Hack The Sec-Leading Resource Of Linux Tutorial

How to Protect Apache Server From Denial-of-Service (Dos) Attack

<div dir="ltr" style="text-align: left;" trbidi="on">
Protecting Apache Server From Denial-of-Service (Dos) Attack 
A denial-of-service (DoS) attack is an attempt to make a machine or network resource unavailable to its intended users, such as to temporarily or indefinitely interrupt or suspend services of a host connected to the Internet. A distributed denial-of-service (DDoS) is where the attack source is more than one, often thousands of, unique IP addresses. It is analogous to a group of people crowding the entry door or gate to a shop or business, and not letting legitimate parties enter into the shop or business, disrupting normal operations. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgbvXzbAIVFMdclQaDCSCILQQsJG_oW-jSzbDmSZnd57RAIJ5NuLhrkUjrxXBFx6QNR4K1oia4tvxSmx_7rK5S_50_zR6YwMnhZd7C834Cfq4Z-4-GWZ1HoFotAEJQJeecaIF-G5WN9P3Hx/s1600/ddos_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgbvXzbAIVFMdclQaDCSCILQQsJG_oW-jSzbDmSZnd57RAIJ5NuLhrkUjrxXBFx6QNR4K1oia4tvxSmx_7rK5S_50_zR6YwMnhZd7C834Cfq4Z-4-GWZ1HoFotAEJQJeecaIF-G5WN9P3Hx/s1600/ddos_hackthesec.co.in.png" /></a></div>
 
Criminal perpetrators of DoS attacks often target sites or services hosted on high-profile web servers such as banks, credit card payment gateways; but motives of revenge, blackmail or activism can be behind other attacks. 
 
The scale of DDOS attacks has continued to rise over recent years; web security company, CloudFlare, reported in 2016 they consistently mitigated attacks of 400Gbps. 
What is mod_evasive? 
 
mod_evasive is an evasive maneuvers module for Apache to provide evasive action in the event of an HTTP DoS or DDoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and etcetera. mod_evasive presently reports abuses via email and syslog facilities. 
Installing mod_evasive 
Server Distro: Debian 8 jessie 
Apache Version: Apache/2.4.10 
 
mod_evasive appears to be in the Debian official repository, we will need to install using apt 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;"># apt-get update
# apt-get install libapache2-mod-evasive</pre>
Setting up mod_evasive 
 
We have mod_evasive installed but not configured, mod_evasive config is located at /etc/apache2/mods-available/evasive.conf. We will be editing that which should look similar to this 
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;"><IfModule mod_evasive20.c>
 #DOSHashTableSize 3097
 #DOSPageCount 2
 #DOSSiteCount 50
 #DOSPageInterval 1
 #DOSSiteInterval 1
 #DOSBlockingPeriod 10

#DOSEmailNotify you@yourdomain.com
 #DOSSystemCommand "su - someuser -c '/sbin/... %s ...'"
 #DOSLogDir "/var/log/mod_evasive"
 </IfModule></pre>
mod_evasive Configuration Directives 
 
<ul style="text-align: left;">
<li>DOSHashTableSize</li>
<li>DOSPageCount</li>
<li>DOSSiteCount</li>
<li>DOSPageInterval</li>
<li>DOSSiteInterval</li>
<li>DOSBlockingPeriod</li>
<li>DOSEmailNotify</li>
<li>DOSSystemCommand</li>
<li>DOSLogDir</li>
</ul>
 
 
This configuration is what I’m using which is working well and I recommend it if you don’t know how to go about the configuration 
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;"><IfModule mod_evasive20.c>
 DOSHashTableSize 2048
 DOSPageCount 5
 DOSSiteCount 100
 DOSPageInterval 1
 DOSSiteInterval 2
 DOSBlockingPeriod 10

DOSEmailNotify you@yourdomain.com
 #DOSSystemCommand "su - someuser -c '/sbin/... %s ...'"
 DOSLogDir "/var/log/mod_evasive"
</IfModule></pre>
As you’ll replace you@yourdomain.com with your email. Since mod_evasive doesn’t create the log directory automatically, we are to create it for it: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;"># mkdir /var/log/mod_evasive
# chown :www-data /var/log/mod_evasive
# chmod 771 /var/log/mod_evasive</pre>
Once setup is done, make sure mod_evasive is enabled by typing: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;"># a2enmod evasive</pre>
Restart Apache for changes to take effect 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;"># systemctl restart apache2</pre>
Testing mod_evasive Setup 
 
mod_evasive set up correctly,  now we are going to test if our web server has protection again DoS attack using ab (Apache Benchmark). Install ab if you don’t have it by typing: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;"># apt-get install apache2-utils</pre>
Current stat of our /var/log/mod_evasive 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">root@hackthesec:/var/log/mod_evasive# ls -l
 total 0
root@hackthesec:/var/log/mod_evasive#</pre>
We will now send bulk requests to the server, causing a DoS attack  by typing: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;"># ab -n 100 -c 10 http://serverip/</pre>
Sending 100 request on 10 concurrent requests per request, the current stat of my /var/log/mod_evasive directory is now 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">root@hackthesec:/var/log/mod_evasive# ls -l
 total 4
 -rw-r--r-- 1 www-data www-data 18 May 16 22:10 dos-10.42.0.1</pre>
Checking Apache access logs at /var/log/apache2/access.log we can see all connections from ApacheBench/2.3 were dropped to 403: 
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></div>

