Aker – SSH Bastion/Jump Host/Jumpserver

Aker is a security tool that helps you configure your own Linux ssh jump/bastion host. Named after an Egyptian mythology deity who guarded the borders, Aker would act as choke point through which all your sysadmins and support staff access Linux production servers. Aker SSH gateway includes a lot of security features that would help you manage and administer thousands of Linux servers at ease. For a detailed look check our WikiMotivationI couldn’t find an open source tool similar to CryptoAuditor and fudo, such tools are beneficial if you’re seeking becoming PCI-DSS or HIPAA compliant for example, regardless of security standards compliance access to the server should be controlled and organized in a way convenient to both traditional and cloud workloads.Current FeatuersSupports FreeIPA 4.2 , 4.3 and 4.4 (Optional)Extensible, Write Your Own ModuleSession PlaybackExtract Session CommandsSIEM-Ready json Session LogsElasticsearch IntegrationRoadmapPhase 0 Integration with an identity provider (FreeIPA)Extendable Modular structure, plugin your own moduleIntegration with config management toolsParsable audit logs (json, shipped to Elasticsearch)Highly available setupSession playbackPhase 1 Admin WebUILive session monitoringCloud support (AWS,OpenStack etc..) or On-premises deploymentsCommand filtering (Prevent destructive commands like rm -rf)Encrypt sessions logs stored on disk.Phase 2 Support for graphical protocols (RDP, VNC, X11) monitoringUser productivity dashboardSee it in actionRequirementsSoftware:Linux (Tested on CentOS, Fedora and ubuntu)Python (Tested on 2.7)(Optional) FreeIPA, Tested on FreeIPA 4.2 & 4.3redisPython Modules:configparserurwidparamikowcwidthpyteredisInstallationAutomated : Use this ansible playbookManually: Aker can be setup on a FreeIPA client or indepentantly using json config file. Common Steps (FreeIPA or Json): Clone the repo git clone https://github.com/aker-gateway/Aker.git /usr/bin/aker/Install dependencies (adapt for Ubuntu) yum -y install epel-release yum -y install python2-paramiko python-configparser python-redis python-urwid python2-wcwidth redisSet files executable perms chmod 755 /usr/bin/aker/aker.pychmod 755 /usr/bin/aker/akerctl.pySetup logdir and perms mkdir /var/log/akerchmod 777 /var/log/akertouch /var/log/aker/aker.logchmod 777 /var/log/aker/aker.logEnforce aker on all users but root, edit sshd_config Match Group *,!rootForceCommand /usr/bin/aker/aker.pyRestart ssh Restart redis Choosing FreeIPA: Assumptions: Aker server already enrolled to FreeIPA domainCreate /etc/aker and copy /usr/bin/aker/aker.ini in it and edit it like below : “`[General]log_level = INFOssh_port = 22# Identity Provider to determine the list of available hosts# options shipped are IPA, Json. Default is IPAidp = IPAhosts_file = /etc/aker/hosts.json# FreeIPA hostgroup name contatining Aker gateways# to be excluded from hosts presented to usergateway_group = gateways“`Choosing Json: Create /etc/aker and copy /usr/bin/aker/aker.ini in it and edit it like below : “`[General]log_level = INFOssh_port = 22# Identity Provider to determine the list of available hosts# options shipped are IPA, Json. Default is IPAidp = Jsonhosts_file = /etc/aker/hosts.json# FreeIPA hostgroup name contatining Aker gateways# to be excluded from hosts presented to usergateway_group = gateways“`Edit /etc/aker/hosts.json to add users and hosts, a sample hosts.json file is provided .Download Aker

Link: http://feedproxy.google.com/~r/PentestTools/~3/Xm0i81GlmTw/aker-ssh-bastionjump-hostjumpserver.html

Hack The Blackmarket VM (CTF Challenge)

BlackMarket VM presented at Brisbane SecTalks BNE0x1B (28th Session) which is focused on students and other InfoSec Professional. This VM has total 6 flags and one r00t flag. Each Flag leads to another Flag and flag format is flag {blahblah}. Download it from here. VM Difficulty Level: Beginner/Intermediate Penetrating Methodology Network Scanning (Nmap, netdiscover) Information gathering:… Continue reading →
The post Hack The Blackmarket VM (CTF Challenge) appeared first on Hacking Articles.

Link: http://www.hackingarticles.in/hack-the-blackmarket-vm-ctf-challenge/