sh2log 1.0
Sponsored Links
sh2log 1.0 Ranking & Summary
File size:
0.078 MB
Platform:
Any Platform
License:
GPL (GNU General Public License)
Price:
Downloads:
1085
Date added:
2006-11-08
Publisher:
Christophe Devine
sh2log 1.0 description
sh2log is a PTY sniffing program that captures all keystrokes and console output of physical and virtual consoles. sh2log works in userland and does not require the installation of a kernel module.
Consequently, it can be run on a wide range of different UNIX platforms. It provides ready-to-use log files and is meant to be used for legitimate purposes such as auditing user actions on a sensitive server or a honeypot.
How to install it
2.1. Edit config.h and setup the following values:
CONNECT_IP IP address of the machine on which sh2logd runs
SERVER_PORT UDP port in use by sh2logd
REAL_SHELL_DIR Directory for the real shells (/bin/shells)
MAX_LOG_SIZE Maximum size before a new log file is created
secret This is a 128-bit symmetric key used to secure
the data when transmitted over the network.
2.2. Compile sh2log by simply running "make system"
System can be any of those: linux, freebsd, openbsd, cygwin, sunos, aix, irix, hpux and osf.
2.3. Replace the original shell with sh2log and run sh2logd:
# mkdir /bin/shells/
# cp -p /bin/{sh,bash} /bin/shells/
# rm -f /bin/{sh,bash}
# cp -p sh2log /bin/bash
# cp -p sh2log /bin/sh
# ./sh2logd
If you see an error message about "bash: text file busy", check that you have rmed the file before copying sh2log over it. Also, Id recommended not running sh2log and sh2logd on the same machine.
Warning: /bin/sh is often a symlink to /bin/bash. DO NOT FORGET TO CREATE "/bin/shells/sh" OR YOUR SYSTEM WILL BE UNUSABLE!
3. Monitoring your users: the interactive log parser
Please try first to run ./parser with the provided sh2log example file "test.bin". Window resizing requires XTerm (not rxvt, eterm or konsole) and a valid DISPLAY; or if you use PuTTY, try resizing the window by hand.
The parser provides both non-interactive and interactive (takedown-like) modes of operation. In interactive mode, you can pause, fast forward (2x or 4x) and also follow in real time what the users are doing one the system, and have a live view of all terminals.
Consequently, it can be run on a wide range of different UNIX platforms. It provides ready-to-use log files and is meant to be used for legitimate purposes such as auditing user actions on a sensitive server or a honeypot.
How to install it
2.1. Edit config.h and setup the following values:
CONNECT_IP IP address of the machine on which sh2logd runs
SERVER_PORT UDP port in use by sh2logd
REAL_SHELL_DIR Directory for the real shells (/bin/shells)
MAX_LOG_SIZE Maximum size before a new log file is created
secret This is a 128-bit symmetric key used to secure
the data when transmitted over the network.
2.2. Compile sh2log by simply running "make system"
System can be any of those: linux, freebsd, openbsd, cygwin, sunos, aix, irix, hpux and osf.
2.3. Replace the original shell with sh2log and run sh2logd:
# mkdir /bin/shells/
# cp -p /bin/{sh,bash} /bin/shells/
# rm -f /bin/{sh,bash}
# cp -p sh2log /bin/bash
# cp -p sh2log /bin/sh
# ./sh2logd
If you see an error message about "bash: text file busy", check that you have rmed the file before copying sh2log over it. Also, Id recommended not running sh2log and sh2logd on the same machine.
Warning: /bin/sh is often a symlink to /bin/bash. DO NOT FORGET TO CREATE "/bin/shells/sh" OR YOUR SYSTEM WILL BE UNUSABLE!
3. Monitoring your users: the interactive log parser
Please try first to run ./parser with the provided sh2log example file "test.bin". Window resizing requires XTerm (not rxvt, eterm or konsole) and a valid DISPLAY; or if you use PuTTY, try resizing the window by hand.
The parser provides both non-interactive and interactive (takedown-like) modes of operation. In interactive mode, you can pause, fast forward (2x or 4x) and also follow in real time what the users are doing one the system, and have a live view of all terminals.
sh2log 1.0 Screenshot
sh2log 1.0 Keywords
PTY
captures all keystrokes
Captures ALL
sh2log
program
physical
sniffing
virtual
system
sh2log 1.0
Logging
System
Bookmark sh2log 1.0
sh2log 1.0 Copyright
WareSeeker periodically updates pricing and software information of sh2log 1.0 full version from the publisher, so some information may be slightly out-of-date. You should confirm all information before relying on it. Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future development of sh2log 1.0 Edition. Download links are directly from our publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
Featured Software
Want to place your software product here?
Please contact us for consideration.
Contact WareSeeker.com
Related Information
love captures all
my cameras zoom captures all that might embrace it lyrics
imagereal captures alliance finance
tourist wrestles captures alligator
nanny cam captures alleged abuse
bring it on all or nothing screen captures
physical therapy equipment
sniffing rubbing alcohol
programming software applications
virtual mpf
systemax
physical map of africa
virtual villagers
solar system
drug sniffing dogs
cash for clunkers program
system sensor
sniffing alcohol
Related Software
Tao is a software package for sound synthesis using physical models. Free Download
TEKlib is a games operating system and cross-development SDK for games. Free Download
loggerfs is the virtual file system that allows you to store logs in a database. Free Download
IO::Pty is a pseudo TTY object class. Free Download
tcptunnel is a simple TCP tunnel written in Perl. Free Download
Apache::Logmonster is a tool to collect log files from multiple Apache Web servers. Free Download
Atop is an interactive monitor for Linux-systems to view the load on system-level and process-level. Free Download
Bodington is a free open source Virtual Learning Environment/Learning Management System. Free Download
Latest Software
Popular Software
Favourite Software
