Follow

Subscribe to Austin Songer

Get the latest posts delivered right to your inbox

Great! Check your inbox and click the link to confirm your subscription

Please enter a valid email address!
Log in Sign up

log

2 Articles

Amazon Web Services: Install an Intrusion Prevention System (IPS) on an EC2 Instance

Amazon Linux AMI

Amazon Web Services: Install an Intrusion Prevention System (IPS) on an EC2 Instance

Intall fail2ban on first instance > SSH into first instance as cloud_user Install fail2ban sudo yum install fail2ban -y sudo service fail2ban start Output Last

By Austin Songer 27 Sep 2019

Linux Security: Working with the Audit Log

Audit

Linux Security: Working with the Audit Log

Create audit rules to watch `/etc/passwd` for reads, `/etc/sudoers/` for reads and writes, and `/sbin/visudo` for executions. Run these commands auditctl -w

By Austin Songer 23 Sep 2019

Tag Cloud

Elastic (14) compliance (11) Linux (8) Audit (7) Ubuntu (6) SOC2 (6) Wazuh (5) GRC (5) firewall (5) azure (5) sudo (4) elasticsnapshot (4)