SnortDLP - an open source DLP solution utilizing snort OverviewSnortDLP a.k.a. "Pig Pen" is an open source data loss prevention project that utilizes Snort to detect the exfiltration of sensitive data.FeaturesWeb based applicationWritten in PHP and utilizes a MySQL backend for cross operating system portabilityAdministrative login to protect unauthorized accessDetermines a unique fingerprint forfree textindividual documentseach document in a reposit..
Configuring OSSEC with MySQL and Analogi I have been using OSSEC for a while now but I always used only plain text logs. While this is not bad, it does not scale really well. I started looking into a way to do it right(tm). I knew OSSEC was compatible with MySQL, and since 2.7 has been released, it gave me an excuse to play with it again.You will need to enable MySQL in OSSEC (not enabled by default), grab the source then do the follow..
webhoneypot: Web Application Honeypot webhoneypot is a DShield Web Application Honeypot offering this honeypot for users to capture automated web application exploits. It is a very simple “semi interactive” honeypot implemented in PHP.webhoneypot project is used to develop the honeypot. Do not use this code to install a honeypot unless you are interested in helping development.Prerequisitesfor installing webhoneypot.dshield.org acco..
MySQL Injection : Step By Step Tutorial Learn How To Hack SQL Injection attacks are code injections that exploit the database layer of the application. This is most commonly the MySQL database, but there are techniques to carry out this attack in otherdatabases such as Oracle. In this tutorial i will be showing you the stepsStep or www.site.com/id=5 If the database is vulnerable, the page will spit out a MySQL error such as; Warning: ..
sqlcake: Automatic SQL injection and database information gathering tool sqlcake is an automatic SQL injection and database information gathering exploitation kit written in Ruby. It’s designed for system administration and penetration testing. It offers a few useful functions to gather database information easily by sql injection usage. It also allows you to bypass magic quotes, dump tables and columns and gives you the possibility to run an interactive MySQL shell...