"Helix is a customized distribution of the Knoppix Live Linux CD. Helix is more than just a bootable live CD. You can still boot into a customized Linux environment that includes customized linux kernels, excellent hardware detection and many applications dedicated to Incident Response and Forensics."<br />-http://www.e-fense.com/helix/-<br /><a href="http://securitydistro.com/security-distros/8/Helix.php">Helix Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=10">Discuss</a> <a href="http://securitydistro.com/downloads/8/Helix.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/8/Helix.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/36/HeX.php">HeX</a></span></h1><span style="font-size:100%;">HeX is a live security distribution that focuses on security monitoring and forensics.<br /><a href="http://securitydistro.com/security-distros/36/HeX.php">HeX Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=55">Discuss</a> <a href="http://securitydistro.com/downloads/36/HeX.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/9/KCPentrix.php">KCPentrix</a></span></h1><span style="font-size:100%;">" The Kcpentrix Project was founded in May 2005 , KCPentrix 1.0 was liveCD designed to be a standalone Penetration testing toolkit for pentesters, security analysts and System administrators" - KCPentrix.com<br /><a href="http://securitydistro.com/security-distros/9/KCPentrix.php">KCPentrix Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=36">Discuss</a> <a href="http://securitydistro.com/downloads/9/KCPentrix.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/4/KnoppixNSM.php">Knoppix-NSM</a></span></h1><span style="font-size:100%;">"knoppix-nsm is dedicated to providing a framework for individuals wanting to learn about Network Security Monitoring or who want to qucikly and reliably deploy NSM in their network. Our goal is to provide an introduction to NSM and a distribution that can be used as a launch pad to bigger things." -www.securixlive.com<br /><a href="http://securitydistro.com/security-distros/4/KnoppixNSM.php">Knoppix-NSM Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=28">Discuss</a> <a href="http://securitydistro.com/downloads/4/KnoppixNSM.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/4/KnoppixNSM.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/11/Network-Security-Toolkit-NST.php">Network Security Toolkit ( NST )</a></span></h1><span style="font-size:100%;">"This bootable ISO live CD is based on Fedora. The toolkit was designed to provide easy access to best-of-breed Open Source Network Security Applications and should run on most x86 platforms." -networksecuritytoolkit.org<br /><a href="http://securitydistro.com/security-distros/11/Network-Security-Toolkit-NST.php">Network Security Toolkit ( NST ) Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=9">Discuss</a> <a href="http://securitydistro.com/downloads/11/Network-Security-Toolkit-NST.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/10/nUbuntu.php">nUbuntu</a></span></h1><span style="font-size:100%;">"The main goal of nUbuntu is to create a distribution which is derived from the Ubuntu distribution, and add packages related to security testing, and remove unneeded packages, such as Gnome, Openoffice.org, and Evolution." - nubuntu.org<br /><a href="http://securitydistro.com/security-distros/10/nUbuntu.php">nUbuntu Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=32">Discuss</a> <a href="http://securitydistro.com/downloads/10/nUbuntu.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/10/nUbuntu.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/34/Ophcrack.php">Ophcrack</a></span></h1><span style="font-size:100%;">"The <a class="simply_link" href="http://securitydistro.com/tools/7/Ophcrack.php">ophcrack</a> LiveCD contains a small linux system (SLAX6), <a class="simply_link" href="http://securitydistro.com/tools/7/Ophcrack.php">ophcrack</a><a class="simply_link" href="http://securitydistro.com/tools/7/Ophcrack.php">Ophcrack</a>.sourceforge.net<br /><a href="http://securitydistro.com/security-distros/34/Ophcrack.php">Ophcrack Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=30">Discuss</a> <a href="http://securitydistro.com/downloads/34/Ophcrack.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span> for linux and rainbow tables for alphanumerical passwords.The liveCD cracks passwords automatically, no installation necessary, no admin password necessary (as long as you can boot from CD). Windows Vista SAM can also be cracked." -</td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/34/Ophcrack.