Full Disclosure mailing list archives
SSH Scans - Homebrew dictionary
From: "Michel Pereira" <michel () michel eti br>
Date: Thu, 16 Mar 2006 23:44:02 -0300
After of seeing a lot of ssh scans on my firewalls and home PC, I made a script that filters out the "Invalid User" entry inside /var/log/messages and do some cleaning process, the result is a dictionary (homebrew) of users that tried to login into my hosts. Into the dictionary I saw english and Brazilian Portuguese words, maybe we have Brazilian hackers running scan bots too. This work is only for experiment and curiosity to see what is happening with Internet today, you can get the script and dictionary in http://www.michel.eti.br/2006/03/ssh-scans.html If you have a better idea of sugestion, please mail me: "michel () michel eti br" Bye -- Só Jesus salva,o homem faz backups. http://www.michel.eti.br _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- SSH Scans - Homebrew dictionary Michel Pereira (Mar 16)
- Re: SSH Scans - Homebrew dictionary PERFECT . MATERIAL (Mar 16)
- Re: SSH Scans - Homebrew dictionary Michel Pereira (Mar 17)
- RE: SSH Scans - Homebrew dictionary php0t (Mar 17)
- Re: SSH Scans - Homebrew dictionary Dave Korn (Mar 17)
- Re: SSH Scans - Homebrew dictionary Michel Pereira (Mar 17)
- Re: SSH Scans - Homebrew dictionary Fajar Edisya Putera (Mar 17)
- <Possible follow-ups>
- RE: SSH Scans - Homebrew dictionary Michael L. Benjamin (Mar 16)
- Re: SSH Scans - Homebrew dictionary PERFECT . MATERIAL (Mar 16)