This site is overun with hackers or worse!!!

**zatoichi2** · 08-14-2012, 11:06 PM

Can a moderator comment on what is being done about this. If servers are hosted in-house, you are responsible. If you use an ISP, it is their responsibility.

I will setup an IDS and honeypots/honeynets, for you, all public domain (just cost of PC's).

**zatoichi2** · 08-14-2012, 11:28 PM

I have to applaud the moderators, but management should make this a priority!!!!!!

**keepitcoastal** · 08-14-2012, 11:29 PM

how do i setup an ids and honeypots for myself. i would rather the fbi not have my address and shit although if all this true its probably too late. i think id like to get them off before they can build anymore of a case on me lol

**zatoichi2** · 08-15-2012, 12:02 AM

[QUOTE=keepitcoastal;7864521]how do i setup an ids and honeypots for myself. i would rather the fbi not have my address and shit although if all this true its probably too late. i think id like to get them off before they can build anymore of a case on me lol[/QUOTE,

First, Install the software I have recomended, and run full scan. If you get messages about attempted outbound connections, let me know, and I will help. If it can clean any, let it do it. I had one that required additional removal, with TDSSKiller. That was the one pointed to 4 addresses in Herndon VA.

**zatoichi2** · 08-15-2012, 12:05 AM

I would be willing to clean up their network for free, just to get back into being a whitehat.

**zatoichi2** · 08-15-2012, 12:13 AM

[QUOTE=zatoichi2;7864629]

Originally Posted by keepitcoastal

how do i setup an ids and honeypots for myself. i would rather the fbi not have my address and shit although if all this true its probably too late. i think id like to get them off before they can build anymore of a case on me lol[/QUOTE,

First, Install the software I have recomended, and run full scan. If you get messages about attempted outbound connections, let me know, and I will help. If it can clean any, let it do it. I had one that required additional removal, with TDSSKiller. That was the one pointed to 4 addresses in Herndon VA.

Sorry, look at whitehats.ca, the seeker/shadow sensor for awesome IDS. You can configure internal and external interfaces to monitor for direction, I found major flaws at a LARGE pharmaceutical, by declaring all traffic dangerous, not just outside to inside. Someone installed a modem in Brazil, inside, attacking 50,000 PC's, worldwide.

**zatoichi2** · 08-15-2012, 12:20 AM

Originally Posted by keepitcoastal

how do i setup an ids and honeypots for myself. i would rather the fbi not have my address and shit although if all this true its probably too late. i think id like to get them off before they can build anymore of a case on me lol

Snort is whitehats.ca the seeker shadow project. Honeypots/nets/etc, are honeynet.org. They produce false targets, to see if miscreants are trying something. There should be no traffic to or from. Originals were PC's, now emulated PC's of your choice of configuration (OS, Patch level,etc).

Willing to help, to sharpen my skills. Have been out of it for awhile.

**admin** · 08-15-2012, 06:50 PM

We have fixed the security issue, thank you for reporting it to us.

This site is overun with hackers or worse!!!

Site Information

LinkBack

Thread Tools

Display

Bookmarks

Bookmarks

Posting Permissions