Skip to content

Commit

Permalink
daily
Browse files Browse the repository at this point in the history
  • Loading branch information
@szepeviktor
szepeviktor committed Aug 6, 2018
1 parent 38778d1 commit 930ff33
Show file tree
Hide file tree
Showing 7 changed files with 140 additions and 96 deletions.
4 changes: 2 additions & 2 deletions monitoring/syslog-errors-infrequent.sh
View file
Expand Up @@ -2,7 +2,7 @@
#
# Send interesting parts of syslog from the last 3 hours. Simple logcheck.
#
# VERSION :0.8.16
# VERSION :0.8.17
# DATE :2016-04-20
# AUTHOR :Viktor Sz茅pe <viktor@szepe.net>
# LICENSE :The MIT License (MIT)
Expand Down Expand Up @@ -37,7 +37,7 @@ Failures()
grep -E -i "crit|[^f]err[os]|warn[^e]|fail[^2]|alert|unknown|unable|miss[^y]\
|except|disable|invalid|[^e]fault|cannot|denied|broken|exceed|too big|unsafe|unsolicited\
|limit reach|unhandled|traps|\bbad\b|corrupt|but got status|oom-killer|false|unreach\
|oops|ignor[ei]"
|oops|ignor[ei]|prohibit"
}

# Search recent log entries
Expand Down
4 changes: 2 additions & 2 deletions monitoring/syslog-errors.sh
View file
Expand Up @@ -2,7 +2,7 @@
#
# Send interesting parts of syslog from the last hour. Simple logcheck.
#
# VERSION :0.8.16
# VERSION :0.8.17
# DATE :2016-04-20
# AUTHOR :Viktor Sz茅pe <viktor@szepe.net>
# LICENSE :The MIT License (MIT)
Expand Down Expand Up @@ -37,7 +37,7 @@ Failures()
grep -E -i "crit|[^f]err[os]|warn[^e]|fail[^2]|alert|unknown|unable|miss[^y]\
|except|disable|invalid|[^e]fault|cannot|denied|broken|exceed|too big|unsafe|unsolicited\
|limit reach|unhandled|traps|\bbad\b|corrupt|but got status|oom-killer|false|unreach\
|oops|ignor[ei]"
|oops|ignor[ei]|prohibit"
}

# Search recent log entries
Expand Down
4 changes: 3 additions & 1 deletion security/myattackers-ipsets/README.md
View file
Expand Up @@ -15,6 +15,8 @@ See also Access Watch database: https://access.watch/database

Run `myattackers-ipsets-install.sh`

Update ipset files with embedded update script: `sed -n -e 's/^#\$ //p' example.ipset | bash`

### Usage on systems without ipset

```bash
Expand All @@ -32,7 +34,7 @@ grep -h '^add' *.ipset | cut -d " " -f 3 | sortip \
echo "</RequireAll>"
```

