Category Linux

Linux version of EternalBlue Exploit?

All versions of Samba from 3.5.0 onwards are vulnerable to a remote
code execution vulnerability, allowing a malicious client to upload a
shared library to a writable share, and then cause the server to load
and execute it.

==================
Patch Availability
==================

A patch addressing this defect has been posted to

http://www.samba.org/samba/security/

Additionally, Samba 4.6.4, 4.5.10 and 4.4.14 have been issued as
security releases to correct the defect. Patches against older Samba
versions are available at http://samba.org/samba/patches/. Samba
vendors and administrators running affected versions are advised to
upgrade or apply the patch as soon as possible.

==========
Workaround
==========

Add the parameter:

nt pipe support = no

to the [global] section of your smb...

Read More

Level up your programming skills

Exercism
Are you a code newbie?

The solutions you write provide reviewers with clues about what you haven’t grasped yet. The feedback you receive will guide you to relevant study topics and dramatically increase the ease with which you write code.

“Using Exercism requires three tools:

Your text editor: Write a solution to an exercise using your favorite text editor.
Your command line interface: Fetch problems and submit solutions via the command line (or terminal).
The exercism.io website: Review feedback on your solution and discuss it with other learners on the website.
For each exercise that you do, you’ll go through the same basic steps.

Fetch the exercise using the command line.
Write code to solve the exercise on your own computer, satisfying each of the tests.
Submit your solutio...

Read More

Graphical Network Simulator – GNS3

GNS3 – Graphical Network Simulator

“GNS3 is a graphical network simulator which provides you a real lab environment for learning and testing complex networks. With this tool you do not need to have dedicated network hardware devices. You can design and configure virtual networks on a traditional PC or a Raspberry Pi, and simulate in the closest possible way to how the real networks perform.

If you want to design and test your automation system network, GNS3 can just work fine for you. It allows you to run many virtual hosts with operating systems such as Linux, Windows, MacOS X or FreeBSD.”

GNS3 – Documentation and Download
Pankaj V.- Electronics For U – Full article

Read More

Neofetch

“Neofetch is a CLI system information tool written in BASH. Neofetch displays information about your system next to an image, your OS logo, or any ASCII file of your choice. The main purpose of Neofetch is to be used in screenshots to show other users what OS/Distro you’re running, what Theme/Icons you’re using etc.

Neofetch is highly customizable through the use of command line flags or the user config file. There are over 50 config options to mess around with and there’s the print_info() function and friends which let you add your own custom info.

Neofetch can be used on any OS that has BASH 3.2+, it’s just a matter of adding support. If your OS/Distro isn’t in the list below, feel free to open an issue on the repo and I’ll gladly add support...

Read More

Kali Linux 2017.1 Release

“Finally, it’s here! We’re happy to announce the availability of the Kali Linux 2017.1 rolling release, which brings with it a bunch of exciting updates and features. As with all new releases, you have the common denominator of updated packages, an updated kernel that provides more and better hardware support, as well as a slew of updated tools – but this release has a few more surprises up its sleeve.”

Kali Linux 2017.1

Read More

Auditing linux , unix OS..in 120 seconds flat

A script to audit linux and unix distributions based mainly on the CIS standards and universal linux hardening guidelines.

Nix Audit made easier (RHEL, CentOS)
Nix Auditor – GitHub

Also head over to CIS Secure Suite homepage for more greatness! Follow CIS Security on Youtube, Facebook and Twitter

https://www.cisecurity.org/

https://www.cisecurity.org/


CIS Secure Suite

Read More

Some reading to catch up on!

if you love to read articles and professional content, look no further than some of the magazines and websites that I subscribe to or recommend.
Linux Magazine
Linux Format
Linux Journal
Open Source ForU
Ubuntu User
Linux Gazette
Among these publications and webpages you can keep yourself informed and educated. Delivered fresh to your door, digital subscriptions or just enjoy the webpages!

Read More

All About Linux and Linux+

CompTIA Linux+
Linux+

Read More

Ethical Hacking and Penetration Testing with Kali Linux Training Course

Ethical Hacking and Penetration Testing with Kali Linux Training Course

Read More

The Asus Tinker Board

Video below!

Asus Tinker Board

Read More