How to Protect Apache Server From Denial-of-Service (Dos) Attack

Protecting Apache Server From Denial-of-Service (Dos) Attack A denial-of-service (DoS) attack is an attempt to make a machine or network resource unavailable to its intended users, such as to tempora…

18 May 2016

Configure vsftpd SSL/TLS and Jail for Any User Writing as www-data to Web Server

<div dir="ltr" style="text-align: left;" trbidi="on">
Configure vsftpd SSL/TLS and Jail for Any User Writing as www-data to Web Server 
 
<a href="http://www.hackthesec.co.in/search/label/vsftp">vsftpd</a>, (or very secure FTP daemon), is an <a href="http://www.hackthesec.co.in/search/label/ftp">FTP</a> server for Unix-like systems, including Linux. It is licensed under the GNU General Public License. It supports IPv6 and SSL. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj4DuFEKA7uUfUyq3NjeiqEJRsKfjRKEhgoqMczS8lnDImAetVPJDFKrFZBqXmvnIqSTcGW1Eu_1ZXgnxBItoUatI4cACW4RhWhC5mF0e7AkpqaFjbQx4-a7q59cZLWqYOc4HzZXW68ubfU/s1600/vsftpd_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj4DuFEKA7uUfUyq3NjeiqEJRsKfjRKEhgoqMczS8lnDImAetVPJDFKrFZBqXmvnIqSTcGW1Eu_1ZXgnxBItoUatI4cACW4RhWhC5mF0e7AkpqaFjbQx4-a7q59cZLWqYOc4HzZXW68ubfU/s1600/vsftpd_hackthesec.co.in.png" /></a></div>
 
vsftpd supports explicit (since 2.0.0) and implicit (since 2.1.0) FTPS. 
 
vsftpd is the default FTP server in the Ubuntu, CentOS, Fedora, NimbleX, Slackware and RHEL Linux distributions. 
INSTALL VSFTPD 
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px;">
Debian <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># apt-get install vsftpd</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
RedHat <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># yum -y install vsftpd</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Arch Linux <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># pacman -S vsftpd</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
FreeBSD <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># pkg install vsftpd</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
FreeBSD to enable vsftpd you would enter: <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># vim /etc/rc.conf</div>
Add line below to enable and start vsftpd during startup: 
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">vsftpd_enable="YES"</pre>
Start vsftpd: 
<div style="background-color: white; color: #444444; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px;">
<span class="xtypo_sticky" style="background: url("/templates/yoo_nano3/css/assets/shadow.png") 50% 100% repeat-x rgb(92, 93, 95); border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;">$ sudo /usr/local/etc/rc.d/vsftpd start</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Some settings in FreeBSD vsftpd.conf are a little different. I'll create a article specifically for FreeBSD vsftpd.</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px;">
Gentoo <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># emerge vsftpd</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Adding and starting Gentoo vsftpd at startup:</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
OpenRC <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># rc-update add vsftpd default # /etc/init.d/vsftpd start</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
systemd <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># systemctl enable vsftpd # systemctl start vsftpd</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px;">
Add user to login to the vsftpd server <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># adduser ftpuser</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Change password: <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># passwd ftpuser</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Create a folder for the user we just created in the root or your web server: <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># mkdir /var/www/html/ftpuser</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Add rights to the directory for the user: <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># chmod -R ftpuser:ftpuser /var/www/html/ftpuser</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Add the following in: <span class="xtypo_sticky" style="background: url("/templates/yoo_nano3/css/assets/shadow.png") 50% 100% repeat-x rgb(92, 93, 95); border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># vim /etc/vsftpd.conf</div>
Add the following lines: 
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">listen=YES
anonymous_enable=NO
local_enable=YES
virtual_use_local_privs=YES
write_enable=YES
connect_from_port_20=YES
secure_chroot_dir=/var/run/vsftpd
pam_service_name=vsftpd
guest_enable=YES
ftp_username=www-data
chmod_enable=YES
chown_uploads=YES
chown_username=www-data
guest_username=www-data
force_dot_files=YES
pasv_enable=YES
pasv_promiscuous=YES
pasv_min_port=1024
pasv_max_port=65535
syslog_enable=YES
max_clients=10
max_per_ip=10
port_promiscuous=YES
port_enable=YES
listen_port=21
ftp_data_port=20
user_sub_token=$USER
hide_ids=YES
user_config_dir=/etc/vsftpd
chroot_local_user=YES
allow_writeable_chroot=YES
seccomp_sandbox=NO</pre>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">SSL lines
ssl_enable=YES
rsa_cert_file=/etc/ssl/linuxsecrets-bundle.crt
rsa_private_key_file=/etc/ssl/linuxsecrets_com.key
allow_anon_ssl=NO
force_local_data_ssl=YES
force_local_logins_ssl=YES
ssl_tlsv1=YES
ssl_sslv2=NO
ssl_sslv3=NO
require_ssl_reuse=NO
ssl_ciphers=HIGH</pre>
Save the file if using vi or vim hit : then x. 
Change Default vsftpd Port 
 
