Archive for May, 2009

Fun with Geektool

May 28th, 2009

I’ve been playing with Geektool on my Macbook… I decided it’d be a pretty good security notification tool if it was set up to monitor the right things, so I it up to watch my Application Security Log and then to execute a couple netstat commands:

netstat -an -f inet | grep LISTEN ; netstat -an -f inet | grep ESTABLISHED

This displays the current active connections right on my desktop.

I also went ahead and put my routing table on the desktop using netstat as well. I used to have a good widgit that showed the routing-table, but when I rebuilt my laptop I lost it, and it’s no longer available for download. The command I used to do this with was:

netstat -rn -f inet

I used the -f inet tag because even though I had disabled IPv6, the output showed IPv6 entries and it made it too long for my desktop.

Finally… I added a file view for my Application Firewall log.

Here’s a screenshot:

picture-1

Comments Off »

Posted in Applications, Technology

The Self-Destruct Option

May 11th, 2009

Interesting article about a self-destruct option that some new botnet code is wielding:

http://blog.s21sec.com/2009/04/when-bot-master-goes-mad-kill-os.html

“Not all type of bots usually have this functionality, but banking Trojans usually have.”

I wonder what the criteria for killing your own botnet might be?

Comments Off »

Posted in Security, Technology