Difference between revisions of "Keamanan Jaringan"

From OnnoWiki
Jump to navigation Jump to search
 
(47 intermediate revisions by the same user not shown)
Line 2: Line 2:
  
 
* [[Peta Teknologi Network Security]]
 
* [[Peta Teknologi Network Security]]
 +
* [[Cyber Defence]]
 
* http://www.owasp.org/index.php/Category:Principle - Prinsip Keamanan Aplikasi
 
* http://www.owasp.org/index.php/Category:Principle - Prinsip Keamanan Aplikasi
 
* [[Trend Keamanan Internet Indonesia 2010]]
 
* [[Trend Keamanan Internet Indonesia 2010]]
 +
* [[20 Linux Server Hardening Security Tips]]
 +
* http://www.cyberciti.biz/tips/php-security-best-practices-tutorial.html
 +
* [[Linux Security Howto]]
 +
* [[Security: Basic OS Security]]
 +
 +
==Manajemen==
 +
 +
* [[Framework Cybersecurity]]
  
 
==Network Security Appliance==
 
==Network Security Appliance==
  
Untuk yang tidak mau pusing menginstalasi berbagai [[software]] / aplikasi network security, dapat menggunakan appliance yang sudah jadi.
+
Untuk yang tidak mau pusing menginstalasi berbagai [[software]] / aplikasi [[network security]], dapat menggunakan appliance yang sudah jadi.
  
 
* [[Cyberoam]]
 
* [[Cyberoam]]
 +
 +
* [[ipcop]]
 +
* [[smoothwall]]
 +
* [[ebox]]
  
 
==Evaluasi Jaringan==
 
==Evaluasi Jaringan==
Line 22: Line 35:
 
* http://www.cirt.net/nikto2
 
* http://www.cirt.net/nikto2
 
* http://www.parosproxy.org/
 
* http://www.parosproxy.org/
 +
* http://sectools.org/web-scanners.html
 +
* http://sectools.org/vuln-scanners.html
 +
 +
Acunetix, Retina Network Security Scanner,  Network Security Auditor, dll dapat menganalisa dan memberikan report /
 +
generate report secara akurat dan profesional.
  
 
==Network Security==
 
==Network Security==
Line 29: Line 47:
 
* [[Memblok Situs Porno Menggunakan Content Filter di Firefox Windows]]
 
* [[Memblok Situs Porno Menggunakan Content Filter di Firefox Windows]]
 
* [[11 Kelemahan Yang Kerap Tidak Disadari Admin Jaringan]]
 
* [[11 Kelemahan Yang Kerap Tidak Disadari Admin Jaringan]]
 +
* [[DDos: Langkah Mengatasi Serangan DDoS]]
 +
* [[Cloud: Tujuh Resiko Keamanan pada Cloud-Computing]]
  
==OS Security==
+
===HoneyPot / HoneyNet===
  
* http://www.go2linux.org/fedora-centos-root-password-recovery - kalau lupa password root
+
* [[Honeypot]]
* [[Enkripsi Disk]]
 
  
 
===Mail Security===
 
===Mail Security===
Line 52: Line 71:
 
* [[Edit Konfigurasi Pemblokiran Dansguardian]]
 
* [[Edit Konfigurasi Pemblokiran Dansguardian]]
 
* [[Instalasi phpSHIELD]]
 
* [[Instalasi phpSHIELD]]
 
+
* http://www.fail2ban.org/wiki/index.php/Main_Page - Deteksi Serangan & Ban automatis
 +
* [[Zero Trust Network Access (ZTNA)]]
  
 
===Network Monitoring & Intrution Detection===
 
===Network Monitoring & Intrution Detection===
 +
* [[Suricata]]
 
* [[Instalasi Nessus]]
 
* [[Instalasi Nessus]]
 
* [[Instalasi Nessus Client]]
 
* [[Instalasi Nessus Client]]
Line 64: Line 85:
 
* http://www.endace.com/cyber-security-monitoring.html
 
* http://www.endace.com/cyber-security-monitoring.html
 
* [[Snorby Preconfigured Security Application]]
 
