Ensnare Logo

Ensnare

0
Free
Visit Website

Ensnare is packaged as a gem plugin for Ruby on Rails and was developed to allow configuring and deploying a basic malicious behavior detection and response scheme in less than ten minutes. Ensnare uses a combination of Honey Traps to entice malicious users, and a configurable suite of Trap Responses to confuse, allude, delay, or stop an attacker. Already heard about the tool and want to try it out? Do it! - Install the gem by adding it to your project's Gemfile: gem 'ensnare', :git => 'git@github.com:ahoernecke/Ensnare.git' - Install the gem: bundle install - Run the migrations for Ensnare: rake ensnare:install:migrations rake db:migrate - Enable parameter tampering for your application by changing the mass_assignment_sanitizer: vi config/environments/<ENVIRONMENT>.rb - Set config.active_record.mass_assignment_sanitizer to logger: config.active_record.mass_assignment_sanitizer = :logger - Enable Ensnare in your application_controller.rb file: vi app/controllers/application_controller.rb - Append the following filter below protect_from_forgery in your application_controller.rb file: before_filter :ensnare - Add the following to the end of your routes.rb file: mount Ensnare::Engine => "/ensnare", :a

FEATURES

ALTERNATIVES

A method for profiling SSL/TLS Clients with easy-to-produce client fingerprints.

Exploiting simple stack overflow vulnerabilities using return oriented programming (ROP) to defeat data execution prevention - DEP.

Accurate detection of HTTPS interception and robust TLS fingerprinting tool.

A tool for domain flyovers

Object scanning system with scalable and flexible architecture for intrusion detection.

Passively maps and visually displays ICS/SCADA network topology for network security

Stenographer is a high-performance full-packet-capture utility for intrusion detection and incident response purposes.

Comprehensive guide for Iptables configuration and firewall rules.