Projects

From Terminal23wiki

Jump to: navigation, search

This page will be a sort of whiteboard for ideas on pending projects I'd like to tackle someday. This won't be terribly interesting to anyone but me.

Snort - Stand up a Snort installation on my home network, either Windows (to see how it is) or Linux. Might even try starting out with a livecd implementation and just run it for a few days to see how I might want to use it.

FreeNAS or other file solution - I have this need to get my external hard drives off my laptops and onto a central location accessible by both Linux and Windows on my network. I need a firewire card (cheap off newegg) at a minimum. I can then use this box as a central file repository and obviously a backup location for my data.

Wireless "hack" laptop - I need to get a wireless card into one of my laptops that will support a full range of wireless packet monitoring. My current laptops seem to be very buggy when it comes to capturing packets, usually reverting back to just capturing 802.11 packets (i.e. only traffic to and from the host machine, me).

Honeypot - I'd love to have a honeypot of some sort. Over a year ago I saw plenty of tools to turn a regular Windows install into a sort of low-budget hack of a honeypot. Basically these tools open up ports and then just listen for connection attempts. They can either return back a response, throw an alert to me, or capture any payload. This is a nutshell of what a honeypot does anyway. I'd always thought it a good idea on larger networks to have a small honeypot just sitting around waiting for weird traffic connections that should not be occurring as this could indicate internal recon or worm activity. Obviously, any hardened honeypot would likely be a Linux box and I think I'd prefer using nepenthes for now.

Firewall - I currently utilize my router's firewall, but I'd love to drop that feature and just bridge over to an actual firewall, maybe smoothwall/ipcop, untangle (new, to test), or a nix solution with iptables. This can give me a ton more freedom to try other nix tools, gather outside traffic statistics, and do more useful things. I'd also love to get my hands on a small cisco pix from ebay.

WSUS - Windows is the main OS, and it needs to be patched. Being constantly familiar with WSUS and Windows patches (i.e. being aware of what patches are coming out) should be a required skill of anyone in IT. This may mean somehow getting a local box to start my own small Active Directory, but I have no systems for that, right now. For WSUS, I'd need to get a new hard drive in an older computer, preferably over 70GB.

Retrieved from "http://wiki.terminal23.net/index.php/Projects"
Personal tools