Network Operation Centre (NOC) is a centralized location from where network monitoring and control are exercised over a computer network or telecommunications infrastructure. NOC oversees complex networking environments, and NOC staff is responsible for monitoring, managing the network, database, servers, devices and firewalls and other related external services and responding to alerts on the [...]
Past December, South Korea-based Cryptocurrency exchange Youbit shut down its door after it was hit by a cyber-attack (for the second time in 8 months). Only a week back, a Japanese Cryptocurrency exchange Coincheck was hacked, costing it more than $534 million. These instances of cyber-terrorism are not just limited to the crypto-community. The number [...]
You're probably familiar with this icon and see it a lot these days. After all, it's one of the most trending things in business circles today. In case you're among the minority and have no idea about what the icon represents then here's a bit of useful information for you. The above icon is an [...]
Petya ransomware derived its name from the movie, Golden Eye, a 1995 James Bond flick. It was first discovered in 2016, as member of encrypting ransomware. Its primary targets are Microsoft Windows-based systems. It prevents Windows from booting by corrupting the master boot record and encrypts a victim’s hard drive’s file system through the [...]
At the time of this writing, the for MS17-010 exploit for metasploit framework is still in development. The copy can be seen at https://www.rapid7.com/db/modules/auxiliary/scanner/smb/smb_ms17_010 and https://www.rapid7.com/db/modules/exploit/windows/smb/ms17_010_eternalblue This serves as a purpose in order to test if any of your windows servers are still vulnerable to this hack. Metasploit Framework is a handy tool for [...]
A nine year old local privilege escalation vulnerability has been reported in linux kernel. All linux distribution are reportedly affected by this. In redhat/centos 5, 6 and 7, the way to identify the affected or unpatched system is like below. $ wget https://access.redhat.com/sites/default/files/rh-cve-2016-5195_1.sh $ bash rh-cve-2016-5195_1.sh An official version of the patch is not yet [...]
A systemd vulnerability has been reported which freezes systemd calls. Systemd has been widely adopted in latest Linux Distributions like Redhat Enterprise Linux, Ubuntu, Debian, SUSE Linux Enterprise Servers. Systemd is the daemon that manages other daemons in Linux. A zero sized message received in systemd notification socket will hang its pause system call. It [...]
chkrootkit is a tool to locally check for signs of a rootkit. It is a common tool among system administrators to check for rootkits. Here, I will explain how to install chkrootkit and scan your server for rootkits. I will also explain how to write a bash script to automate the chkrootkit scan and email [...]
Lynis is an auditing tool for Unix. It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. […]
