Wednesday 15 April 2009

How to install Nessus on ubuntu

The synaptics version of Nessus its on version 2 (opensource), on official website of Nessus you can get the latest version.

1) download Nessus and NessusClient depending of your distro and your processor arch
2) reproduce the following steps

# sudo dpkg -i Nessus-XXXXX.deb
# sudo dpkg -i NessusClient-XXXXX.deb

3) Get an activation code for update nessus plugins: register in nessus website at plugins section, click on request an activation code, then click on Register a HomeFeed, then go to your email

# /opt/nessus/bin/nessus-fetch --register XXXX-XXXX-XXXX-XXXX-XXXX

4) adding an user, on Authentication (pass/cert) you can press enter ...
# /opt/nessus/sbin/nessus-adduser

5) starting nessus deamon (server)
# sudo /etc/init.d/nessusd start

6) now its time to run nessus client (gui), also you can run from NessusClient shortcut (look for your desktop environment applications menu)
# /opt/nessus/bin/NessusClient


Friday 10 April 2009

Fingerprint on gentoo with multiple image verification

I recently installed fingerprint driver for my laptop, and i was looking to this thread on internet, with an nice how to.
But i decided to share some minor changes, its an patched version with:
"One more time" when fails finger recognition it ask you to swap the finger one more time, before telling you to write the password when fails.
It has been patched with multiple image verifications, if you have all fingers mapped, on finger scan it will check if the finger scanned is any of yours fingers. This is good because you can swap your finger in device to map it using different position, more or less velocity, .... with this method the probability of fail on verifications decreases :)


# layman -a wschlich-testing

# echo =app-misc/fprint_demo-0.4 >> /etc/portage/package.keywords
# echo =media-libs/libfprint-0.0.6 >> /etc/portage/package.keywords
# echo =sys-auth/pam_fprint-0.2 >> /etc/portage/package.keywords

# cd /usr/portage/local/layman/wschlich-testing/sys-auth/pam_fprint/
# rm Manifest
# wget http://one2one.no.sapo.pt/pam_fprint-0.2.tar.bz2 -P /usr/portage/distfiles/
# ebuild pam_fprint-0.2.ebuild manifest
# ebuild pam_fprint-0.2.ebuild digest

# cd /usr/portage/local/layman/wschlich-testing/media-libs/libfprint/
# rm Manifest
# wget http://one2one.no.sapo.pt/libfprint-0.0.6.tar.bz2 -P /usr/portage/distfiles/
# ebuild libfprint-0.0.6.ebuild manifest
# ebuild libfprint-0.0.6.ebuild digest

# emerge -av fprint_demo pam_fprint

Then start fprint_demo and enroll your finger
then add "auth sufficient pam_fprint.so" on /etc/pam.d/system-auth

after
auth required pam_env.so

and before
auth required pam_unix.so try_first_pass likeauth nullok

Thats it, have fun ... comment if worked

Tuesday 7 April 2009

Script to take picture at boot and send online

Ive made this script to take an picture on every linux boot and send online, just in case someone steel my laptop. (You must specify host, username and pass)

Note: it uses xawtv streamer tool and ftp to send the images to ftp server
If there's no internet connection the script stays on standby waiting for internet connections goes up, then sends. (I have made from some examples, and c# application for windows to do the same, maybe i can post here the application and code)


For example you can add this to startup:
in /etc/conf.d/local.start add sh take_pic_send_online.sh & &>/dev/null
/etc/inid.d/local restart :)

#!/bin/sh

dt=`date +%y%m%d-%T`
filepath="/tmp/"
filename="boot-"$dt".jpeg"
file=$filepath$filename

streamer -c /dev/video0 -b 32 -o $file

hostname="ftp.XXXX.XXX"
username="USERNAME"
password="PASSWORD"

while true
do

if eval "ping -c 1 www.google.com"; then
break;
else
sleep 15;
fi

done

echo -e "***FTP SERVER DOWNLOAD SPEED***\n" >> /tmp/speedtest.log
ftp -inv $hostname >> /tmp/speedtest.log <<>
quote USER $username
quote PASS $password
cd boot
binary
lcd $filepath
put $filename
bye

EOF
rm $file /tmp/speedtest.log

Bash script and perl script to take screenshots online

This perl script was a little bit modified be me, to be used with freeimagehosting, because with with imageshack stopped working :(

I made this script to use with key combinations to select when i want to post an screenshot online or not. (Note: you must change the perl script path...)

To post the screenshot online and automatically open with Firefox
sh send.sh 0
To just only save the
sh send.sh 1
#!/bin/bash
filename=`date +%y%m%d%H%M%S`.png

mkdir /tmp/screens;
file=/tmp/screens/$filename
import $file -quality 100;

if [ $1 == 0 ];

then
firefox $( perl freeimagehosting.pl $file ) &
fi
Hello