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/12/OWASP-Labrat.php">OWASP Labrat</a></span></h1><span style="font-size:100%;">"The OWASP Live CD (LabRat) is a bootable CD akin to knoppix but dedicated to Application Security. It shall serve as a vehicle and distrubition medium for OWASP tools and guides." -OWASP.org<br /><a href="http://securitydistro.com/security-distros/12/OWASP-Labrat.php">OWASP Labrat Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=29">Discuss</a> <a href="http://securitydistro.com/downloads/12/OWASP-Labrat.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/12/OWASP-Labrat.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/13/Protech.php">Protech</a></span></h1><span style="font-size:100%;">Protech is a specially designed Linux distribution for security technicians and programmers.<br />It's imcomparable usability and stability makes this a unique product. -Techm4sters<br /><a href="http://securitydistro.com/security-distros/13/Protech.php">Protech Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=43">Discuss</a> <a href="http://securitydistro.com/downloads/13/Protech.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/13/Protech.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/38/Stagos-FSE.php">Stagos FSE</a></span></h1><span style="font-size:100%;">"Stagos FSE aims to be a computer forensic framework based on FLOSS operating system. Builds from Ubuntu, it has many feature to do forensics stuff. It supports read variant filesystem, include ntfs. It also support read some forensic imaging file from another forensic software such like ENCASE." -linuxforums.org<br /><a href="http://securitydistro.com/security-distros/38/Stagos-FSE.php">Stagos FSE Main</a> <a href="http://securitydistro.com/downloads/38/Stagos-FSE.php">Download</a> Status: <span style="color: rgb(0, 255, 0);">Active</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/15/Arudius.php">Arudius</a></span></h1><span style="font-size:100%;">Arudius is a Linux live CD with tools that try to address the network security aspect (penetration testing and vulnerability analysis) of information assurance. It is based on Slackware (Zenwalk) for i386 systems and targets the information security audience.<br /><a href="http://securitydistro.com/security-distros/15/Arudius.php">Arudius Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=34">Discuss</a> <a href="http://securitydistro.com/downloads/15/Arudius.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/15/Arudius.php"><div style="overflow: hidden; width: 150px;"><img src="http://securitydistro.com/includes/phpThumb.php?src=/images/distros/arudius_logo.png&w=150" /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/16/Auditor.php">Auditor</a></span></h1><span style="font-size:100%;">"The Auditor security collection is a Live-System based on KNOPPIX. With no installation whatsoever, the analysis platform is started directly from the CD-Rom and is fully accessible within minutes. Independent of the hardware in use, the Auditor security collection offers a standardised working environment, so that the build-up of know-how and remote support is made easier." - http://www.remote-exploit.org/index.php/Auditor_main-<br /><a href="http://securitydistro.com/security-distros/16/Auditor.php">Auditor Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=11">Discuss</a> <a href="http://securitydistro.com/downloads/16/Auditor.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/16/Auditor.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/17/FIRE.php">FIRE</a></span></h1><span style="font-size:100%;">"FIRE is a portable bootable cdrom based distribution with the goal of providing an immediate environment to perform forensic analysis, incident response, data recovery, virus scanning and vulnerability assessment."<br />-http://fire.dmzs.com-<br /><a href="http://securitydistro.com/security-distros/17/FIRE.php">FIRE Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=20">Discuss</a> <a href="http://securitydistro.com/downloads/17/FIRE.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/17/FIRE.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/18/INSERT.php">INSERT</a></span></h1><span style="font-size:100%;">"INSERT is a complete, bootable linux system. It comes with a graphical user interface running the fluxbox window manager while still being sufficiently small to fit on a credit card-sized CD-ROM."<br />-http://www.inside-security.de/insert_en.html-<br /><a href="http://securitydistro.com/security-distros/18/INSERT.php">INSERT Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=12">Discuss</a> <a href="http://securitydistro.com/downloads/18/INSERT.