### Usage in Mikrotik routers
### Usage on Mikrotik routers

```bash
grep -h '^add' *.ipset | cut -d " " -f 3 | sortip \
Expand Down
70 changes: 53 additions & 17 deletions security/myattackers-ipsets/ipset/binaryedge.ipset
View file
Expand Up @@ -3,38 +3,54 @@
#: iptables -w -I myattackers-ipset -m set --match-set binaryedge src -j REJECT
create binaryedge hash:net family inet hashsize 256 maxelem 256
flush binaryedge
# wget -qO- https://api.binaryedge.io/v1/minions | jq -r ".scanners[]" | sortip | sed -e 's|^|add binaryedge |'
#$ wget -qO- https://api.binaryedge.io/v1/minions | jq -r ".scanners[]" | sortip | sed -e 's|^|add binaryedge |'
add binaryedge 23.239.12.203
add binaryedge 23.239.29.206
add binaryedge 45.33.1.230
add binaryedge 45.33.4.59
add binaryedge 45.33.5.93
add binaryedge 45.33.8.221
add binaryedge 45.33.72.47
add binaryedge 45.33.87.199
add binaryedge 45.33.89.173
add binaryedge 45.33.91.211
add binaryedge 45.33.92.22
add binaryedge 45.33.115.189
add binaryedge 45.33.117.146
add binaryedge 45.33.127.10
add binaryedge 45.56.67.72
add binaryedge 45.56.70.42
add binaryedge 45.56.79.13
add binaryedge 45.56.102.239
add binaryedge 45.56.109.212
add binaryedge 45.56.127.170
add binaryedge 45.79.136.24
add binaryedge 46.101.138.143
add binaryedge 46.101.142.249
add binaryedge 50.116.18.33
add binaryedge 50.116.20.212
add binaryedge 50.116.26.150
add binaryedge 50.116.56.144
add binaryedge 50.116.62.174
add binaryedge 50.116.63.194
add binaryedge 66.175.213.171
add binaryedge 66.228.45.246
add binaryedge 66.228.48.57
add binaryedge 69.164.192.139
add binaryedge 69.164.208.147
add binaryedge 69.164.217.17
add binaryedge 69.164.222.63
add binaryedge 72.14.190.168
add binaryedge 80.85.87.128
add binaryedge 85.90.246.65
add binaryedge 85.159.208.130
add binaryedge 85.159.209.237
add binaryedge 96.126.108.181
add binaryedge 96.126.114.188
add binaryedge 96.126.116.116
add binaryedge 96.126.116.155
add binaryedge 96.126.117.41
add binaryedge 96.126.121.170
add binaryedge 97.107.130.28
add binaryedge 104.237.134.132
add binaryedge 104.237.141.224
Expand All @@ -46,20 +62,22 @@ add binaryedge 137.74.30.57
add binaryedge 137.74.30.66
add binaryedge 137.74.30.67
add binaryedge 137.74.30.68
add binaryedge 138.197.183.1
add binaryedge 138.197.183.43
add binaryedge 138.197.187.198
add binaryedge 139.162.131.57
add binaryedge 139.162.133.35
add binaryedge 139.162.138.134
add binaryedge 139.162.144.96
add binaryedge 139.162.147.159
add binaryedge 139.162.150.56
add binaryedge 139.162.153.163
add binaryedge 139.162.170.143
add binaryedge 139.162.171.172
add binaryedge 139.162.172.241
add binaryedge 139.162.174.99
add binaryedge 139.162.174.142
add binaryedge 139.162.176.220
add binaryedge 139.162.180.112
add binaryedge 139.162.181.53
add binaryedge 139.162.181.194
add binaryedge 139.162.182.202
add binaryedge 139.162.183.98
add binaryedge 139.162.184.185
Expand All @@ -68,58 +86,70 @@ add binaryedge 139.162.187.19
add binaryedge 139.162.198.123
add binaryedge 139.162.200.87
add binaryedge 139.162.201.41
add binaryedge 139.162.202.182
add binaryedge 139.162.206.133
add binaryedge 139.162.207.173
add binaryedge 139.162.210.98
add binaryedge 139.162.224.41
add binaryedge 139.162.237.43
add binaryedge 139.162.239.172
add binaryedge 139.162.241.118
add binaryedge 139.162.242.121
add binaryedge 139.162.244.135
add binaryedge 139.162.245.79
add binaryedge 139.162.253.76
add binaryedge 149.202.169.42
add binaryedge 149.202.179.6
add binaryedge 151.236.216.146
add binaryedge 151.236.217.108
add binaryedge 151.236.217.155
add binaryedge 151.236.218.41
add binaryedge 151.236.218.176
add binaryedge 151.236.222.69
add binaryedge 159.65.89.174
add binaryedge 159.65.127.116
add binaryedge 162.216.18.98
add binaryedge 162.243.20.114
add binaryedge 162.243.20.239
add binaryedge 162.243.48.124
add binaryedge 162.243.48.131
add binaryedge 162.243.48.136
add binaryedge 162.243.57.195
