Author Topic: Systems Administrators Tool for Analyzing Networks  (Read 1212 times)

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Systems Administrators Tool for Analyzing Networks
« on: 20 September 2002, 00:38 »
SAINT isnt free anymore and SATAN is out of date.
Has anyone had any success with any other tools like these? Has anyone used SARA, thats the only one i could find that was like SATAN, i would prefer a command-line utility though.
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Systems Administrators Tool for Analyzing Networks
« Reply #1 on: 20 September 2002, 00:42 »
fuck me.... my CD that came with my Linux Max Security book has SAINT on it. But is there any utility like SAINT that is commandline?
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

voidmain

  • VIP
  • Member
  • ***
  • Posts: 5,605
  • Kudos: 184
    • http://voidmain.is-a-geek.net/
Systems Administrators Tool for Analyzing Networks
« Reply #2 on: 20 September 2002, 01:13 »
Satan/Santa is really outdated. Nessus is a *very* good vulnerability checker if that is what you are looking for and it's the most popular. http://www.nessus.org/
Someone please remove this account. Thanks...

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Systems Administrators Tool for Analyzing Networks
« Reply #3 on: 20 September 2002, 01:21 »
i plan to isntall nessus too... (actually i am in the process of intslling it.)

I got a book called 'Linux Max Security' that kicks ass and comes with many security programs. it is published by Sams
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

voidmain

  • VIP
  • Member
  • ***
  • Posts: 5,605
  • Kudos: 184
    • http://voidmain.is-a-geek.net/
Systems Administrators Tool for Analyzing Networks
« Reply #4 on: 20 September 2002, 01:54 »
I like Nessus for checking for network and network service vulnerabilities. I like tripwire for detecting local intrusions and unauthorized modification of system files. I like snort/acid for network intrusion detection. I like Big Brother, Netsaint, and MRTG for network and server monitoring (administration).
Someone please remove this account. Thanks...

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Systems Administrators Tool for Analyzing Networks
« Reply #5 on: 20 September 2002, 02:22 »
I got COLD for sniffing. I installed SAINT. Gonna install Nessus, Portsentry, COPS. Klaxxon will/is installed on telnet port.
I want to do some testing between two or three of my machines, so i might isntall some <r4(|<3r tools (not on my server... on my dev machine). Mendax perhaps and try some spoofing and stuff in my dev LAN.

[ September 19, 2002: Message edited by: The Master of Reality / Bob ]

Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Systems Administrators Tool for Analyzing Networks
« Reply #6 on: 20 September 2002, 05:12 »
Has anyone used sftp or sslftp? Is it/they actually secure as ssh/ssl?

[ September 19, 2002: Message edited by: The Master of Reality / Bob ]

Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

voidmain

  • VIP
  • Member
  • ***
  • Posts: 5,605
  • Kudos: 184
    • http://voidmain.is-a-geek.net/
Systems Administrators Tool for Analyzing Networks
« Reply #7 on: 20 September 2002, 05:43 »
quote:
Originally posted by The Master of Reality / Bob:
Has anyone used sftp or sslftp? Is it/they actually secure as ssh/ssl?

[ September 19, 2002: Message edited by: The Master of Reality / Bob ]



sshd is actually the sftp server so yes, it is just as secure as ssh as it IS ssh. However, I haven't figured out a reason to use sftp when I have scp....
Someone please remove this account. Thanks...

mobrien_12

  • VIP
  • Member
  • ***
  • Posts: 2,138
  • Kudos: 711
    • http://www.geocities.com/mobrien_12
Systems Administrators Tool for Analyzing Networks
« Reply #8 on: 21 September 2002, 10:00 »
You can still get the SAINT engine for free.  

ftp.saintcorporation.com

Note that this ftp server will NOT allow passive connections... so mozilla and gftp do not work.

It will scan and detect and list possible vulnerabilities but will not give you detailed information about them or how to fix them.  That's ok, I can look up the vulnerabilities already (most of them are false alarms, things that I patched already etc.).

[ September 21, 2002: Message edited by: M. O'Brien ]

In brightest day, in darkest night, no evil shall escape my sight....