Articles by Ahmad

• 

  Installation and Usage of Maltrail detection system on Ubuntu 18.04

  Author: Ahmad • Tags: linux, security, ubuntu • Comments: 0

  Maltrail is a malicious traffic detection system which utilizes the publicly available spam list/ blacklists of malicious and suspicious trails. This tutorial shows the installation of Maltrail on Ubuntu 18.04 LTS.

  read more... | view as pdf

• 

  Integration of CFSSL with the Lemur Certificate Manager

  Author: Ahmad • Tags: linux, security • Comments: 2

  This tutorial shows the integration of CFSSL with the Lemur certificate Manager. In the previous article on Lemur certificate manager, we have not used any third party root Certification Authority (CA) for the client certificates. Therefore, in this tutorial, PKI will be set up using CFSSL (Cloudflare's SSL) and integrated with the Lemur project.

  read more... | view as pdf

• Installation of Lemur Certificate Manager on Ubuntu

  Author: Ahmad • Tags: linux, security, ubuntu • Comments: 1

  This tutorial shows the installation of the Lemur certificate management software on Ubuntu 16.04 LTS. Lemur is an open source project of NetFlix and used to generate the certificates for customers/clients.

  read more... | view as pdf

• How to install and use SoftHSM on Ubuntu 16.04 LTS

  Author: Ahmad • Tags: security, ubuntu • Comments: 0

  SoftHSM is basically an implementation of a cryptographic store accessible through a PKCS #11 interface. The PKCS#11 interface is used to communicate or access the cryptographic devices such as HSM (Hardware Security Modules) and smart cards. The primary purpose of HSM devices is to generate cryptographic keys and sign/encrypt information without revealing the private key to the others.

  read more... | view as pdf

• How to install and use Volatility memory forensic tool

  Author: Ahmad • Tags: linux, security, ubuntu • Comments: 1

  One of the important parts of Malware analysis is Random Access Memory (RAM) analysis. It helps to identify the running malicious processes, network activities, open connections etc in the compromised system. This article is about the open source security tool "Volatility" for volatile memory analysis. It can be used for both 32/64 bit systems RAM analysis and it supports analysis of Windows, Linux, Mac & Android systems.

  read more... | view as pdf

• Libreswan based Ipsec VPN using preshared and RSA keys on Ubuntu

  Author: Ahmad • Tags: linux, security, ubuntu • Comments: 2

  The purpose of this tutorial is to explore LibreSwan which provides an IPsec protocol implementation. It is available in RedHat distributions, however, it can be compiled for another platform such as Ubuntu/Debian easily. In this article, the LibreSwan tool is built from source on Ubuntu, then a two peer VPN is configured using preshared & RSA keys between the gateway devices.

  read more... | view as pdf

• How to create your own Linux Distribution with Yocto on Ubuntu

  Author: Ahmad • Tags: linux, ubuntu • Comments: 5

  In this article, our focus is the creation of a minimal Linux distribution using the Yocto project on the Ubuntu platform. The Yocto project is very famous in the embedded Linux world because of its flexibility and ease of use. The purpose of the Yocto project is to create a Linux distro for manufacturers of embedded hardware and software.

  read more... | view as pdf

• L2TP over IPsec using OpenSwan with Freeradius authentication on Ubuntu 16.04

  Author: Ahmad • Tags: linux, security, ubuntu • Comments: 3

  This article is about the layer 2 tunneling protocol (L2TP) with IPsec to provide end-to-end encryption in the layer 2 VPN. The open source implementations of IPsec are StrongSwan and OpenSwan, both are supported on all Linux distributions. In this tutorial, OpenSwan is used to provide the security channel for L2TP VPN.

  read more... | view as pdf

• How to install OpenSC on IPFire Firewall

  Author: Ahmad • Tags: linux, security • Comments: 1

  In this tutorial, support for hardware tokens (such as smart cards) and their readers (CCID compliance) are integrated with the IPFire project. This article is the continuation of our previous work on IPFire firewall.

  read more... | view as pdf

• StrongSwan based IPsec VPN using certificates and pre shared key on Ubuntu 16.04

  Author: Ahmad • Tags: linux, security, ubuntu • Comments: 9

  In this article, the strongSwan IPsec VPN will be installed on Ubuntu 16.04 (LTS), I will show the integration of OpenSC for hardware tokens and finally the creation of a gateway-to-gateway tunnel using a pre-shared key and x.509 certificates.

  read more... | view as pdf