If you like you can change the vsftpd default ports to non-standard to listen on 1234 
<div class="xtypo_sticky" style="background: url("/templates/yoo_nano3/css/assets/shadow.png") 50% 100% repeat-x rgb(92, 93, 95); border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 20px; margin-bottom: 5px; margin-top: 5px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;">
# vim /etc/vsftpd.conf</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Set this to NO:</div>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">connect_from_port_20=NO
ftp_data_port=1233
listen_port=1234</pre>
Custom vsftpd Logs 
<div class="xtypo_sticky" style="background: url("/templates/yoo_nano3/css/assets/shadow.png") 50% 100% repeat-x rgb(92, 93, 95); border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 20px; margin-bottom: 5px; margin-top: 5px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;">
# vim /etc/vsftpd.conf</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Default log – enable and change for custom location/name</div>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">xferlog_file=/var/log/vsftpd.log</pre>
Make sure you disable syslog_enable=NO 
 
This will show all files moving through the webserver, but if you want to view all the activity, including connections and commands you need to add: 
<div>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">log_ftp_protocol=YES</pre>
</div>
After making changes to the ports you need to restart the service 
<div style="background-color: white; color: #444444; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px;">
<span class="xtypo_sticky" style="background: url("/templates/yoo_nano3/css/assets/shadow.png") 50% 100% repeat-x rgb(92, 93, 95); border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># service vsftpd restart</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Verify port:</div>
<div style="background-color: white; color: #444444; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px;">
<span class="xtypo_sticky" style="background: url("/templates/yoo_nano3/css/assets/shadow.png") 50% 100% repeat-x rgb(92, 93, 95); border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># netstat -nuptl | grep ftp</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Output:</div>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">tcp 0 0 0.0.0.0:1234 0.0.0.0:* LISTEN 4136/vsftpd</pre>
<div style="background-color: white; margin-bottom: 20px;">
Options Defined Bellow:-</div>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">listen - vsftpd itself will take care of listening and handling incoming connections. Default setting is NO.
anonymous_enable - Allow anonymous FTP? (Beware - allowed by default if you comment this out). Set this to NO
local_enable - Controls whether local logins are permitted or not. If enabled, normal user accounts in /etc/passwd (or wherever your PAM config references) may be used to log in.
virtual_use_local_privs - If enabled, virtual users will use the same privileges as local users. By default, virtual users will use the same privileges as anonymous users, which tends to be more restrictive (especially in terms of write access).
write_enable - This controls whether any FTP commands which change the filesystem are allowed or not. These commands are: STOR, DELE, RNFR, RNTO, MKD, RMD, APPE and SITE.
connect_from_port_20 - This controls whether PORT style data connections use port 20 (ftp-data) on the server machine. 
secure_chroot_dir - This option should be the name of a directory which is empty. Also, the directory should not be writable by the ftp user. This directory is used as a secure chroot() jail at times vsftpd does not require filesystem access.
pam_service_name - PAM (pluggable authentication modules). A virtual user is a user login which does not exist as a real login on the system in /etc/passwd and /etc/shadow file.
guest_enable - If enabled, all non-anonymous logins are classed as "guest" logins. A guest login is remapped to the user specified in the guest_username setting.
ftp_username - This is the name of the user we use for handling anonymous FTP. The home directory of this user is the root of the anonymous FTP area. Default is ftp.
chmod_enable - When enabled, allows use of the SITE CHMOD command. NOTE! This only applies to local users. Anonymous users never get to use SITE CHMOD.
chown_uploads - If enabled, all anonymously uploaded files will have the ownership changed to the user specified in the setting chown_username. This is useful from an administrative, and perhaps security, standpoint.
chown_username - This is the name of the user who is given ownership of anonymously uploaded files. This option is only relevant if another option, chown_uploads, is set.
guest_username - See the boolean setting guest_enable for a description of what constitutes a guest login. This setting is the real username which guest users are mapped to.
force_dot_files - If activated, files and directories starting with . will be shown in directory listings even if the "a" flag was not used by the client. This override excludes the "." and ".." entries.
pasv_enable - Set to NO if you want to disallow the PASV method of obtaining a data connection.
pasv_promiscuous - Set to YES if you want to disable the PASV security check that ensures the data connection originates from the same IP address as the control connection. Only enable if you know what you are doing! The only legitimate use for this is in some form of secure tunnelling scheme, or perhaps to facilitate FXP support.
pasv_min_port - The minimum port to allocate for PASV style data connections. Can be used to specify a narrow port range to assist firewalling.
pasv_max_port - The maximum port to allocate for PASV style data connections. Can be used to specify a narrow port range to assist firewalling.
syslog_enable - If enabled, then any log output which would have gone to /var/log/vsftpd.log goes to the system log instead. Logging is done under the FTPD facility.
max_clients - If vsftpd is in standalone mode, this is the maximum number of clients which may be connected. Any additional clients connecting will get an error message.
