How To Use Apache Scalp Log Analyzer to Catch Website Attacks

Author: erics, August 31st, 2015

Requires Python! Scalp Home https://code.google.com/p/apache-scalp/ Download Scalp: https://code.google.com/p/apache-scalp/downloads/detail?name=scalp-0.4.py Backup Link: http://www.wyzaerd.com/scalp/scalp-0.4.py Original (Broken) XML Rules File: https://dev.itratos.de/projects/php-ids/repository/raw/trunk/lib/IDS/default_filter.xml Fixed XML Rules File: http://www.wyzaerd.com/scalp/default_filter.xml To Fix the XML file: Replace: (?:all|distinct|[(!@]*)? with (?:all|distinct|[(!@]+)? and: (?i:(\%SYSTEMROOT\%)) with (?:(\%[sS][yY][sS][tT][eE][mM][rR][oO][oO][tT]\%)) Examples:

Current options: exhaustive: Won’t stop at the first pattern matched, but will test all the patterns tough: Will […]

Categories: How-To's, Technology Tags: Analyze, apache, Attack, Detection, hack, Hackers, howto, IDS, Intrusion, Intrusion Detection, Log, Logs, Python, Scalp, tips | No comments

How To Convert UNIX Timestamps to Date using PHP CLI

Author: erics, August 15th, 2015

For a quick visual check to see what the human-readable date is based on a UNIX timestamp integer: php -r ‘print date(“r”,1483228799);’ php -r ‘print strtotime(“1 Jan 2015”) – 1;’

Categories: How-To's, Technology Tags: cli, Command, Command line, convert, Date, Epoch, Format, php, Stamp, strtotime, time, Timestamp | No comments

How To Check Amazon RDS MySQL Servers in Nagios Without Ping

Author: erics, August 13th, 2015

Amazon Web Services (AWS) offers MySQL Server via the Relational Database Service (RDS) offering. Unfortunately, AWS doesn’t allow ICMP Ping to reach the nodes, so as configured by default, Nagios will fail on the host check. The solution is to submit a Passive Check for that host. Login to the Nagios web console Click on […]

Categories: How-To's, Technology Tags: Amazon, AWS, Check, Host, Host Check, howto, mysql, nagios, Passive, Passive Check, Ping, RDS, tips | No comments