Remember the post about how big security vendors are moving down the food chain to consolidate their hold on the security market? Well IBM through its partnership with (a much smaller) BigFix has released a desktop security solution that is positioned to enhance endpoint security and “reduce cost”.
Many are the articles suggesting ways by which departments can make the most of shrinking budgets in these hard times. If you are a small company, allocating funds for all the security resources you need can prove very challenging. You need to be smart about security spending. Therefore security tools that just do the work for as little as possible is a ‘must consider’.
Aiming to take the fight to the bot herders, a company - SRI International - has released a tool called BotHunter. It is free. The software works by monitoring the communication between compromised hosts on a corporate network and bot-herding computers also known as command & control centres.
BotHunter uses what sounds more like heuristic methods and processes (where detection is based on patterns) or than signatures (where detection is based on known attacks). This is how it works:
CAINE - Computer Aided INvestigative Environment -is a digital forensics project based on Ubuntu Hardy Heron. It comes complete with the full complement of Ubuntu’s traditional Gnome interface. On top of the Ubuntu kernel is an assembly of open source computer forensics tools held together by a perl wrapper. Tools included are:
Grissom Analizer
Automated Image & [...]
The Damn Vulnerable Linux (DVL) is a Linux-based security environment for IT security education. DVL distribution has been deliberately weakened to facilitate ethical hacking education. It is regularly updated with exploitable exercises with the solutions and corresponding exploits submitted by the community. It contains a plethora of IT security tools thus making it a good [...]