* [[Snorby Preconfigured Security Application]]
 +
* http://www.linux-sec.net/IDS/ ([[IDS]])
 +
* http://www.monkey.org/~dugsong/talks/ids/ ([[IDS]]).
 +
* http://www.cert.org/tech_tips/intruder_detection_checklist.html ([[IDS]])
 +
* http://www.robertgraham.com/pubs/network-intrusion-detection.html ([[IDS]])
 +
* http://www.sans.org/newlook/resources/IDFAQ/ID_FAQ.htm ([[IDS]])
 +
* [[Linux Monitoring Tool]]
  
 
====Pertahanan untuk NetCut====
 
====Pertahanan untuk NetCut====
  
* http://awarmanf.wordpress.com/2009/12/23/membuat-linux-kebal-arp-poisoning-arp-spoofing/
+
* [[Pertahanan Melawan ARP spoofing di Linux]]
* http://techno-os.net/info-tutorials/hacking/pemutus-jaringan-lan-di-linux-dengan-technocut/
+
* [[Membuat Linux Kebal ARP Poisoning ARP Spoofing]]
 +
* [[Pemutus jaringan LAN di linux dengan TechnoCut]]
 
* [[Anti NetCut]]
 
* [[Anti NetCut]]
 
* [[tuxcut]]
 
* [[tuxcut]]
 
  
 
===Secure Connection===
 
===Secure Connection===
Line 85: Line 112:
 
* [[Ubah Nomor Port sshd]]
 
* [[Ubah Nomor Port sshd]]
  
===Anti Virus===
+
===Authentikasi===
* [[Instalasi antivirus clamav]]
+
 
 +
* [[openldap]]
  
 
===Mematikan Mesin Windows Jarak Jauh===
 
===Mematikan Mesin Windows Jarak Jauh===
Line 96: Line 124:
 
* http://blog.beausanders.com/?q=node/8
 
* http://blog.beausanders.com/?q=node/8
  
===Patch SQL Injection===
+
==OS Security==
 +
 
 +
* http://www.go2linux.org/fedora-centos-root-password-recovery - kalau lupa password root
 +
* [[Enkripsi Disk]]
 +
* [[20 Linux System Monitoring Tool]]
 +
* [[Cyber Security: Detect and remove trojans in a Linux operating system]]
  
 +
===Anti Rootkit===
 +
 +
* [[Rootkit Hunter]]
 +
* [[chkrootkit]]
 +
 +
===Anti Virus===
 +
* [[Instalasi antivirus clamav]]
 +
* [[Scan File dan URL Secara Online]]
 +
* [[Virus]]
 +
* [[Anti Virus]]
 +
 +
===Host based IDS===
 +
 +
* [[Tripwire]]
 +
* [[systraq]]
 +
 +
===RaspberryPi Pentest===
 +
 +
* http://resources.infosecinstitute.com/pentesting-distributions-and-installer-kits-for-your-raspberry-pi/
 +
* http://www.raspberrypi.org/downloads
 +
* https://github.com/g13net/PwnBerryPi.git
 +
 +
==Web Security==
 +
 +
* http://www.ipa.go.jp/security/vuln/documents/website_security_en.pdf
 +
* https://www.owasp.org/index.php/Web_Application_Firewall
 +
 +
===Web Application Firewall===
 +
 +
* [[Web Application Firewall]]
 +
 +
===SQL Injection===
 +
 +
* [[SQL Injection Web dengan Dork]]
 +
* [[Algoritma dan teknik menangkal SQL injection]]
 
* [[Teknik Mengatasi SQL Injection]]
 
* [[Teknik Mengatasi SQL Injection]]
 
* [[Patch SQL Injection Session 1 cmsmadesimple]]
 
* [[Patch SQL Injection Session 1 cmsmadesimple]]
 
* [[Patch SQL Injection Session 2 cmsmadesimple]]
 
* [[Patch SQL Injection Session 2 cmsmadesimple]]
 
* [[Patch SQL Injection Session 3 Final akses module]]
 
* [[Patch SQL Injection Session 3 Final akses module]]
 +
 +
===Cross Site Scripting XSS===
 +
 +
* [[Injeksi XSS Ke Dalam Website]]
 +
* [[Analisis dan antisipasi serangan Cross Site Scripting (XSS)]] ('''RECOMMENDED''')
 +
* [[Cara Mengatasi XSS Bug pada Bagian Komentar Wordpress]]
 