max_per_ip - If vsftpd is in standalone mode, this is the maximum number of clients which may be connected from the same source internet address. A client will get an error message if they go over this limit.
port_promiscuous - Set to YES if you want to disable the PORT security check that ensures that outgoing data connections can only connect to the client. Only enable if you know what you are doing!
port_enable - Set to NO if you want to disallow the PORT method of obtaining a data connection.
listen_port - If vsftpd is in standalone mode, this is the port it will listen on for incoming FTP connections.
ftp_data_port - The port from which PORT style connections originate (as long as the poorly named connect_from_port_20 is enabled).
user_sub_token - This option is useful is conjunction with virtual users. It is used to automatically generate a home directory for each virtual user, based on a template. For example, if the home directory of the real user specified via guest_username is /home/virtual/$USER, and user_sub_token is set to $USER, then when virtual user fred logs in, he will end up (usually chroot()'ed) in the directory /home/virtual/fred. This option also takes affect if local_root contains user_sub_token.
hide_ids - If enabled, all user and group information in directory listings will be displayed as "ftp".
user_config_dir - This powerful option allows the override of any config option specified in the manual page, on a per-user basis. Usage is simple, and is best illustrated with an example. If you set user_config_dir to be /etc/vsftpd_user_conf and then log on as the user "chris", then vsftpd will apply the settings in the file /etc/vsftpd_user_conf/chris for the duration of the session. The format of this file is as detailed in this manual page! PLEASE NOTE that not all settings are effective on a per-user basis. For example, many settings only prior to the user's session being started. Examples of settings which will not affect any behviour on a per-user basis include listen_address, banner_file, max_per_ip, max_clients, xferlog_file, etc.
chroot_local_user - If set to YES, local users will be (by default) placed in a chroot() jail in their home directory after login. Warning: This option has security implications, especially if the users have upload permission, or shell access. Only enable if you know what you are doing. Note that these security implications are not vsftpd specific. They apply to all FTP daemons which offer to put local users in chroot() jails.
allow_writeable_chroot - Writeable enabled to specificed location by setting to = YES
seccomp_sandbox - is a computer security facility that provides an application sandboxing mechanism in the Linux kernel. Setting to NO resolves some errors. </pre>
<div style="background-color: white; margin-bottom: 20px;">
SSL Lines Defined Bellow:-</div>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">sl_enable - Enables SSL support
rsa_cert_file - Specify localtion of you webserver crt like: /etc/ssl/bundle.crt
rsa_private_key_file - Specify location to /etc/ssl/linuxsecrets.key from webserver.
allow_anon_ssl - Disallow anaymous logins set to NO
force_local_data_ssl - Only applies if ssl_enable is activated. If activated, all non-anonymous logins are forced to use a secure SSL connection in order to send and receive data on data connections.
force_local_logins_ssl - Only applies if ssl_enable is activated. If activated, all non-anonymous logins are forced to use a secure SSL connection in order to send the password.
ssl_tlsv1 - Only applies if ssl_enable is activated. If enabled, this option will permit TLS v1 protocol connections. TLS v1 connections are preferred.
ssl_sslv2 - Only applies if ssl_enable is activated. If enabled, this option will permit SSL v2 protocol connections. TLS v1 connections are preferred.
ssl_sslv3 - Only applies if ssl_enable is activated. If enabled, this option will permit SSL v3 protocol connections. TLS v1 connections are preferred.
require_ssl_reuse - If set to yes, all SSL data connections are required to exhibit SSL session reuse (which proves that they know the same master secret as the control channel). Although this is a secure default, it may break many FTP clients, so you may want to disable it.
ssl_ciphers - This option can be used to select which SSL ciphers vsftpd will allow for encrypted SSL connections. See the ciphers man page for further details. Note: that restricting ciphers can be a useful security precaution as it prevents malicious remote parties forcing a cipher which they have found problems with. </pre>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px;">
Start the vsftpd service<span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># service vsftpd start</div>
<div style="background-color: white; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Verify you have the correct port or custom port assigned and working. <span class="xtypo_sticky" style="background-attachment: initial; background-clip: initial; background-color: #5c5d5f; background-image: url("/templates/yoo_nano3/css/assets/shadow.png"); background-origin: initial; background-position: 50% 100%; background-repeat: repeat-x; background-size: initial; border-image-outset: initial; border-image-repeat: initial; border-image-slice: initial; border-image-source: initial; border-image-width: initial; border-radius: 3px; border: 1px solid rgb(92, 93, 95); box-shadow: rgb(204, 204, 204) 0px 0px 3px; color: white; display: block; font-family: Arial, Helvetica, sans-serif; font-size: 15px; margin: 5px 0px; padding: 5px 15px; text-shadow: rgb(102, 102, 102) 0px -1px 0px;"># netstat -nuptl | grep ftp</div>
<div style="background-color: white; color: #444444; font-family: 'Open Sans'; font-size: 14px; line-height: 20px; margin-bottom: 20px; margin-top: 20px;">
Output:</div>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 4136/vsftpd</pre>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;"><a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></pre>
</div>

