Home page logo
/

basics logo Security Basics mailing list archives

SSH Scans
From: "Michel Pereira" <michel () michel eti br>
Date: Thu, 16 Mar 2006 23:44:33 -0300

   After of seeing a lot of ssh scans on my firewalls and home PC, I
made a script that filters out the "Invalid User" entry inside
/var/log/messages and do some cleaning process, the result is a
dictionary (homebrew) of users that tried to login into my hosts.
   Into the dictionary I saw english and Brazilian Portuguese words,
maybe we have Brazilian hackers running scan bots too.
   This work is only for experiment and curiosity to see what is
happening with Internet today, you can get the script and dictionary
in http://www.michel.eti.br/2006/03/ssh-scans.html

   If you have a better idea of sugestion, please mail me:
"michel () michel eti br"

Bye
--
Só Jesus salva,o homem faz backups.
http://www.michel.eti.br

---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]