It gathers security advisories using RSS, RDF, or XML feeds,
compares them against the installed software, and alerts you if you're vulnerable.
A wide variety of package managers can be queried to detect installed software.
Remote systems can be monitored by using the integrated SSH, WindowsRPC and NMap support.

Quite a few CERTs and vendors offer security-relevant feeds.
Mailing lists can be monitored using feeds provided by some web archives.
Some usenet gateways like Google Groups also offer RSS subscriptions.

The following package managers are supported:

Think of advchk as your personal trainee, who reads boring advisories and presents you the ones that could be interesting.

Linux Magazin, 2008

Steve Manzuik, André Gold, Chris Gatford, 2006

So, youve got a shiny new IDS system to scan your whole traffic
for lovely handcrafted rules.
To bad that you can only use it for post-mortem analysis.

Wrong! With Snort2Pf, you can turn your local Snort-installation easily into
a so-called Intrusion Detection and Prevention System.
Such a system also blocks the recognized violations.

The snort2pf daemon parses Snorts alertfile and blocks the naughty hosts
for a specific amount of time using pfctl.
Use the included idpsinfo(1) tool to get a list of currently blocked hosts

OpenBSD Journal, 2005-05-05

MIMOS.my, 2004-10-23

SANS Institute, 2004-05-02

Brandon Palmer, Jose Nazario, 2004-04-??

Daemon News, 2004-03-28

OpenBSD Journal, 2004-03-28

Symlink, 2004-03-25

Jacek Artymiak, 2004-??-??

Unix Scout, 2004-01-25

OpenBSD Journal, 2003-07-21

snort2c

snort2pf-gcux

amount of free memory in mb

usage

number of open connections per port/service

usage

various checks for the Brother HL2070N networked printer

usage

running processes matching a given regex

usage

Lavabuild connectes ALLNET[tm] radio-controlled power sockets to these continious integration (CI) systems:

Power sockets are turned on or off depending on the state of the latest CI build.

You could use this to create a permanent optical feedback of CVS HEAD's state by putting green and red lava lamps in the office.

At least we did so =)

The netalert daemon checks for the availability of network services by initiating cyclic tcp and/or udp connection attempts.

It's also capable of validating received sequences(using extented regular expressions) and triggering those sequences by sending sequences itself.

The responsible admin receives an email when a service goes down.

Netalert needs the following perl modules:

Just type ./install.sh (as root) and edit your /usr/local/etc/netalert.xml.

That's it. Have fun.

Spamresponser is a very simple and radical spam filter,
combining dns-validation with the challenge/response approach.

It will go through all mail messages in /var/mail/$USER, looking for trusted strings in the header and body parts of the mail.

It will delete and send an automatic reply to messages which don't have trusted strings inside them.

Those replies will include one of the trusted strings themselves, so the recpient just needs to reply to this confirmation message.

The MailFrom-address of an email containing a trusted string becomes a trusted string itself.

Make sure the following perl modules are installed on the system:

Just type ./install (as(root) and edit your ~/.spamresponder.conf.

That's it. Have fun.

use as template to start your very own hackerspace =)

This was a small Blinken-Handson project for the 21th Chaos Communication Congress in Berlin.

We got new life into an vandalized laptop by turning it into electronic art.

Well, this laptop was used as a football, thrown up to 15 meters and smashed against some sharp stones.

So, it did look very weird and groovy =)

We got some bright LEDs and let a colored 7x5 matrix shine through the LCD from the backside.

It's controllable using a WebGUI in two ways:

kriss: construction, hardware

cookie: construction, hardware

ssc: programming

supported by zaphod