Configure vsftpd SSL/TLS and Jail for Any User Writing as www-data to Web Server

Configure vsftpd SSL/TLS and Jail for Any User Writing as www-data to Web Server vsftpd, (or very secure FTP daemon), is an FTP server for Unix-like systems, including Linux. It is licensed under the…

18 May 2016

Apache Struts Dynamic Method Invocation Remote Code Execution

<div dir="ltr" style="text-align: left;" trbidi="on">
<h1 style="background-color: white; box-sizing: border-box; color: #555555; font-family: 'Noto Sans', sans-serif; font-size: 38px; font-stretch: normal; font-weight: 300; line-height: 1.4; margin: 0px; text-align: center;">
Apache Struts Dynamic Method Invocation Remote Code Execution</h1>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj1FwVD2cuQk-DigseLNIovYxV1-QPF4gSNpa6R4GBEN1tcpTm_tEGpwNPik3d7b2XIefFTLgP-8ysao60qDO1qLLFOSHeTehe71pz5OO7mIE9y5CAXWho9EJGYFsJTY8zuzyYnJ0-l7R5_/s1600/asf_logo.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj1FwVD2cuQk-DigseLNIovYxV1-QPF4gSNpa6R4GBEN1tcpTm_tEGpwNPik3d7b2XIefFTLgP-8ysao60qDO1qLLFOSHeTehe71pz5OO7mIE9y5CAXWho9EJGYFsJTY8zuzyYnJ0-l7R5_/s1600/asf_logo.png" /></a></div>
<div>
 </div>
<table class="exploit_list" style="background-color: rgb(239, 239, 239) !important; border-radius: 3px !important; border-spacing: 1px; border: 1px solid rgb(221, 221, 221) !important; box-sizing: border-box; color: #666666; font-family: 'Open Sans', sans-serif; font-size: 14px; line-height: 24px; margin-bottom: 10px; margin-top: 10px; padding: 1px !important; width: 583px;"><tbody style="box-sizing: border-box;">
<tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"> </td><td style="box-sizing: border-box; padding: 5px 10px;">CVE: 2016-3081</td><td style="box-sizing: border-box; padding: 5px 10px;"></td></tr>
<tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"> <span class="fa fa-check-circle-o" style="-webkit-font-smoothing: antialiased; box-sizing: border-box; display: inline-block; font-family: FontAwesome; font-size: inherit; font-stretch: normal; line-height: 1; text-rendering: auto;"></td><td style="box-sizing: border-box; padding: 5px 10px;">Author: metasploit</td><td style="box-sizing: border-box; padding: 5px 10px;"> </td></tr>
<tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;">Download Exploit: <a href="https://www.exploit-db.com/download/39756" style="background-color: transparent; box-sizing: border-box; color: #337ab7; outline: 0px; text-decoration: none; transition-duration: 0.3s; transition-property: background-color, box-shadow, border, color, opacity;"><span class="fa fa-file-code-o" style="-webkit-font-smoothing: antialiased; box-sizing: border-box; display: inline-block; font-family: FontAwesome; font-size: inherit; font-stretch: normal; line-height: 1; text-rendering: auto;"> Source</a></td><td colspan="2" style="box-sizing: border-box; padding: 5px 10px;"> </td></tr>
</tbody></table>
</div>

Apache Struts Dynamic Method Invocation Remote Code Execution

Apache Struts Dynamic Method Invocation Remote Code Execution CVE: 2016-3081 Author: metasploit Download Exploit: Source …

