Metasploitable/Defenses: Difference between revisions
From charlesreid1
No edit summary |
No edit summary |
||
| Line 1: | Line 1: | ||
Defense of a machine falls into two main categories: | |||
* | * Intrusion Prevention | ||
* Incident Recovery | |||
* On-machine defenses | |||
* Network defenses | In the first scenario, you're working to stop intrusions before they happen: [[Metasploitable/Defenses/Stopping]] | ||
In the second scenario, you're detecting intrusions after they happen and doing forensic work: [[Metasploitable/Defenses/Detecting]] | |||
There are also categories of defense types: | |||
* On-machine defenses | |||
* Network defenses | |||
For on-machine defenses, you're looking at systems and software that operate within the domain of a single computer. | |||
For network defenses, you're analyzing an entire network, incorporating data from multiple systems and domains. | |||
=Flags= | =Flags= | ||
{{MetasploitableFlag}} | {{MetasploitableFlag}} | ||
Revision as of 17:05, 31 March 2016
Defense of a machine falls into two main categories:
- Intrusion Prevention
- Incident Recovery
In the first scenario, you're working to stop intrusions before they happen: Metasploitable/Defenses/Stopping
In the second scenario, you're detecting intrusions after they happen and doing forensic work: Metasploitable/Defenses/Detecting
There are also categories of defense types:
- On-machine defenses
- Network defenses
For on-machine defenses, you're looking at systems and software that operate within the domain of a single computer.
For network defenses, you're analyzing an entire network, incorporating data from multiple systems and domains.
Flags
 |
Metasploitable: The Red Team Metasploitable is a virtual machine with baked-in vulnerabilities, designed to teach Metasploit. This set of articles discusses the RED TEAM's tools and routes of attack.
Exploiting MySQL with Metasploit: Metasploitable/MySQL Exploiting PostgreSQL with Metasploit: Metasploitable/Postgres
Exploiting VSFTP Backdoor: Metasploitable/VSFTP SSH Penetration by Brute Force: Metasploitable/SSH/Brute Force SSH Penetration with Keys: Metasploitable/SSH/Keys SSH Penetration with Metasploit: Metasploitable/SSH/Exploits Brute-Forcing Exploiting NFS: Metasploitable/NFS Exploiting DNS Bind Server: Metasploitable/DNS Bind
Metasploitable Services: distcc: Metasploitable/distcc
Metasploitable Apache: Exploiting Apache (with Metasploit): Metasploitable/Apache Exploiting Apache (with Python): Metasploitable/Apache/Python Tor's Hammer DoS Attack: Metasploitable/TorsHammer * Apache DAV: Metasploitable/Apache/DAV * Apache Tomcat and Coyote: Metasploitable/Apache/Tomcat and Coyote
Metasploitable Memory: General approach to memory-based attacks: Metasploitable/Memory Investigating memory data: Metasploitable/Volatile Data Investigation Dumping Memory from Metasploit: Metasploitable/Dumping Memory
Metasploitable Fuzzing: (Have not done much work on fuzzing Metasploitable...)
Category:Security · Category:Metasploit · Category:Metasploitable · Category:Kali
|
|
Metasploitablue: The Blue Team Metasploitable is a virtual machine with baked-in vulnerabilities, designed to teach Metasploit. This set of articles discusses the BLUE TEAM's methods for defending Metasploitable: defending against and responding to intrusions.
Hence the name, Metasploita-blue. Overview: Metasploitable/Defenses Metasploitable/Defenses/Stopping · Metasploitable/Defenses/Detecting
Metasploitable On-Machine Defenses: Linux Volatile Data System Investigation: Metasploitable/Volatile Data Investigation Linux Artifact Investigation: Metasploitable/Artifact Investigation Linux Iptables Essentials: Metasploitable/Iptables Firewall Assurance and Testing: Metasploitable/Firewall Password Assessment: Metasploitable/Password Assessment Standard Unix Ports: Unix/Ports
Netcat and Cryptcat (Blue Team): Metasploitable/Netcat and Metasploitable/Cryptcat Nmap (Blue Team): Metasploitable/Nmap Network Traffic Analysis: Metasploitable/Network Traffic Analysis Suspicious Traffic Patterns: Metasploitable/Suspicious Traffic Patterns Snort IDS: Metasploitable/Snort
|