Tag Archives: audit

Use nmap to check DNS configuration best practices

Use nmap to check DNS configuration best practices | A new NSE script in nmap 6.25 checks DNS zone configuration best practices. I’ll show you how it works! First, you will need nmap 6.25 (or later) installed: http://nmap.org/download.html Now with nmap 6.25 installed, run the below command against a DNS server. In this example, I am checking the configuration of the zone google.com from

Linux – How to find what version of a package is installed

Linux – How to find what version of a package is installed | Below are commands to verify the exact version of a package installed in Linux. Root prompt or sudo is not required! Red Hat or CentOS: $ rpm -qa | grep package Example: $ rpm -qa | grep openssl openssl-1.0.0-20.el6_2.5.x86_64 If a package is not installed, the output will return nothing: $ rpm -qa | grep

How to Grab | Disable BIND Version Banner

How to Grab | Disable BIND Version Banner | The BIND DNS server by default will broadcast its version publicly. Security-minded admins may want to disable broadcasting of the BIND banner. I’ll show you how! Grab BIND banner It is possible to use dig, host, nslookup or whatever your favorite DNS tool may be to query the BIND banner. I like the host command

Troubleshooting SSH Server Logs and Error Messages

Troubleshooting SSH Server Logs and Error Messages | ssh logs can have various messages that are all difficult to interpret as the exact meaning is all based on the situation or circumstance. Below are some general tips to keep in mind if you run across any of these messages in your logs! Example 1 If you see this, someone is trying random logins

Open Source Auditing Tools

Open Source Auditing Tools | Here are various open source tools that are useful for security auditing! If you are a consultant, or an admin that just likes to be on top of his game, these are free open source tools that help audit the security level of workstations and servers in your environment. Note: These are by nature Linux-friendly

Tiger Local Security Audit

Tiger Local Security Audit | Tiger is an excellent local Linux (*nix) system security audit tool. sudo apt-get install tiger Then run: sudo tiger Tiger checks various things such as all user accounts on the machine, problematic cron and service entries, complete system file permission check, rootkits, backdoors, (Debian/Ubuntu example: complete md5sum of installed files against Debian Security Advisories), listening