Difference between revisions of "Keamanan Jaringan"
Jump to navigation
Jump to search
Onnowpurbo (talk | contribs) |
Onnowpurbo (talk | contribs) |
||
Line 154: | Line 154: | ||
* http://www.modsecurity.org/ | * http://www.modsecurity.org/ | ||
* https://www.ironbee.com/ | * https://www.ironbee.com/ | ||
− | + | * https://github.com/jaydipdave/quickdefencewaf | |
+ | * http://openresty.org/ | ||
===SQL Injection=== | ===SQL Injection=== |
Revision as of 07:26, 20 February 2015
Teori
- Peta Teknologi Network Security
- http://www.owasp.org/index.php/Category:Principle - Prinsip Keamanan Aplikasi
- Trend Keamanan Internet Indonesia 2010
- 20 Linux Server Hardening Security Tips
- http://www.cyberciti.biz/tips/php-security-best-practices-tutorial.html
- Linux Security Howto
Network Security Appliance
Untuk yang tidak mau pusing menginstalasi berbagai software / aplikasi network security, dapat menggunakan appliance yang sudah jadi.
Evaluasi Jaringan
Security Test
- http://sectools.org/web-scanners.html
- http://www.cirt.net/nikto2
- http://www.parosproxy.org/
- http://sectools.org/web-scanners.html
- http://sectools.org/vuln-scanners.html
Acunetix, Retina Network Security Scanner, Network Security Auditor, dll dapat menganalisa dan memberikan report / generate report secara akurat dan profesional.
Network Security
- Beberapa Tip Hacking
- Teknik Memblok Situs Tidak Baik
- Memblok Situs Porno Menggunakan Content Filter di Firefox Windows
- 11 Kelemahan Yang Kerap Tidak Disadari Admin Jaringan
HoneyPot / HoneyNet
Mail Security
- Postfix: Konfigurasi relayhost dengan Authentikasi
- Block Spam Menggunakan Postfix
- Blok Spam Menggunakan Postfix dan Bogofilter
- Instalasi MailScanner
- http://www.scamnailer.info/
- Teknik Anti Spam
- Melihat Header e-mail
Firewall & Blokir Situs
- Mini Howto iptables untuk Firewall
- Firestarter Firewall untuk Ubuntu
- Teknik Memblok Situs Tidak Baik
- Firewall Untuk Proxy DansGuardian
- Edit Konfigurasi Pemblokiran Dansguardian
- Instalasi phpSHIELD
- http://www.fail2ban.org/wiki/index.php/Main_Page - Deteksi Serangan & Ban automatis
Network Monitoring & Intrution Detection
- Suricata
- Instalasi Nessus
- Instalasi Nessus Client
- Nessus: Melalui Web
- Instalasi NTOP
- Instalasi SNORT dan BASE Intrusion Detection System (IDS)
- Instalasi EasyIDS
- Suricata Open Source Next Generation Intrusion Detection and Prevention Engine
- http://www.endace.com/cyber-security-monitoring.html
- Snorby Preconfigured Security Application
- http://www.linux-sec.net/IDS/ (IDS)
- http://www.monkey.org/~dugsong/talks/ids/ (IDS).
