Dionaea
Instalación
#Configuracióncat /etc/lsb-release | grep DESCDISTRIB_DESCRIPTION="Ubuntu 10.10" #cd# ### Some packages #apt-get install libudns-dev \ libglib2.0-dev \ libssl-dev \ libcurl4-openssl-dev \ libreadline-dev \ libsqlite3-dev \ python-dev \ libtool \ automake \ autoconf \ build-essential \ subversion \ git-core \ flex \ bison \ pkg-config#mkdir /opt/dionaea#mkdir dionaea#cd dionaea# ### liblcfg #git clone git://git.carnivore.it/liblcfg.git liblcfg#cd liblcfg/code#autoreconf -vi#./configure --prefix=/opt/dionaea#make install#cd ..#cd ..# ### libemu #git clone git://git.carnivore.it/libemu.git libemu#cd libemu#autoreconf -vi#./configure --prefix=/opt/dionaea#make install#cd ..# ### libev #wget http://dist.schmorp.de/libev/Attic/libev-3.9.tar.gz#tar xfz libev-3.9.tar.gz#cd libev-3.9#./configure --prefix=/opt/dionaea#make install#cd ..# ### cython #wget http://cython.org/release/Cython-0.12.1.tar.gz#tar xfz Cython-0.12.1.tar.gz#cd Cython-0.12.1#python setup.py build#sudo python setup.py install#cd ..# ### sqlite3 #apt-get install sqlite3# ### python3 #wget http://python.org/ftp/python/3.1.2/Python-3.1.2.tgz#tar xfz Python-3.1.2.tgz#cd Python-3.1.2#./configure --enable-shared \ --prefix=/opt/dionaea \ --with-computed-gotos \ --enable-ipv6 \ LDFLAGS="-Wl,-rpath=/opt/dionaea/lib/"#make#make install#cd ..# ### libxml2 #apt-get install libxml2-dev# ### libxslt #apt-get install libxslt1-dev# ### lxml #wget http://codespeak.net/lxml/lxml-2.2.6.tgz#tar xfz lxml-2.2.6.tgz#cd lxml-2.2.6#/opt/dionaea/bin/2to3 -w src/lxml/html/_diffcommand.py#/opt/dionaea/bin/2to3 -w src/lxml/html/_html5builder.py#/opt/dionaea/bin/python3 setup.py build#/opt/dionaea/bin/python3 setup.py install#cd ..# ### c-ares #wget http://c-ares.haxx.se/c-ares-1.7.3.tar.gz#tar xfz c-ares-1.7.3.tar.gz#cd c-ares-1.7.3#./configure --prefix=/opt/dionaea#make#make install#cd ..# ### curl #wget http://curl.haxx.se/download/curl-7.20.0.tar.bz2#tar xfj curl-7.20.0.tar.bz2#cd curl-7.20.0#./configure --prefix=/opt/dionaea --enable-ares=/opt/dionaea#make#make install#cd ..# ### libpcap #wget http://www.tcpdump.org/release/libpcap-1.1.1.tar.gz#tar xfz libpcap-1.1.1.tar.gz#cd libpcap-1.1.1#./configure --prefix=/opt/dionaea#make#make install#cd ..# ### p0f #apt-get install p0f# ### dionaea #git clone git://git.carnivore.it/dionaea.git dionaea#cd dionaea#autoreconf -vi#./configure --with-lcfg-include=/opt/dionaea/include/ \ --with-lcfg-lib=/opt/dionaea/lib/ \ --with-python=/opt/dionaea/bin/python3.1 \ --with-cython-dir=/usr/local/bin \ --with-udns-include=/opt/dionaea/include/ \ --with-udns-lib=/opt/dionaea/lib/ \ --with-emu-include=/opt/dionaea/include/ \ --with-emu-lib=/opt/dionaea/lib/ \ --with-gc-include=/usr/include/gc \ --with-ev-include=/opt/dionaea/include \ --with-ev-lib=/opt/dionaea/lib \ --with-nl-include=/opt/dionaea/include \ --with-nl-lib=/opt/dionaea/lib/ \ --with-curl-config=/opt/dionaea/bin/ \ --with-pcap-include=/opt/dionaea/include \ --with-pcap-lib=/opt/dionaea/lib/ \ --with-glib=/opt/dionaea#make#make install#cd ..
#Ejecucióncd /opt/dionaea/etc/dionaea#sed -i 's/^\/\/\t\t\t"p0f"/\t\t\t"p0f"/' dionaea.conf
#Visualizacióncd /opt/dionaea/bin/#p0f -i any -u root -Q /tmp/p0f.sock -q -l -d -o /tmp/p0f.log#./dionaea -l all,-debug -L '*' -D
#cd /opt/dionaea/var/dionaea#sqlite3 logsql.sqlitesqlite>select count(local_port), local_port FROM connections where connection_type='accept' group by local_port;9|135 4|445 2|1433 sqlite>.exit
No comments:
Post a Comment