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/18/INSERT.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/5/KnoppixSTD.php">Knoppix-STD</a></span></h1><span style="font-size:100%;">"STD is a Linux-based Security Tool. Actually, it is a collection of hundreds if not thousands of open source security tools. It's a Live Linux Distro, which means it runs from a bootable CD in memory without changing the native operating system of the <a class="simply_link" href="http://securitydistro.com/tools/40/Host.php">host</a> computer." - http://www.knoppix-std.org/-<br /><a href="http://securitydistro.com/security-distros/5/KnoppixSTD.php">Knoppix-STD Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=2">Discuss</a> <a href="http://securitydistro.com/downloads/5/KnoppixSTD.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/5/KnoppixSTD.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/19/Local-Area-Security-LAS.php">Local Area Security ( LAS )</a></span></h1><span style="font-size:100%;"><br /><a href="http://securitydistro.com/security-distros/19/Local-Area-Security-LAS.php">Local Area Security ( LAS ) Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=21">Discuss</a> <a href="http://securitydistro.com/downloads/19/Local-Area-Security-LAS.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/19/Local-Area-Security-LAS.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/20/NavynOS.php">NavynOS</a></span></h1><span style="font-size:100%;">"Navyn OS is a gnu/linux distribution based on Gentoo. Gentoo isn't a typical distribution like Debian or Slackware, it doesn't even have an installer, it is similar to making your own distribution. The main part of Gentoo is portage, a set of scripts for installing and removing programs." -http://navynos.linux.pl/<br /><a href="http://securitydistro.com/security-distros/20/NavynOS.php">NavynOS Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=18">Discuss</a> <a href="http://securitydistro.com/downloads/20/NavynOS.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/20/NavynOS.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/21/Operator.php">Operator</a></span></h1><span style="font-size:100%;">"Operator is a complete Linux (Debian) distribution that runs from a single bootable CD and runs entirely in RAM." - www.ussysadmin.com/operator/<br /><br /><a href="http://securitydistro.com/security-distros/21/Operator.php">Operator Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=37">Discuss</a> <a href="http://securitydistro.com/downloads/21/Operator.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/23/Pentoo.php">Pentoo</a></span></h1><span style="font-size:100%;">"Pentoo is a penetration testing LiveCD distribution based on Gentoo. It features a lot of tools for auditing and testing a network, from scanning and discovering to exploiting vulnerabilities."<br />-http://www.pentoo.ch/-PENTOO-.html-<br /><a href="http://securitydistro.com/security-distros/23/Pentoo.php">Pentoo Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=8">Discuss</a> <a href="http://securitydistro.com/downloads/23/Pentoo.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/23/Pentoo.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/24/PHLAK.php">PHLAK</a></span></h1><span style="font-size:100%;">"PHLAK is a modular live security Linux distribution (a.k.a LiveCD). PHLAK comes with two light gui's (fluxbox and XFCE4), many security tools, and a spiral notebook full of security documentation. PHLAK is a derivative of Morphix, created by Alex de Landgraaf." - http://www.phlak.org/modules/news/-<br /><a href="http://securitydistro.com/security-distros/24/PHLAK.php">PHLAK Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=5">Discuss</a> <a href="http://securitydistro.com/downloads/24/PHLAK.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/24/PHLAK.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/25/PLAC.php">PLAC</a></span></h1><span style="font-size:100%;">"PLAC is a business card sized bootable cdrom running linux. It has network auditing, disk recovery, and forensic analysis tools. ISO will be avialable and scripts to roll you own cd."<br />-http://sourceforge.net/projects/plac/-<br /><a href="http://securitydistro.com/security-distros/25/PLAC.php">PLAC Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=15">Discuss</a> <a href="http://securitydistro.com/downloads/25/PLAC.