* [http://books.google.com/books?id=3YFwVj6_51IC&printsec=frontcover&dq=XSS&hl=en&ei=r_YiTabbBIXwrQer_tDNCw&sa=X&oi=book_result&ct=result&resnum=1&ved=0CCMQ6AEwAA XSS attacks: cross-site scripting exploits and defense]
 
* [http://books.google.com/books?id=3YFwVj6_51IC&printsec=frontcover&dq=XSS&hl=en&ei=r_YiTabbBIXwrQer_tDNCw&sa=X&oi=book_result&ct=result&resnum=1&ved=0CCMQ6AEwAA XSS attacks: cross-site scripting exploits and defense]
 
* [http://books.google.com/books?id=_9P9ImY3ITwC&pg=PA93&dq=XSS&hl=en&ei=r_YiTabbBIXwrQer_tDNCw&sa=X&oi=book_result&ct=result&resnum=2&ved=0CCgQ6AEwAQ Security+ Guide to Network Security Fundamentals - Page 93]
 
* [http://books.google.com/books?id=_9P9ImY3ITwC&pg=PA93&dq=XSS&hl=en&ei=r_YiTabbBIXwrQer_tDNCw&sa=X&oi=book_result&ct=result&resnum=2&ved=0CCgQ6AEwAQ Security+ Guide to Network Security Fundamentals - Page 93]
Line 110: Line 184:
 
* http://www.owasp.org/index.php/SQL_injection
 
* http://www.owasp.org/index.php/SQL_injection
  
===Web Security===
+
===Pelaporan===
  
* http://www.ipa.go.jp/security/vuln/documents/website_security_en.pdf
+
* [[Melaporkan Situs Phising]]
  
===Pelaporan===
+
===mod security===
  
* [[Melaporkan Situs Phising]]
+
* http://www.thefanclub.co.za/how-to/how-install-apache2-modsecurity-and-modevasive-ubuntu-1204-lts-server
  
 
==Hacking==
 
==Hacking==
Line 129: Line 203:
 
==Referensi Keamanan Jaringan==
 
==Referensi Keamanan Jaringan==
  
 +
* http://docs.fedoraproject.org/en-US/Fedora/14/html/Security_Guide/index.html
 
* http://www.securityfocus.com
 
* http://www.securityfocus.com
 
* http://www.lists.gnac.net/firewalls
 
* http://www.lists.gnac.net/firewalls
Line 159: Line 234:
 
* [http://milisdad.blogspot.com/2009/02/mereset-password-pada-aplikasi-berbasis.html Mereset Password pada Aplikasi Berbasis Web] - Aplikasi yang cukup aman tidak bisa menggunakan cara ini
 
* [http://milisdad.blogspot.com/2009/02/mereset-password-pada-aplikasi-berbasis.html Mereset Password pada Aplikasi Berbasis Web] - Aplikasi yang cukup aman tidak bisa menggunakan cara ini
 
* http://situstarget.com/home/2010/07/02/cara-melaporkan-situs-phising/
 
* http://situstarget.com/home/2010/07/02/cara-melaporkan-situs-phising/
 +
* https://crypto.stanford.edu/cs155/syllabus.html
  
 
==Pranala Menarik==
 
==Pranala Menarik==

Latest revision as of 07:10, 31 July 2024

Teori

Manajemen

Network Security Appliance

Untuk yang tidak mau pusing menginstalasi berbagai software / aplikasi network security, dapat menggunakan appliance yang sudah jadi.

Evaluasi Jaringan

Security Test

Acunetix, Retina Network Security Scanner,  Network Security Auditor, dll dapat menganalisa dan memberikan report / generate report secara akurat dan profesional.

Network Security

HoneyPot / HoneyNet

Mail Security

Firewall & Blokir Situs

Network Monitoring & Intrution Detection

Pertahanan untuk NetCut

Secure Connection

Authentikasi

Mematikan Mesin Windows Jarak Jauh

OS Security

Anti Rootkit

Anti Virus

Host based IDS

RaspberryPi Pentest

Web Security

Web Application Firewall

SQL Injection

Cross Site Scripting XSS

Pelaporan

mod security

Hacking

Referensi Keamanan Jaringan

Buku-Buku

Referensi Keamanan Web

URL Menarik

Pranala Menarik