Professional Documents
Culture Documents
N
Open Source Security Tools
OWASP Malaysia
www.owasp.my
G roup
R econ
E ducation
E motion Control
N eutralized
G.R.E.E.N
G roup
G roup
:)
ps. If you are reading this slide, you need to come to my session KL Greenhat 2011 and I will tell you.
clue : chmod +s and sudo
G roup
Within Group
We can set policy and rules
We can implement policy and rules
We can by law punish who break the rules
OWASP How To
http://www.owasp.org/index.php/Category:How_To
G roup
Audit Tools
Bastille Unix
• A hardening script
• bastille --report
• http://bastille-linux.sourceforge.net/
G roup
R econ
R econ
• Log monitoring
• Process monitoring
• Network Monitoring
• Files Monitoring
• Host Monitoring
• Human Monitoring
R econ
Log Monitoring
Process Monitoring
Network Monitoring
• Snort
Files Monitoring
Host Monitoring
Human Monitoring
Opensource CCTV
Zoneminder - www.zoneminder.com
G.R.E.E.N
E ducation
E ducation
Action Plan
www.cybersafe.my
E ducation
Certification is important
Get your people certified
G.R.E.E.N
E motion Control
E motion Control
Be Calm
Be Patient
N eutralized
N eutralized
Block the attack
• Firewall
• Intrusion Prevention Framework
• Web proxy
• Email filter
Firewall
• M0n0wall
• PFsense
• Fail2ban
• TCP Wrapper
N eutralized
Webproxy
• Squid + Dansguardian
• Nginx
Email Filter
• Amavis-new
• Mailscanner
N eutralized
VPN - OpenVPN
Encryption - GnuPG
OWASP Malaysia
www.owasp.my
The End
Malaysia OSS Community Survey 2011 on Awareness of
OSS Certification - survey.mosc.my
Harisfazillah Jamel
linuxmalaysia @ gmail.com
haris @ bytecraft.com.my
10 Feb 2011