Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 956 Categories, Downloaded 49.599.818 Times

sh2log 1.0

  Date Added: October 03, 2010  |  Visits: 984

sh2log

Report Broken Link
Printer Friendly Version


Product Homepage
Download (101 downloads)



sh2log is a PTY sniffing program that captures all keystrokes and console output of physical and virtual consoles. sh2log works in userland and does not require the installation of a kernel module. Consequently, it can be run on a wide range of different UNIX platforms. It provides ready-to-use log files and is meant to be used for legitimate purposes such as auditing user actions on a sensitive server or a honeypot. How to install it 2.1. Edit config.h and setup the following values: CONNECT_IP IP address of the machine on which sh2logd runs SERVER_PORT UDP port in use by sh2logd REAL_SHELL_DIR Directory for the real shells (/bin/shells) MAX_LOG_SIZE Maximum size before a new log file is created secret This is a 128-bit symmetric key used to secure the data when transmitted over the network. 2.2. Compile sh2log by simply running "make system" System can be any of those: linux, freebsd, openbsd, cygwin, sunos, aix, irix, hpux and osf. 2.3. Replace the original shell with sh2log and run sh2logd: # mkdir /bin/shells/ # cp -p /bin/{sh,bash} /bin/shells/ # rm -f /bin/{sh,bash} # cp -p sh2log /bin/bash # cp -p sh2log /bin/sh # ./sh2logd If you see an error message about "bash: text file busy", check that you have rmed the file before copying sh2log over it. Also, Id recommended not running sh2log and sh2logd on the same machine. Warning: /bin/sh is often a symlink to /bin/bash. DO NOT FORGET TO CREATE "/bin/shells/sh" OR YOUR SYSTEM WILL BE UNUSABLE! 3. Monitoring your users: the interactive log parser Please try first to run ./parser with the provided sh2log example file "test.bin". Window resizing requires XTerm (not rxvt, eterm or konsole) and a valid DISPLAY; or if you use PuTTY, try resizing the window by hand. The parser provides both non-interactive and interactive (takedown-like) modes of operation. In interactive mode, you can pause, fast forward (2x or 4x) and also follow in real time what the users are doing one the system, and have a live view of all terminals..

Requirements: No special requirements
Platforms: Linux
Keyword: Logging Physical Program Pty Sniffing System Virtual
Users rating: 0/10

License: Freeware Size: 79.87 KB
USER REVIEWS
More Reviews or Write Review


SH2LOG RELATED
Utilities  -  osdsh 0.7.0
OSDsh is a a little program that overlays system information using the 2.0.1 version of the XOSD library. OSDsh was at first based on osdd but grew out of control as any good beast should, and got some features added. Aditionally, it understands...
21.5 KB  
Utilities  -  conntrack 1.00 Beta1
conntrack is a userspace command line program targeted at system administrators. conntrack program enables them to view and manage the in-kernel connection tracking state table..
215.04 KB  
Multimedia Integration Tools  -  iTunesPlay 1.3
The program is a system menu bar addition and very minimalistic. It just displays song information of the current played track on iTunes. Each change will be displayed directly. Information is display as shown above Artist: Title (Album)
409.6 KB  
Time Management  -  E-Time 1.0
E-Time by Media Programming Group company is a program for automated system clock correction by means of the Internet. Your system time will be regularly collated with an atomic clock, and your computer clock will always be precise.
209 KB  
Development Editors  -  Tourweaver Professional Edition 7.00.111213
Tourweaver Professional is a program for creating Flash virtual tours with 360 panoramas, flash, video, still images and floorplans. Futhermore, Tourweaver Professional will surprise you with its ease-of-use, as well as with its interactive and...
 