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/26/PlanB.php">Plan-B</a></span></h1><p><span style="font-size:100%;">"Plan-B is a bootable Linux environment without the need for a hard drive, it runs entirely in ram or from the cd, based on a basic, stripped installation of <i>Red Hat Linux</i> and the fundamental workings of the <i>SuperRescue CD</i>" -http://www.projectplanb.org/</span></p><span style="font-size:100%;"><br /><a href="http://securitydistro.com/security-distros/26/PlanB.php">Plan-B Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=17">Discuss</a> <a href="http://securitydistro.com/downloads/26/PlanB.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/27/SENTINIX.php">SENTINIX</a></span></h1><span style="font-size:100%;">"<b>SENTINIX</b> is a <a href="http://www.gnu.org/gnu/linux-and-gnu.html" target="_blank">GNU/Linux</a> distribution designed for monitoring, intrusion detection, vulnerability assessment, statistics/graphing and anti-spam. It's completely free; free to use, free to modify and free to distribute. SENTINIX includes the following software, installed and pre-configured; <b>Nagios, Nagat, Snort, SnortCenter, ACID, Cacti, RRDTool, <a class="simply_link" href="http://securitydistro.com/tools/21/Nessus.php">Nessus</a>, Postfix, MailScanner, SpamAssassin, openMosix, MySQL, Apache, PHP, Perl, Python and lots more</b>." -http://sentinix.tigerteam.se/<br /><a href="http://securitydistro.com/security-distros/27/SENTINIX.php">SENTINIX Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=41">Discuss</a> <a href="http://securitydistro.com/downloads/27/SENTINIX.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/27/SENTINIX.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/39/SNARL.php">SNARL</a></span></h1><span style="font-size:100%;">snarl is a bootable forensics ISO based on FreeBSD and using @stake's autopsy and task as well as scmoo's list of known good checksums. -snarl.eecue.com<br /><a href="http://securitydistro.com/security-distros/39/SNARL.php">SNARL Main</a> <a href="http://securitydistro.com/downloads/39/SNARL.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/28/Talos.php">Talos</a></span></h1><span style="font-size:100%;"><span style="font-size: 10pt;">"Talos is a security LiveCD, based on SLAX 5.1.0 with over 90 security tools preinstalled. It runs directly from the CD without the need to install on the harddisk. Talos is currently on BETA version 0.1 and its available to download." -ISafe.gr</span><br /><a href="http://securitydistro.com/security-distros/28/Talos.php">Talos Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=27">Discuss</a> <a href="http://securitydistro.com/downloads/28/Talos.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/29/ThePacketMaster.php">ThePacketMaster</a></span></h1><span style="font-size:100%;">ThePacketMaster - Mission-Specific Live-CD Linux Distributions - thepacketmaster.com<br /><a href="http://securitydistro.com/security-distros/29/ThePacketMaster.php">ThePacketMaster Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=14">Discuss</a> <a href="http://securitydistro.com/downloads/29/ThePacketMaster.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"><a href="http://securitydistro.com/security-distros/29/ThePacketMaster.php"><div style="overflow: hidden; width: 150px;"><br /></div></a></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/30/Trinux.php">Trinux</a></span></h1><span style="font-size:100%;">Minimal ramdisk linux distribution meant for network monitoring.<br /><a href="http://securitydistro.com/security-distros/30/Trinux.php">Trinux Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=7">Discuss</a> <a href="http://securitydistro.com/downloads/30/Trinux.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/31/WarLinux.php">WarLinux</a></span></h1><span style="font-size:100%;">A linux distribution for WarDrivers.<br /><a href="http://securitydistro.com/security-distros/31/WarLinux.php">WarLinux Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=16">Discuss</a> <a href="http://securitydistro.com/downloads/31/WarLinux.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/35/WHAX.php">WHAX</a></span></h1><span style="font-size:100%;">Updated project from Whoppix. Currently discontinued and merged with BackTrack.<br /><a href="http://securitydistro.com/security-distros/35/WHAX.php">WHAX Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=24">Discuss</a> <a href="http://securitydistro.com/downloads/35/WHAX.