- http://www.cert.org/tech_tips/intruder_detection_checklist.html (IDS)
- http://www.robertgraham.com/pubs/network-intrusion-detection.html (IDS)
- http://www.sans.org/newlook/resources/IDFAQ/ID_FAQ.htm (IDS)
- Linux Monitoring Tool
Pertahanan untuk NetCut
- Pertahanan Melawan ARP spoofing di Linux
- Membuat Linux Kebal ARP Poisoning ARP Spoofing
- Pemutus jaringan LAN di linux dengan TechnoCut
- Anti NetCut
- tuxcut
Secure Connection
- http://www.madboa.com/geek/gpg-quickstart/#keyintro - GPG Key
- Virtual Private Network (VPN)
- Instalasi dan Konfigurasi rsync untuk backup antar mesin
- Persiapan SSH untuk SCP Batch
- Topal - Pengikat GnuPG dan Alpine
- Mengikat GnuPG dan Alpine
- Menggunakan GnuPG
- GnuPG Mini Howto
- GnuPG Privacy Handbook
- Ubah Nomor Port sshd
Authentikasi
Mematikan Mesin Windows Jarak Jauh
- http://www.howtoforge.com/how-to-remotely-shut-down-windows-xp-computers-from-a-linux-server
- http://www.lgr.ca/blog/2008/04/shutdown-windows-from-linux.html
- http://www.linuxforums.org/forum/redhat-fedora-linux-help/60324-remote-shutdown-windows-linux-box.html
- http://landofthefreeish.com/linux/howto-remote-shutdown-of-a-windows-computer-from-linux/
- http://blog.beausanders.com/?q=node/8
OS Security
- http://www.go2linux.org/fedora-centos-root-password-recovery - kalau lupa password root
- Enkripsi Disk
- 20 Linux System Monitoring Tool
Anti Rootkit
Anti Virus
Host based IDS
RaspberryPi Pentest
- http://resources.infosecinstitute.com/pentesting-distributions-and-installer-kits-for-your-raspberry-pi/
- http://www.raspberrypi.org/downloads
- https://github.com/g13net/PwnBerryPi.git
Web Security
- http://www.ipa.go.jp/security/vuln/documents/website_security_en.pdf
- https://www.owasp.org/index.php/Web_Application_Firewall
Web Application Firewall
- https://www.owasp.org/index.php/OWASP_NAXSI_Project
- https://www.owasp.org/index.php/Category:OWASP_Stinger_Project
- http://www.modsecurity.org/
- https://www.ironbee.com/
- https://github.com/jaydipdave/quickdefencewaf
- http://openresty.org/
SQL Injection
- SQL Injection Web dengan Dork
- Algoritma dan teknik menangkal SQL injection
- Teknik Mengatasi SQL Injection
- Patch SQL Injection Session 1 cmsmadesimple
- Patch SQL Injection Session 2 cmsmadesimple
- Patch SQL Injection Session 3 Final akses module
Cross Site Scripting XSS
- Injeksi XSS Ke Dalam Website
- Analisis dan antisipasi serangan Cross Site Scripting (XSS) (RECOMMENDED)
- Cara Mengatasi XSS Bug pada Bagian Komentar Wordpress
- XSS attacks: cross-site scripting exploits and defense
- Security+ Guide to Network Security Fundamentals - Page 93
- Hacking: The Next Generation
- Building scalable web sites
- The definitive guide to Grails - Page 409
- Apache security
- http://www.owasp.org/index.php/SQL_injection
Pelaporan
mod security
Hacking
- Wireless Hacking
- Beberapa Tip Hacking
- Backtrack
- Mari Hacking Website agar menjadi lebih aman
- Bagi yang Account Facebook di Crack
- WebGoat - Web yang tidak aman Untuk Belajar di Hack
Referensi Keamanan Jaringan
- http://docs.fedoraproject.org/en-US/Fedora/14/html/Security_Guide/index.html
- http://www.securityfocus.com
- http://www.lists.gnac.net/firewalls
- http://www.nfr.com.mailman/listinfo/firewall-wizards
- http://www.sans.org/sansnews/
- http://www.cert.org/
- http://www.safemag.com/
- http://www.ciac.org/
- http://www.linuxsecurity.com/
- http://www.insecure.org/
Buku-Buku
Referensi Keamanan Web
- http://www.w3.org/security/faq/
- http://www.securityportal.com
- http://www.2600.com
- http://www.go2net.com/people/paulp/cgi-security/
- http://www.consensus.com/security/ssl-talk-faq.html
- / Web Engineering dalam Konteks Web Science: Isu Terkini dan Tantangan author : Bambang Purnomosidi D. P
- http://whitesecure.com
- http://www.owasp.org/index.php/Main_Page
URL Menarik
- http://awarmanf.wordpress.com/2010/05/01/drop-ultrasurf-dengan-iptables/
- Mereset Password pada Aplikasi Berbasis Web - Aplikasi yang cukup aman tidak bisa menggunakan cara ini
- http://situstarget.com/home/2010/07/02/cara-melaporkan-situs-phising/