18 May 2016

Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection

<div dir="ltr" style="text-align: left;" trbidi="on">
<h1 style="background-color: white; box-sizing: border-box; color: #555555; font-family: 'Noto Sans', sans-serif; font-size: 38px; font-stretch: normal; font-weight: 300; line-height: 1.4; margin: 0px; text-align: center;">
Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection</h1>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiwxsCMUXU2y6IZt97YL0FBJj9n476GX9HvGD_GEseTUXGHpjwHHid8zfBgU2ScPYGMO5qwmeDRTnhevZPgJISPtAqFezasRw1Ppoo_N-KQq4xuTc_Qbot0ZxFVNkN53tL-KGiuE7_N0KJK/s1600/dell_sonicwall_exploit.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiwxsCMUXU2y6IZt97YL0FBJj9n476GX9HvGD_GEseTUXGHpjwHHid8zfBgU2ScPYGMO5qwmeDRTnhevZPgJISPtAqFezasRw1Ppoo_N-KQq4xuTc_Qbot0ZxFVNkN53tL-KGiuE7_N0KJK/s1600/dell_sonicwall_exploit.jpg" /></a></div>
<div>
<table class="exploit_list" style="background-color: rgb(239, 239, 239) !important; border-radius: 3px !important; border-spacing: 1px; border: 1px solid rgb(221, 221, 221) !important; box-sizing: border-box; color: #666666; font-family: 'Open Sans', sans-serif; font-size: 14px; line-height: 24px; margin-bottom: 10px; margin-top: 10px; padding: 1px !important; text-align: center; width: 583px;"><tbody style="box-sizing: border-box;">
<tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"></td><td style="box-sizing: border-box; padding: 5px 10px;">CVE: 2014-4977</td><td style="box-sizing: border-box; padding: 5px 10px;"> </td></tr>
<tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"></td><td style="box-sizing: border-box; padding: 5px 10px;">Author: metasploit</td><td style="box-sizing: border-box; padding: 5px 10px;"> </td></tr>
<tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;">Download Exploit: <a href="https://www.exploit-db.com/download/39836" style="background-color: transparent; box-sizing: border-box; color: #337ab7; outline: 0px; text-decoration: none; transition-duration: 0.3s; transition-property: background-color, box-shadow, border, color, opacity;"><span class="fa fa-file-code-o" style="-webkit-font-smoothing: antialiased; box-sizing: border-box; display: inline-block; font-family: FontAwesome; font-size: inherit; font-stretch: normal; line-height: 1; text-rendering: auto;"> Source</a></td><td colspan="2" style="box-sizing: border-box; padding: 5px 10px;"> </td></tr>
</tbody></table>
</div>
</div>

Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection

Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection CVE: 2014-4977 Author: metasploit Download Exploit: Source …

18 May 2016

How to install OpenVas in Centos 6/7 and Fedora 23/24

<div dir="ltr" style="text-align: left;" trbidi="on">
Install OpenVas in Centos 6/7 and Fedora 23/24 
OpenVAS (Open Vulnerability Assessment System,the name of the fork originally known as GNessUs) is a framework of several services and tools offering a vulnerability scanning and vulnerability management solution. 
All OpenVAS products are Free Software. Most components are licensed under the GPL. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgt4XDZZrKy47zsbXI1ZEdj8GCh69Mke8hyphenhyphenEvhu4VtC5W1uKkabhsipVM7ki3rew5RlK2uxjwWzWCnRm7eo06UI78OiC9JlcOHPc__oFD-RmM2A1ig1FeQIgCgr5FsB0LfK1LO6CpTwzi6S/s1600/OpenVAS4-Structure_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgt4XDZZrKy47zsbXI1ZEdj8GCh69Mke8hyphenhyphenEvhu4VtC5W1uKkabhsipVM7ki3rew5RlK2uxjwWzWCnRm7eo06UI78OiC9JlcOHPc__oFD-RmM2A1ig1FeQIgCgr5FsB0LfK1LO6CpTwzi6S/s1600/OpenVAS4-Structure_hackthesec.co.in.png" /></a></div>
OpenVas began, under the name of GNessUs, as a fork of the previously open source Nessus scanning tool after Tenable Network Security changed it to a proprietary (closed source) license in October 2005. OpenVAS was originally proposed by pentesters at Portcullis Computer Security and then announced by Tim Brown on Slashdot. 
 
OpenVAS is a member project of Software in the Public Interest. 
INSTALLATION 
First you need Install required packages Bellow 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">yum install wget bzip2 texlive net-tools alien</pre>
After that need to add atomic repository to install openvas as follows 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">wget -q -O - http://www.atomicorp.com/installers/atomic |sh</pre>
Now Disable The SELINUX 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">Edit /etc/selinux/config </pre>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;"># This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - No SELinux policy is loaded.
SELINUX=disabled
# SELINUXTYPE= can take one of these two values:
# targeted - Targeted processes are protected,
# mls - Multi Level Security protection.
SELINUXTYPE=targeted</pre>
Now install Openvas by using following command in terminal by using yum 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">yum -y install openvas</pre>
Now Edit the openvas config file and add or uncomment the following lines 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">edit /etc/redis.conf</pre>
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">unixsocket /tmp/redis.sock
unixsocketperm 700</pre>
Restart Redis 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">systemctl enable redis && systemctl restart redis</pre>
Once All done then start the setup process by using  the command openvas-setup. This is going to take some time. You will be prompted for some information shortly 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">openvas-setup</pre>
It downloads the latest databases once it completed, enter the Administrator password 
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;">Step 2: Configure GSAD
The Greenbone Security Assistant is a Web Based front end
for managing scans. By default it is configured to only allow
connections from localhost.

Allow connections from any IP? [Default: yes] 
Allow connections from any IP? [Default: yes] Redirecting to /bin/systemctl restart
  gsad.service

Step 3: Choose the GSAD admin users password.
The admin user is used to configure accounts,
Update NVT's manually, and manage roles.

Enter administrator username [Default: admin] : Enter Administrator Password:
Verify Administrator Password:
Empty password not allowed.

