部分 X. Security

目錄

125. Authentication

125.1. /etc/login.defs

125.2. PAM 插件認證

125.2.1. pam_tally2.so
125.2.2. pam_listfile.so
125.2.3. pam_access.so
125.2.4. pam_wheel.so

125.3. Network Authentication

125.3.1. Network Information Service (NIS)

125.3.1.1. 安裝NIS伺服器
125.3.1.2. Slave NIS Server
125.3.1.3. 客戶機軟件安裝
125.3.1.4. Authentication Configuration
125.3.1.5. application example
125.3.1.6. Mount /home volume from NFS

125.3.2. OpenLDAP

125.3.2.1. Server
125.3.2.2. Client
125.3.2.3. User and Group Management

125.3.3. Kerberos

125.3.3.1. Kerberos 安裝
125.3.3.2. Kerberos Server
125.3.3.3. Kerberos Client
125.3.3.4. Kerberos Management
125.3.3.5. OpenSSH Authentications

125.3.4. FreeRADIUS (Remote Authentication Dial In User Service)

125.3.4.1. 安裝 FreeRADIUS
125.3.4.2. ldap
125.3.4.3. mysql
125.3.4.4. WAP2 Enterprise

125.3.5. SASL (Simple Authentication and Security Layer)

125.3.6. GSSAPI (Generic Security Services Application Program Interface)

126. Sniffer

126.1. nmap - Network exploration tool and security / port scanner

126.1.1. HOST DISCOVERY

126.1.1.1. -sP: Ping Scan - go no further than determining if host is online

126.1.2. SCAN TECHNIQUES

126.1.2.1. -sU: UDP Scan 掃瞄
126.1.2.2. -b <FTP relay host>: FTP bounce scan

126.1.3. PORT SPECIFICATION AND SCAN ORDER

126.1.3.1. -p <port ranges>: Only scan specified ports

126.1.4. SCRIPT SCAN

126.1.4.1. ftp-anon
126.1.4.2. mysql-info
126.1.4.3. http
126.1.4.4. snmp
126.1.4.5. SSHv1
126.1.4.6. --script-updatedb 更新腳本

126.1.5. OS DETECTION

126.1.5.1. -O: Enable OS detection 操作系統探測

126.1.6. OUTPUT

126.1.6.1. --open: Only show open (or possibly open) ports 操作系統探測

126.1.7. MISC

126.1.7.1. -6: Enable IPv6 scanning
126.1.7.2. -A: Enables OS detection and Version detection, Script scanning and Traceroute

126.1.8. Nmap Scripting Engine (NSE)

126.2. tcpdump - A powerful tool for network monitoring and data acquisition

126.2.1. 監控網絡適配器介面

126.2.2. 監控主機

126.2.3. 監控TCP連接埠

126.2.4. 監控協議

126.2.5. 輸出到檔案

126.2.6. 保存結果

126.2.7. Cisco Discovery Protocol (CDP)

126.2.8. 案例

126.2.8.1. 監控80連接埠與icmp,arp
126.2.8.2. monitor mysql tcp package
126.2.8.3. HTTP 包
126.2.8.4. 顯示SYN、FIN和ACK-only包

126.3. cdpr - Cisco Discovery Protocol Reporter

126.4. nc - TCP/IP swiss army knife

126.5. Unicornscan，Zenmap，nast

126.6. netstat-nat - Show the natted connections on a linux iptable firewall

126.7. Tcpreplay

126.8. Wireshark

127. sqlmap - automatic SQL injection and database takeover tool

127.1. Installation

127.2. 開始入住實驗

127.2.1. 測試腳本
127.2.2. sqlmap.ini

127.3. Request參數

127.3.1. --method, --data

127.3.2. --cookie

127.3.3. --referer

127.3.4. --user-agent

127.3.4.1. -a

127.3.5. --headers

127.3.6. --referer

127.3.7. auth

127.3.7.1. --auth-type
127.3.7.2. --auth-cred

127.3.8. --proxy

127.3.9. --threads

127.3.10. --delay

127.3.11. --timeout

127.4. Injection

127.4.1. --dbms
127.4.2. --prefix
127.4.3. --postfix
127.4.4. --string
127.4.5. --regexp
127.4.6. --excl-str
127.4.7. --excl-reg

127.5. Techniques

127.5.1. --stacked-test
127.5.2. --time-test
127.5.3. --union-test
127.5.4. --union-tech
127.5.5. --union-use

127.6. Enumeration

127.6.1. dbs
127.6.2. --count
127.6.3. --dump/--dump-all
127.6.4. --sql-query
127.6.5. --sql-shell

127.7. Miscellaneous

127.7.1. --update
127.7.2. --save

128. Vulnerability Scanner

128.1. Nessus
128.2. OpenVAS

129. Injection & Penetration

129.1. Backtrack Linux

130. SELinux

130.1. getsebool - get SELinux boolean value
130.2. sestatus - SELinux status tool
130.3. setsebool - set SELinux boolean value
130.4. chcon - change file SELinux security context
130.5. rsync

131. Suricata Engine

133. fwknop

134. fwsnort

135. nftables