Posts

Showing posts from February, 2014

How To Monitor Failed SSH Attempts

Image
More about SSH can be found here.

You might be astonished how many people try to break into your computer via ssh. It is advisable to use key-based authentication only. Article for key-based authentication.

Enable monitoring

sudo gedit /etc/ssh/sshd_config --> change LogLevel INFO to LogLevel VERBOSE

SSH login attempts will now be saved in your /var/log/auth.log file.

Accessing the information

sudo cat /var/log/auth.log | grep sshd
sudo cat /var/log/auth.log | grep Fail

sudo cat /var/log/auth.log | grep Invalid
Disabling SSH all-together

sudo mv /etc/init/ssh.conf /etc/init/ssh.conf.disabled

Turn Off Animations In Lubuntu

Open a terminal
sudo leafpad ~/.config/openbox/lubuntu-rc.xml-->Change <animateIconify>no</animateIconify>

Save and exit

WPScan Tutorial (Debian, Ubuntu etc..)

Image
WPScan is a tool to automatically scan Wordpress-Blogs for vulnerabilities. Furthermore it can enumerate user names and carry out bruteforce attacks on accounts associated with the blog.

Link: http://wpscan.org/

Install sudo apt-get install libcurl4-gnutls-dev libopenssl-ruby libxml2 libxml2-dev libxslt1-dev ruby-dev git
git clone https://github.com/wpscanteam/wpscan.git 
cd wpscan 
sudo gem install bundler && bundle install --without test developmentEnumerate vulnerable plugins and themes Pluginsruby wpscan.rb --url http://www.wpblog.com --enumerate vpThemes
ruby wpscan.rb --url http://www.wpblog.com --enumerate vtGet usernamesruby wpscan.rb --url http://www.wpblog.com --enumerate uBrute-forcing accounts Most of the time, user don't chance the default 'admin' username, so you should start here.

ruby wpscan.rb --url www.wpblog.com --wordlist YOURWORDLIST --username admin
You can get an extremely good wordlist here: https://crackstation.net/buy-crackstation-wordlist-pas…

Locking The Screen In Openbox

Image
I guess most of you (including me) would like to lock their screens.  You  accomplish this  in Openbox by installing and using XscreenSaver.


Terminal

sudo apt-get install xscreensaver
sudo nano /home/YOURUSERNAME/.config/openbox/autostart.sh
#ad this line
xscreensaver -no-splash &#save and exit
sudo chmod +x /home/YOURUSERNAME/.config/openbox/autostart.sh
Adding an entry to obmenu
obmenu new item ==> label: lock ==> action: execute ==> execute: xscreensaver-command -lock
save the menu & exit

You should now be able to lock your screen.

Installing Flappy Bird on Android (and iPhone)

Image
It might be ''Game Over'' for Flappy Bird on the iTunes store, but its still possible to install and play the game.

Download: File


iPhone 

Download and install iFunBox to your computer
Connect iPhone to your computer
Open iFunBox and click the <<Install App>> button
Open the Flappy Bird .IPA file

Android

Settings > Security > Enable Unknown sources
Open a web browser and download the Flappy Bird zip file
Extract
Open and install the file (.apk)


That's it.

How To Mine Your First Litecoins For Free

Image
Before we start with the guide, I would like to point out that if you want to get serious, you need the invest some money.  This is what I would recommend and run myself (I have 4 rigs):

3 * ASUS R9 280X-DC2T-3GD5 Graphics Cards 
1 * ASRock MB-970EX4 Socket AM3+/ AMD 970
1 * AMD Sempron 145 Processor
1* Corsair Professional Series AX 1200 Watt
1* Kingston Hyper X Blu 4 GB
PCI-E PCI Express 16X Riser

The 280x graphics cards currently offer the best bang for the buck and yield 740-760 khs each.




But now back to the actual topic: i.e. how to mine your first Litecoins for free. ;)
Requirementssign up for a mining pool such as LTCRabbitand create a worker (LTCRabbit: My Account > My Workers > Add New Worker) an azure trial accountapprox. 15 min of your timeThe Azure Account

You need a credit card to qualify for the trial period of 1 month (Link: Trial). Note that the subscription will end automatically. (You can even sign up twice with the same card ;) )

After you have access, click on…

OpenVpn Connected, But Not Directing/Routing Traffic (Windows 7 and Riseup VPN)

Image
I recently encountered a problem with OpenVpn and the riseup VPN on a friend's notebook. Although it connected and seemed to work none of the traffic was going over the RiseupVPN.


This is the configuration of the .ovpn file that did the trick for me.Save it underC:\Program Files\OpenVPN\config\RiseupVpn.ovpn.
client
dev tun
remote vpn.riseup.net
auth-user-pass
ca RiseupCA.pem
redirect-gateway def1
verb 4

Or alternatively download the file here: https://drive.google.com/file/d/0B06EJahqJCOCOVV2NERwNEtVRlE/edit?usp=sharing

Also, make sure to run  OpenVpn as administrator. Right click on the OpenVPN application >> choose “Run as Administrator"