Awesome is awesome. Via river.
Get-WannaCryPatchState - Scans an AD domain to find all Windows Computers, try to connect to them, get the installed hotfixes and sees if one of 'KB4012212', 'KB4012213', 'KB4012214', 'KB4012215', 'KB4012216', 'KB4012217', 'KB4012598', 'KB4013429', 'KB4015217', 'KB4015438', 'KB4015549', 'KB4015550', 'KB4015551', 'KB4015552', 'KB4015553', 'KB4016635', 'KB4019215', 'KB4019216', 'KB4019264', 'KB4019472' are installed. The status of each machine is output to a log in the user's My Documents and a full summary is given at the end.
Pour le lien Fortinet.
A ressortir en ces jours sympas.
Parfait, un script nmap qui détecte les machines non-patchées
How to analyze Nginx configuration files for security misconfiguration on Linux or Unix
/souvenirs.
Avec :
- http://www.numerama.com/tech/128179-comment-chiffrer-ses-mails-windows-pgp.html
- https://www.nextinpact.com/news/98374-gnupg-creation-votre-premiere-paire-clefs-et-chiffrement-dun-fichier.htm
- https://www.nextinpact.com/news/102685-gpg-comment-creer-paire-clefs-presque-parfaite.htm
Et :
Via http://blog.dasroot.net/2015-gpg-made-a-comeback-in-my-workflow.html
The SSH (“Secure Shell”) protocol is a method for secure remote login from one system to another. Sysadmins and users use a secure channel over an unsecured network in a client-server architecture format for connecting an SSH client with an SSH server. Security ssh server is an important task. There is a tool called ssh_scan from Mozilla which act as a prototype SSH configuration and policy scanner for your SSHD.
apt-get install ruby gem
gem install ssh_scan
ssh_scan -t <server-a-scan>
Hardentools is a collection of simple utilities designed to disable a number of "features" exposed by operating systems (Microsoft Windows, for now), and primary consumer applications. These features, commonly thought for Enterprise customers, are generally useless to regular users and rather pose as dangers as they are very commonly abused by attackers to execute malicious code on a victim's computer. The intent of this tool is to simply reduce the attack surface by disabling the low-hanging fruit. Hardentools is intended for individuals at risk, who might want an extra level of security at the price of some usability. It is not intended for corporate environments.
Via https://www.ghacks.net/2017/02/24/hardentools-make-windows-more-secure-by-disabling-features/
Edit, avec ajout de 2 autres :
A full-featured, open source, state-of-the-art video surveillance software system. Via http://linuxfr.org/users/eaufroide/journaux/tuto-howto-mettre-en-place-zoneminder-sur-ubuntu-16-04
PwnWiki.io is a collection TTPs (tools, tactics, and procedures) for what to do after access has been gained.