Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: InfoSec Handlers Diary Blog - Free time? InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Free time?

Published: 2005-09-14
Last Updated: 2005-09-14 23:48:47 UTC
by Kyle Haugsness (Version: 1)
0 comment(s)
Since Microsoft gave us a free month, how are you spending all your newly-found free time?  I'm specifically interested in readers that are custom-coding solutions to security or system administration problems.  Got any C/Perl/Python code that you want to share?  You coders don't get enough credit here, so let's here from you.

For example, last year I looked for a solution to monitor the changes to a Windows file share.  I needed a report at the end of the day showing new files, deleted files, etc.  This would allow me to detect security policy violations in an automated fashion.  I couldn't find anything free or commercial to do it, so I rolled my own in Python and SQLite (a light-weight database engine).  Interestingly, I discussed my project with several Windows system admins and none had ever thought about monitoring a file server in this manner.

Be sure to include whether you would allow us to reprint the code or description of the code on the site.

Keywords:
0 comment(s)
Diary Archives