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td><td class="distro_image" valign="center"> <br /></td></tr><tr class="distro"><td class="distro_content" valign="top"><h1><br /></h1><h1><span style="font-size:100%;"><a href="http://securitydistro.com/security-distros/32/Whoppix.php">Whoppix</a></span></h1><span style="font-size:100%;">"Whoppix is a stand-alone penetration-testing live CD based on KNOPPIX. With the latest tools and exploits, it is a must for every penetration tester and security auditor. Whoppix includes several exploit archives, such as Securityfocus, Packetstorm, SecurityForest and Milw0rm, as well as a wide variety of updated security tools." -Distrowatch<br /><a href="http://securitydistro.com/security-distros/32/Whoppix.php">Whoppix Main</a> <a href="http://securitydistro.com/forum/viewforum.php?f=3">Discuss</a> <a href="http://securitydistro.com/downloads/32/Whoppix.php">Download</a> Status: <span style="color: rgb(255, 0, 0);">Inactive</span></span></td></tr></tbody></table><br /><br />Yo no junte toda esta info, mis agradecimientos a: http://inforleon.blogspot.com/ , por recopilarnos toda la data.<br /><br />Saludos,<br /></span>Ariel M. Liguori de Gottighttp://www.blogger.com/profile/02714929794781699420noreply@blogger.com0tag:blogger.com,1999:blog-7490817570652180312.post-38079898854895280492008-05-23T10:48:00.004-03:002008-06-10T11:20:39.428-03:00SSL Debian Bug.-Realmente no lo podia evitar, un poco de humor para los colegas de Debian. (clikeen en la imagen para agrandarla).<br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://metasploit.com/users/hdm/tools/debian-openssl/pmeo9hcjp7aw9.jpg"><img style="DISPLAY: block; MARGIN: 0px auto 10px; WIDTH: 320px; CURSOR: hand; TEXT-ALIGN: center" alt="" src="http://metasploit.com/users/hdm/tools/debian-openssl/pmeo9hcjp7aw9.jpg" border="0" /></a><br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://metasploit.com/users/hdm/tools/debian-openssl/tcv80ipepkza7.jpg"><img style="DISPLAY: block; MARGIN: 0px auto 10px; WIDTH: 320px; CURSOR: hand; TEXT-ALIGN: center" alt="" src="http://metasploit.com/users/hdm/tools/debian-openssl/tcv80ipepkza7.jpg" border="0" /></a><br /><br />Muy bueno :)<br /><br />Saludos,Ariel M. Liguori de Gottighttp://www.blogger.com/profile/02714929794781699420noreply@blogger.com0tag:blogger.com,1999:blog-7490817570652180312.post-29903404895445150532008-04-29T08:49:00.002-03:002008-04-29T09:08:02.263-03:00Instalando JAVA en Debian-Realmente he lidiado con este problema y no encontre una una solucion real al problema. Por eso mismo espero que uds. puedan encontrarla aqui. Si por algun motivo queremos utilizar el Java en nuestro Debian deberemos realizar un par de pasos extras, ¿a que se debe esto? Bueno, basicamente el installer del Java es un .bin y como ya sabemos Debian no se lleva bien con ellos.<br /><span id="fullpost"><br />Nuestra Solucion: Convertirlo a .deb<br />Por suerte esto ya esta probado, documentado y nos sera extremadamente facil de realizar, siempre y cunado tengamos algunas consideraciones. Para la instalacion debemos tener lo siguiente:<br /><br />1) .bin de la version de java que queremos instalar.<br />2) Tener instalados los paquetes: java-package ^ fakeroot<br /><br />Como veran el punto 2 hace referencia a dos paquetes. El primero "java-package" permite convertir el .bin a .deb gracias al comando make-jpkg; el segundo "fakeroot" nos permite ejecutar el comando sin ser el verdadero root y, por ende, sin tener acceso a ciertos directorios delicados.<br />Para instalarlos bastara con un apt-get install X(java-package y desp. fakeroot)<br /><br />Instalando Java:<br /><pre><code><br />debian#su -<br />Password:<br /><br />debian# mkdir /usr/java<br />debian# cp sunjavaX.bin /usr/java/sunjavaX.bin<br />debian# chmod 755 /usr/java/sunjavaX.bin<br />debian# chown <UsuarioComun> /usr/java<br />debian#exit<br />debian:/usr/java$ fakeroot make-jpkg sunjavaX.bin<br />....<br />debian:/usr/java$ ls -l<br />sunjavaX.bin<br />sunjavaX.deb<br /><br />debian:/usr/java$ su -<br />Password:<br /><br />debian# cd /usr/java<br />debian# dpkg -i sunjavaX.deb<br /><br />....<br /><br />Listo!<br /></code></pre><br /><br />Bueno, ahi ya se ha instalado correctamente la version de Java X(la que uds. deseen) en el sistema.<br />Espero que les sirva y funcione.<br /><br />PD: Antes de hacer todo esto probar si no pueden instalr el java desde "apt-get install sun-javaX-bin", si funciona se evitaran unos buenos minutos!.<br /><br />Saludos,<br />Ariel.