Check Exploits Script?

Forum Moderators: phranque

Message Too Old, No Replies

Check Exploits Script?

Is there a script that is able to check for exploits on a server?

Listening To Music

12:21 am on Sep 19, 2011 (gmt 0)

Hi.

A friend recently received an e-mail from their hosting company saying that they've been hacked. The e-mail contained a small blurb of details that led me to believe that they have an automated script that is able to reveal in some cases when the server has been hacked. In this case, I believe it saw a connection to port 6667 and determined a hack (I verified this to be true).

Is there a publically available script that can be run as a cron job that is able to perform a similar task (ie. check for any and all known exploits)?

Thanks,
Jason

Leosghost

1:59 am on Sep 19, 2011 (gmt 0)

Is there a publicly available script that can be run as a cron job that is able to perform a similar task (ie. check for any and all known exploits)?

Maurice

4:14 pm on Sep 19, 2011 (gmt 0)

@Leosghost actualy there are a number of tools you can run against sites to check for common security holes - obvously your only ment to do this if you are authorised.

On good trick is to do a google alert check out.

[blogstorm.co.uk...]

Leosghost

4:40 pm on Sep 19, 2011 (gmt 0)

Yes ( I have many, if not all of them )..but there is not "one" single script ( "one "singular" publicly available script" was what the OP requested )) which can by itself check for "any and all known exploits"..

And some of them are most definitely not for "novice users"

Listening To Music

3:06 am on Sep 22, 2011 (gmt 0)

hehe. "check for any OR EVEN all known exploits" would've probably been a better choice of words :)

As much as I would love a single super-script, I know one does not exist, at least not publically.

I was once a full-time system admin (10 or so years ago) so my current knowledge of exploits and scripts is severely lacking. I would love to know what is being used nowadays to detect such exploits, since I'm hoping to buy a server sometime in the near future.

So erm, any programs or scripts will be fine. It doesn't have to be a super-script :)