A wiki of Guides, Scripts, Tutorials related to Cyber Security and Forensics

Table of Contents

  1. Pentesting Tutorials and Guides
  2. Digital Forensics ToolKit
  3. Firewall Configuration Guides
  4. OS Hardening Guides
  5. TCPDUMP Examples

Pentesting Tutorials and Guides

Getting started with Pentesting

Beginners Guide to Application Security Testing

Back to top

Digital Forensics ToolKit

Autopsy® a opensource GUI-based program that allows you to efficiently analyze hard drives and smart phones

NetworkMiner is an open source Network Forensic Analysis Tool (NFAT) for Windows (but also works in Linux / Mac OS X / FreeBSD). NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network

The SIFT Workstation is a group of free open-source incident response and forensic tools designed to perform detailed digital forensic examinations in a variety of settings. It can match any current incident response and forensic tool suite

The PALADIN Toolbox combines the power of several court-tested Open Source forensic tools into a simple interface that can be used by anyone, version 7 includes Autopsy

MacQuisition is a powerful, 3-in-1 solution for live data acquisition, targeted data collection, and forensic imaging. Tested and used by experienced examiners for over a decade, MacQuisition runs on the Mac OS X operating system and safely boots and acquires data from over 185 different Macintosh computer models in their native environment - even Fusion Drives

Back to top

Firewall Configuration Guides

Fail2Ban

Fail2ban - Block ip scanning on postfix

Configuring a Firewall for linux with CSF and LFD

Back to top

OS Hardening Guides

Hardening Debian for the Desktop Using Grsecurity

Back to top

TCPDUMP Examples

tcpdump is a powerful command-line packet analyzer and a portable C/C++ library for network traffic capture. Manpage can be found here

Capture packets of a specific protocol on a specific interface

  tcpdump -A -i xn0 udp

Back to top