In order to quickly audit a network , I created this bash script to scan selected IPs, read from a configuration file, and compile a simple report to be emailed. The script can be modified to suit your needs, such as exporting the data to a database or perhaps an HTML report for a web based reporting site. Read More
Testing for weak SSL ciphers for security audits
Weak ciphers allow for an increased risk in encryption compromise, man-in-the-middle attacks and other related attack vectors. Read More
Detect ARP poisoning on LAN
Occasionally during security audits it may be necessary to check your LAN for rogue machines. All the potential rogue machine in your LAN needs to do is poison your ARP cache so that the cache thinks that the attacker is the router or the destination machine. Read More
Monitoring raw traffic on a Juniper Netscreen
Tweet Occasionally I will run into situations where the only way to definitively diagnose network related problems is to perform raw traffic dumps on a main internal / external interface. The reasons for needing to perform this could be anything. I thought I’d share the quick and easy steps to perform in order to do [...] Read More