Enter Administrator Password:
Verify Administrator Password:
Redirecting to /bin/systemctl start redis.service

Setup complete, you can now access GSAD at:
https://192.168.2.56:9392</pre>
once completed, you are able to login.Before that, we're just going to disable firewalld service. my case i have centos 7 it's depend on os version 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">systemctl stop firewalld
systemctl mask firewalld
</pre>
Or You can exception for tcp 9392 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">firewall-cmd --permanent --zone=public --add-port=9392/tcp
firewall-cmd --reload</pre>
 
Now Go to your web browser, type the url as https://192.168.2.56:9392(In my case my ip address is 192.168.2.56) default username is admin and enter the password entered during setup, and you should be able to login. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjSczFKT-um6AclB_AuWMs1-1whexF0uSOqHcTOGX-HDQdikKe6A7CERS8oAIXT3uBi3BZaX4ranoMc_4uLFXU4NY8Ecgy2gqE0Vkpcd41xZO9sbgpl0dhaY09SsZ6MB_5jqhiPX2Vtsqg5/s1600/security-alert-for-openvas_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjSczFKT-um6AclB_AuWMs1-1whexF0uSOqHcTOGX-HDQdikKe6A7CERS8oAIXT3uBi3BZaX4ranoMc_4uLFXU4NY8Ecgy2gqE0Vkpcd41xZO9sbgpl0dhaY09SsZ6MB_5jqhiPX2Vtsqg5/s1600/security-alert-for-openvas_hackthesec.co.in.png" /></a></div>
After that you will see a login panel check the screenshot bellow 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgNmKfuYDy50xhNm6MiA1kCUKVEWStPTifR-HQ2UclhSaNysQyJXV8fW4uU2_mFD2yhxi1Tvw_MexFi7rUPXXKxaN8mdvanL74m0Iqhm1yRHTp74Bac0F8xFJovwjmCjT-8CD048Cl7LQi-/s1600/openvas-webinterface-hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgNmKfuYDy50xhNm6MiA1kCUKVEWStPTifR-HQ2UclhSaNysQyJXV8fW4uU2_mFD2yhxi1Tvw_MexFi7rUPXXKxaN8mdvanL74m0Iqhm1yRHTp74Bac0F8xFJovwjmCjT-8CD048Cl7LQi-/s1600/openvas-webinterface-hackthesec.co.in.png" /></a></div>
To start a scan, enter an IP in the start scan area. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEikNNbd_UUq8606k5ij7SghA-cDfHC4hmxasUL0D2bJ1s_LHJPFuk678j2OQFr_0qxOi4fhk31Fc-I6FsvvePIJ7xOKSs3CTh1Y-OlvNo4I0nsmpKaC4kuIO5jccNAAe3OzrWfwgzsjreL8/s1600/quick-scan-hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEikNNbd_UUq8606k5ij7SghA-cDfHC4hmxasUL0D2bJ1s_LHJPFuk678j2OQFr_0qxOi4fhk31Fc-I6FsvvePIJ7xOKSs3CTh1Y-OlvNo4I0nsmpKaC4kuIO5jccNAAe3OzrWfwgzsjreL8/s1600/quick-scan-hackthesec.co.in.png" /></a></div>
You can also configure the report format by going into Configuration section. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhWJBatKxWYrb4Y8ZJlmTXxqXBrFo_W79L1x2BPn3HXcfCuh7LK9G8JBF0xVg48JwUpjB_rebHtsDHSSxTwhEfoGEWrqLG4Uz5LDGbaW_NnB96qv_cnRx_wn4aBX9s_ZEZXX8AWnjpEk4Qb/s1600/report-format-hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhWJBatKxWYrb4Y8ZJlmTXxqXBrFo_W79L1x2BPn3HXcfCuh7LK9G8JBF0xVg48JwUpjB_rebHtsDHSSxTwhEfoGEWrqLG4Uz5LDGbaW_NnB96qv_cnRx_wn4aBX9s_ZEZXX8AWnjpEk4Qb/s1600/report-format-hackthesec.co.in.png" /></a></div>
<div class="separator" style="clear: both; text-align: left;">
Installation Done</div>
<div class="separator" style="clear: both; text-align: left;">
Thanks</div>
<div class="separator" style="clear: both; text-align: left;">
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></div>
</div>

How to install OpenVas in Centos 6/7 and Fedora 23/24

Install OpenVas in Centos 6/7 and Fedora 23/24 OpenVAS (Open Vulnerability Assessment System,the name of the fork originally known as GNessUs) is a framework of several services and tools offering a …

18 May 2016

How to install Elefant CMS on Ubuntu 16.04

<div dir="ltr" style="text-align: left;" trbidi="on">
Install Elefant CMS on Ubuntu 16.04 
Elefant CMS is an open source CMS and web framework written in PHP that allows web developers to create everything from simple websites to complete web applications. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEifcgzn3YRIiZ_H-CFR9auVE5UJKRL14CnEb0jTcCxme-NTPwk2V6uhOoMNgYiKv65wII72mLvfuS1webe1Ac7sk0hLXvgcJHf-YxOm0-i2b8suMWviPrKjx3C1iGcAzEsIx-0W-zvVg257/s1600/elefant_cms_hosting_hackthesec.co.in.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEifcgzn3YRIiZ_H-CFR9auVE5UJKRL14CnEb0jTcCxme-NTPwk2V6uhOoMNgYiKv65wII72mLvfuS1webe1Ac7sk0hLXvgcJHf-YxOm0-i2b8suMWviPrKjx3C1iGcAzEsIx-0W-zvVg257/s1600/elefant_cms_hosting_hackthesec.co.in.png" /></a></div>
 