Programming  -  MD Approach To Equilibrium Three Partitions 1.0
The MDApproachToEquilibriumThreePartitions program simulates a system of particles in two dimensions interacting via the Lennard-Jones potential. The program shows the particles in the box as a function of time once the partitions dividing the box...
102.4 KB  
Science  -  Asynx Planetarium 2.73
Asynx Planetarium is a easy to use planetarium program and solar system simulator. It can display the night sky from any location on earth between the year 1760 and 9999 and covers over 10000 stars, the planets, all messier objects, all 88...
3.12 MB  
Utilities  -  Gurux Data Refinery 1.0.0.11
Gurux Data Refinery is an easy to use application that will enable you to collect data effectively, directly from physical devices in your system, process the collected data for different purposes of use, and present the results clearly, in a way...
 
Audio Tools  -  MIDI Display 1.0
The MIDI Display is a program consisting of 16 Virtual Keyboards, one for each MIDI channel. As notes are played they are displayed on the corresponding channel in varying shades of blue; Light blue for the softer notes and dark blue for the...
532.48 KB  
Business  -  GXDataRefinery 1.0.0.16
With the latest Gurux Open Source application, DataRefinery, you collect data effectively, directly from physical devices in your system, process the collected data for different purposes of use, and present the results clearly, in a way of your...
3.56 MB  
NEW DOWNLOADS IN LINUX SOFTWARE, UTILITIES
Linux Software  -  EasyEDA PCB Designer for Linux 2.0.0
EasyEDA, a great web based EDA(Electronics Design Automation) tool, online PCB tool, online PCB software for electronics engineers, educators, students, makers and enthusiasts. Theres no need to install any software. Just open EasyEDA in any...
34.4 MB  
Linux Software  -  wpCache® WordPress HTTP Cache 1.9
wpCache® is a high-performance, distributed object, caching system application, generic in nature, but intended for use in speeding up dynamic web applications, by decreasing database load time. wpCache® decreases dramatically the page...
3.51 MB  
Linux Software  -  Polling Autodialer Software 3.4
ICTBroadcast Auto Dialer software has a survey campaign for telephone surveys and polls. This auto dialer software automatically dials a list of numbers and asks them a set of questions that they can respond to, by using their telephone keypad....
488 B  
Linux Software  -  Total Video Converter Mac Free 3.5.5
Total Video Converter Mac Free developed by EffectMatrix Ltd is the official legal version of Total Video Converter which was a globally recognized brand since 2006. Total Video Converter Mac Free is a free but powerful all-in-one video...
17.7 MB  
Linux Software  -  Skeith mod_log_sql Analyzer 2.10beta2
Skeith is a php based front end for analyzing logs for Apache using mod_log_sql.
47.5 KB  
Utilities  -  Nessconnect 1.0.2
Nessconnect is a GUI, CLI and API client for Nessus and Nessus compatible servers. With an improved user interface, it provides local session management, scan templates, report generation through XSLT, charts and graphs, and vulnerability trending.
819.2 KB  
Utilities  -  Dynamic Power Management 2.6.16
The Dynamic Power Management (DPM) project explores technologies to improve power conservation capabilities of platforms based on open source software. Of particular interest are techniques applicable to running systems, adjusting power parameters...
30.72 KB  
Utilities  -  Ethernet bridge tables 2.4.37.9
Ethernet bridge tables - Linux Ethernet filter for the Linux bridge. The 2.4-ebtables-brnf package contains the ebtables+bridge-nf patch. Be sure to check out the ebtables hp. This site also contains the arptables userspace tool.
40.96 KB  
Utilities  -  SaraB 1.0.0
SaraB works with DAR (Disk ARchive) to schedule and rotate backups on random-access media (i.e. hard drives, CDs, DVDs, Zip, etc. Basically anything except magnetic tapes.) This reduces hassle for the administrator by providing an automatic backup...
20.48 KB  
Utilities  -  Command Not Found 0.2.41
Command Not Found is a program that uses a cache of existing programs and their associated packages to aid users in their day-to-day command-line work. Usage: command-not-found [options] Options: ...
30.72 KB