Please ignore any typos and grammar mistakes. These are notes from my learning and various assessments. Before I forgot all these, thought to share them here as someone will find them useful. Again note, it’s not so arranged. Vulhub Machines Happy corp 1.whenever you find php files in the url , try doing LFI with ‘.php?file=/etc/passwd 2.after that try injecting the php code which will open a cmd in the victim machine with this command-…
First part of this blog can be found here Configuring Nxlog is a simple and straight process with changes made to ‘nxlog.conf’ file to read alerts from the alert.json file in the log directory and send it to the Nagios log server for processing.‘nxlog.conf’ file is created automatically during the installation with some default parameters. These default parameters will be customized according to our environment. The default location of the configuration file is at /opt/nxlog/etc.…
Installing NXLOG Configuring Nagios starts with installing the NXLOG enterprise agent in the snort server and configuring it to pull out the logs from the snort server to the Nagios Log server. NXlog enterprise edition can be downloaded directly from the Nagios NXlog website. Download the executable into the appropriate directory and then perform the below steps to install it. 1. Extract the contents of the archive #tar -xf nxlog-v5.6.7727_rhel7.x86_64.tar.bz2 2. Step 2 requires changing…
This post describes installing snort-2.9.20 on Windows 10 Enterprise. Download the executables from the below url’s. Snort download- https://www.snort.org/downloads/snort/Snort_2_9_20_Installer.x64.exe Npcap download- https://npcap.com/dist/npcap-1.72.exe 1.Installing snort first requires you to install Npcap in administrator mode. Go to the folder where the Npcap executable is placed and right-click the executable and select the option ‘Run as administrator’. 2. The License Agreement window appears. Click ‘I Agree’ to continue 3. In the next window it shows Installation options. Tick…