Category: Firewall

All about firewalls!

Hardening, IPTables

Basic iptables security script

Tested on Debian 9.x https://github.com/maldevel/blue-team Install iptables apt -y install iptablesapt -y install iptables Install iptables-persistent apt -y install iptables-persistent systemctl enable netfilter-persistentapt -y install iptables-persistent systemctl enable netfilter-persistent Flush/Delete firewall rules iptables -F iptables -X iptables -Ziptables -F iptables -X iptables -Z Î’lock null packets (DoS) iptables -A INPUT -p tcp –tcp-flags ALL NONE …

Detection, Firewall

How to detect Web Application Firewalls

WAFW00F – Web Application Firewall Detection Tool – identifies and fingerprints Web Application Firewall (WAF) products. To do its magic, WAFW00F does the following: > Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions. > If that is not successful, it sends a number of (potentially malicious) HTTP …

Firewall, Fortigate

Using VDOMs to host two FortiOS instances on a single FortiGate unit V.5.0.5

Virtual Domains (VDOMs) can be used to divide a single FortiGate unit into two or more virtual instances of FortiOS that function as independent FortiGate units. This example simulates an ISP that provides Company A and Company B with distinct Internet services. Each company has its own VDOM, IP address, and internal network. Switching to …

Firewall, Host discovery, Network, Port Scanning

Idle Scanning with hping2

hping is a TCP/IP packet assembler/analyzer. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features. A subset of the stuff you can do using hping: Firewall testing Advanced port scanning Network testing, using different protocols, TOS, fragmentation Manual path …

Firewall, Microsoft Windows

Disable Windows firewall via Command Line

Open command line. To disable windows firewall execute: netsh firewall set opmode disablenetsh firewall set opmode disable or netsh advfirewall set allprofiles state offnetsh advfirewall set allprofiles state off To enable windows firewall execute: netsh firewall set opmode enablenetsh firewall set opmode enable or netsh advfirewall set allprofiles state onnetsh advfirewall set allprofiles state on

Firewall

How to create a basic configuration on a Fortigate

Let’s see some useful command on a fortigate firewall. Assuming that you have a Fortinet Fortigate device, your local ip address is in the range of 192.168.200.0/24 and you have a router with a public IP address 185.186.187.1 and a public subnet 185.186.187.0/29. config system global # Set the http admin port to 80/tcp set …