Requirements 
Browser requirements: 
 
<ul style="text-align: left;">
<li>Google Chrome</li>
<li>Safari 4+</li>
<li>Firefox 3.5+</li>
<li>IE 8+</li>
</ul>
 
Server requirements: 
 
<ul style="text-align: left;">
<li>PHP 5.3+ or HHVM</li>
<li>Apache with mod_rewrite or Nginx web server</li>
<li>SQLite, *MySQL, or PostgreSQL database</li>
<li>PHP CURL extension required for some features</li>
</ul>
 
*MySQL replacements such as MariaDB and Percona are also supported. 
 
Linux users should use your distribution's package management system to install the required server software. 
Install Elefant CMS 
It is best to install Elefant CMS using Composer, so install Composer if it is not already installed by running the following commands: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">apt-get install curl
cd /opt
curl -sS https://getcomposer.org/installer | php
mv composer.phar /usr/local/bin/composer</pre>
Download the latest version of Elefant CMS using the following commands: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">cd /var/www
composer create-project elefant/cms --stability=dev your-domain.com</pre>
Do not forget to replace your-domain.com with your actual domain name. 
Alternatively, if you do not want to use Composer, you can always download the latest version at https://github.com/jbroadway/elefant/releases , then extract the Elefant CMS archive to the /var/www/html/your-domain.com/ directory on your server. 
 
Next, create a new MySQL database for Elefant CMS to use and assign a user to it with full permissions: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">mysql -u root -p
mysql> SET GLOBAL sql_mode='';
mysql> CREATE USER elefant;
mysql> CREATE DATABASE elefantdb;
mysql> GRANT ALL PRIVILEGES ON elefantdb.* TO 'elefant'@'localhost' IDENTIFIED BY 'your-password' WITH GRANT OPTION;
mysql> FLUSH PRIVILEGES;
mysql> quit</pre>
Do not forget to replace'your-password' with a strong password. 
 
Create a new virtual host directive in Apache. For example, create a new Apache configuration file named 'elefant.conf' on your virtual server: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">touch /etc/apache2/sites-available/elefant.conf</pre>
Edit the 'elefant.conf' configuration file: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">vi /etc/apache2/sites-available/elefant.conf</pre>
and add the following lines to it: 
<pre style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgb(204, 204, 204); box-sizing: border-box; color: #333333; font-family: Menlo, Monaco, Consolas, 'Courier New', monospace; font-size: 13px; line-height: 1.42857; margin-bottom: 10px; overflow: auto; padding: 9.5px; word-break: break-all; word-wrap: break-word;"><VirtualHost *:80>
ServerAdmin admin@your-domain.com
DocumentRoot /var/www/html/your-domain.com/
ServerName your-domain.com
ServerAlias www.your-domain.com
<Directory /var/www/html/your-domain.com/>
Options FollowSymLinks
AllowOverride All
</Directory>
ErrorLog /var/log/apache2/your-domain.com-error_log
CustomLog /var/log/apache2/your-domain.com-access_log common
</VirtualHost></pre>
Then, run the following command: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">ln -s /etc/apache2/sites-available/elefant.conf /etc/apache2/sites-enabled/elefant.conf</pre>
Or, use the a2ensite to enable the 'elefant.conf' configuration in Apache: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">sudo a2ensite elefant.conf</pre>
Set the proper file permissions for the Apache web server to write to the Elefant CMS document root ('/var/www/html/your-domain.com') directory: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">sudo chown -R www-data:www-data /var/www/html/your-domain.com/</pre>
Enable the Apache2 rewrite module if it is not already done so: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">sudo a2enmod rewrite</pre>
Restart the Apache web server for the changes to take effect: 
<pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;">service apache2 restart</pre>
Open your favorite web browser, navigate to http://your-domain.com/install/ , start the installation process and follow the easy instructions: 
Click 'Next: License' , accept the license, check if server requirements are met then click 'Next:Database' and enter the following information: 
Driver: MySQL 
Server: localhost 
Port: 3306 
Database: elefantdb 
Username: elefant 
Password: *your-password* 
Click 'Connect & Create Schema', enter the site name and set the email address and password of the Elefant CMS administrative user. 
 
That is it. The Elefant CMS installation is now complete. 
 
 
Log in to the administration back-end of the Elefant CMS at http://your-domain.com/admin and start using it, write a blog post, upload files etc. 
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></div>

How to install Elefant CMS on Ubuntu 16.04

Install Elefant CMS on Ubuntu 16.04 Elefant CMS is an open source CMS and web framework written in PHP that allows web developers to create everything from simple websites to complete web application…

18 May 2016

Load more posts