<br /></span>Ariel M. Liguori de Gottighttp://www.blogger.com/profile/02714929794781699420noreply@blogger.com0tag:blogger.com,1999:blog-7490817570652180312.post-22107954878124701642008-04-11T09:02:00.004-03:002008-04-11T16:14:48.051-03:00Integración Linux/Windows - Parte II.Finalmente, luego de varios días de trabajo he logrado lo que quería. Como recordarán el problema que tenía era que quería validar un usuario (que estaba en un entorno Linux) con un AD dentro de una estructura PKI Windows. El problema número uno era: La PC no esta en dominio. El problema número dos: El auto-enrollment de win le dará un certificado de maquina valido.<br /><span id="fullpost"><br />Bueno, aquí vienen las respuestas a todo aquello.<br />El paso numero uno consistía en seguir unos sencillos pasos, para meter la maquina en dominio use una gran cantidad de elementos:<br />Kerberos Client,<br />Samba,<br />nssswitch,<br />WinBind.<br /><br />Los pasos son bastante simples y los pueden encontrar en el <a href="http://wiki.samba.org">Wiki Samba</a>. Recomiendo leer toda la documentacion para no perderse en ningún archivo de configuración.<br /><br />Bueno como ya dije lo primero es entrar en el dominio, lo cual implica lo siguiente:<br /><pre><code><br />stigma@debian/>kinit algunuserdeldomain@domain.LOCAL<br />Password for algunuserdeldomain@DOMAIN.LOCAL: ******<br /><br />stigma@debian/>net ads join -U algunuserdeldomain<br /><br />stigma@debian/>/etc/init.d/samba start<br /> * samba -> start: smbd ... [ ok ]<br /> * samba -> start: nmbd ... [ ok ]<br /> * samba -> start: winbind ... [ ok ]<br />stigma@debian/> rc-update add samba default<br />* samba added to runlevel default<br /><br />// Para chequear.<br /><br />stigma@debian/>wbinfo -u<br />user1<br />user2<br />...<br /><br /></code></pre><br /><br />Listo, estamos en dominio. <br />Ahora nos vamos al Domain Controller del AD.<br />deberemos ver nuestro user, y con el administrador de certificados seremos capaces de ver en que grupo entro el user y los cert de maquina y de usuario.<br />Ahora nuestro Linux esta en dominio y tiene credenciales validas.<br /><br />Lo que se viene ahora es la configuracion de un FreeRadius, ponerle como Realm (lease Proxy) el IAS,y asignar el mismo a nuestro user. Esa configuracion la dejo en manos de quien quiera probar, no es para nada complicada y se puede hallar toda la información necesaria en <a href:"http://wiki.freeradius.org/Main_Page"> Wiki FreeRadius. </a><br /><br />Luego de todos estos pasos con un simple intento de validación contra el freeradius seremos redirigidos al IAS el cual comprobara nuestras credenciales contra el AD. Como el certificado de maquina y de usuario es valido el resultado de la transacción sera satisfactorio. <br /><br />¿Como hago para ver esto desde un sistema de monitoreo?<br /><br />Muy fácil, simplemente se debe analizar linea a linea el log del radius (en realidad un tail del mismo). El mensaje de validacion correcta que se recibe desde un FreeRadius es: ACCESS-ACCEPT.<br /><br />En mi caso utilizo este string en un chequeo del sitema Nagios y en caso de recibir este valor el estado de la autenticación es correcto.<br /><br />Eso es todo, espero les haya servido.<br />Saludos.<br /><br /><br /><br /></span>Ariel M. Liguori de Gottighttp://www.blogger.com/profile/02714929794781699420noreply@blogger.com0tag:blogger.com,1999:blog-7490817570652180312.post-91391384669500056092008-04-07T09:30:00.001-03:002008-04-11T15:48:41.510-03:00Integración Linux/Windows - Parte I.Buenas, volvi pronto.<br />Resulta que stoy trabajando en la integracion de sistemas de seguridad Linux a MS Windows. El problema es el siguiente:<br />Se posee un sitema de monitoreo que debe emular la accion de un usuario al intentar validarse via certificado contra un IAS (El cual se conecta contra un Active Directory Server).<br /><span id="fullpost"><br />Todo empezó bastante bien, es más creía que iba a funcionar sin pensar demasiado. Lamentablemente no es asi. El problema radica en que el equipo que posee el soft de monitoreo es un Linux, y bien, ¿que tiene eso de malo?... nada, pero todo en realidad. Al trabajar sobre una estructura PKI basada en AD de Windows, el equipo deberia estar dentro del dominio, y como se pueden dar cuenta no es el caso, pero.. ¿que implica eso?<br />En principio implica que el certificado que le voy asignar (el cual debe estar definido como valido tanto en el IAS como en el AD) es un certificado para maquinas windows, y la PC al no estar en dominio no lo podra "enrolar" adecuadamente, resultando en un trabajo en vano y fallido.<br />Aún no encuentro la solucion a este problema de integracion Linux / Windows, pero en cuanto tenga alguna novedad se las hare saber.<br /><br />Slds.,<br /><br /><br /></span>Ariel M. Liguori de Gottighttp://www.blogger.com/profile/02714929794781699420noreply@blogger.com0