add binaryedge 162.243.57.197
add binaryedge 162.243.57.244
add binaryedge 165.227.160.91
add binaryedge 167.99.192.11
add binaryedge 167.99.197.142
add binaryedge 167.99.203.74
add binaryedge 167.99.251.186
add binaryedge 172.104.6.11
add binaryedge 172.104.21.135
add binaryedge 172.104.24.185
add binaryedge 172.104.31.94
add binaryedge 172.104.130.110
add binaryedge 172.104.132.213
add binaryedge 172.104.134.153
add binaryedge 172.104.141.225
add binaryedge 172.104.148.137
add binaryedge 172.104.151.72
add binaryedge 172.104.153.71
add binaryedge 172.104.153.234
add binaryedge 172.104.154.126
add binaryedge 172.104.159.235
add binaryedge 172.104.209.139
add binaryedge 172.104.209.213
add binaryedge 172.104.215.184
add binaryedge 172.104.218.161
add binaryedge 172.104.226.145
add binaryedge 172.104.226.239
add binaryedge 172.104.227.98
add binaryedge 172.104.230.145
add binaryedge 172.104.237.53
add binaryedge 172.104.237.83
add binaryedge 172.104.238.77
add binaryedge 172.104.240.32
add binaryedge 172.104.241.14
add binaryedge 172.104.246.157
add binaryedge 172.104.247.116
add binaryedge 172.104.248.39
add binaryedge 172.104.249.142
add binaryedge 173.255.200.211
add binaryedge 173.255.202.15
add binaryedge 173.255.205.62
add binaryedge 173.255.231.214
add binaryedge 173.255.233.14
add binaryedge 176.58.97.181
add binaryedge 176.58.99.149
add binaryedge 176.58.111.78
Expand All @@ -128,10 +158,14 @@ add binaryedge 176.58.124.73
add binaryedge 176.58.127.51
add binaryedge 178.79.128.185
add binaryedge 178.79.136.110
add binaryedge 178.79.147.209
add binaryedge 178.79.148.68
add binaryedge 178.79.157.91
add binaryedge 178.79.164.44
add binaryedge 178.79.169.42
add binaryedge 178.79.185.166
add binaryedge 178.79.189.131
add binaryedge 178.128.39.54
add binaryedge 185.3.94.57
add binaryedge 188.166.109.163
add binaryedge 188.166.127.100
Expand All @@ -140,19 +174,21 @@ add binaryedge 192.155.91.181
add binaryedge 192.241.180.120
add binaryedge 192.241.189.30
add binaryedge 192.241.189.130
add binaryedge 198.58.100.134
add binaryedge 198.58.100.235
add binaryedge 198.58.123.66
add binaryedge 198.58.124.194
add binaryedge 198.58.125.56
add binaryedge 198.58.125.58
add binaryedge 198.74.56.4
add binaryedge 198.74.62.251
add binaryedge 206.189.1.162
add binaryedge 206.189.1.179
add binaryedge 206.189.26.39
add binaryedge 206.189.110.224
add binaryedge 206.189.110.229
add binaryedge 206.189.110.232
add binaryedge 206.189.110.235
add binaryedge 206.189.15.44
add binaryedge 206.189.15.225
add binaryedge 206.189.62.189
add binaryedge 212.71.245.103
add binaryedge 212.71.249.125
add binaryedge 213.32.72.16
add binaryedge 213.32.72.110
add binaryedge 213.32.72.126
Expand Down
11 changes: 6 additions & 5 deletions security/myattackers-ipsets/ipset/shodan.ipset
View file
Expand Up @@ -11,11 +11,11 @@ add shodan 185.181.102.18
add shodan 71.6.146.185
# einstein.census.shodan.io.
add shodan 71.6.167.124
# for S in census{1..9} census1{0..2} \
# {atlantic,border,pacific,rim,ninja,pirate,turtle,einstein,malware-hunter,refrigerator,dojo,sky,mason,house,battery,flower,cloud}.census \
# atlantic.dns blog hello.data; do
# host -t A "${S}.shodan.io."
# done | sed -e 's/^.* \(has address\|has IPv4 address\) //' | sortip | uniq | sed -e 's|^|add shodan |'
#$ for S in census{1..9} census1{0..2} \
#$ {atlantic,border,pacific,rim,ninja,pirate,turtle,einstein,malware-hunter,refrigerator,dojo,sky,mason,house,battery,flower,cloud}.census \
#$ atlantic.dns blog hello.data; do
#$ host -t A "${S}.shodan.io."
#$ done | sed -e 's/^.* \(has address\|has IPv4 address\) //' | sortip | uniq | sed -e 's|^|add shodan |'
add shodan 66.240.192.138
add shodan 66.240.205.34
add shodan 66.240.236.119
Expand Down Expand Up @@ -45,3 +45,4 @@ add shodan 198.20.70.114
add shodan 198.20.99.130
add shodan 209.126.110.38
add shodan 216.117.2.180
# 104.131.141.0/24

0 comments on commit 930ff33

Please sign in to comment.