Go Back   vb.org Archive > vBulletin Modifications > Archive > vB.org Archives > vBulletin 3.5 > vBulletin 3.5 Add-ons

Reply
 
Thread Tools
Cracker Tracker Details »»
Cracker Tracker
Version: 1.0.2, by Onur Onur is offline
Developer Last Online: Apr 2015 Show Printable Version Email this Page

Version: 3.5.4 Rating:
Released: 03-09-2006 Last Update: 05-15-2006 Installs: 84
Uses Plugins
Additional Files  
No support by the author.

CrackerTracker

this is a port from the standalone system of the Cback.de CrackerTracker (was original made for phpBB) to an Product for vB
  • Description
    this hack search in the requeststring for definied codeparts, is found any hit the skript was die and send a little massage
    in addition of security this simply skript discharged the server by automatic attacks from botskripts if the definations have a hit in the requests
  • Instructions
    Install
    • upload the /elog/ directory and set the CHMOD of counter.txt and logfile_injects.txt to 666, this is only to log blocked requests
      if you not want to have writeable files on youre server this hack works without logging too and you can leave this part
    • at last install the CrackerTracker100-product.xml
    Update
    • uninstall product of v100
    • reinstall new product of v101
    Uninstall
    • uninstall the CrackerTracker100-product.xml
    • upload thedelete /elog/ directory
  • Credits & Information
    i have only port this hack to a Plugin
    Authorof the Hack is Cback from www.cback.de
    only restraint of Cback is the Copyright in the footer

    (i hope my english was understandable )


  • History
    • 10/03/06 Release 1.0.0
    • 15/05/06 Release 1.0.1
      • new searchpattern and handfull old replaced
      • little codemodifications
    • 15/05/06 Release 1.0.2
      • one typo in list (missing ",")

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.

Comments
  #12  
Old 03-11-2006, 11:16 AM
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
Posts: 25,415
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Just 2 advices:
- If you don't know what this does: Don't Install
- If you think vBulletin will be vulnerable to the same sort of attacks a phpBB do install, otherwise don't.
Reply With Quote
  #13  
Old 03-11-2006, 11:58 AM
Onur Onur is offline
 
Join Date: Oct 2005
Posts: 13
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

i dont know is any need of this hack in an vB, but the one thing you can profit of this hack is you can see any attempts of hack in the log
ok phpinfo() is blocked, but i dont think it is a good idea to share this info, only if you have always the latest Version of php installed

and its true thats the problems of another boardsystem is not the same problem of vB, but i have found that vb 3.0.4+3.0.5 hase release because some problems with the santy an other holes

only in an nice and wonderfull world everbody update her system and there boards just in time, this skript can block the one try of hack how hacked youre site in the time between release the new version and you have time to do the update

and if you have any blocked funktions on youre board, look at the log and found the part in the string how collided with the definations of the hack and replace it

and whether you was attact whitout success in the last time you only can see in the logs of youre server or after an testtime in the log of this CT
Reply With Quote
  #14  
Old 03-11-2006, 02:01 PM
XanTrax XanTrax is offline
 
Join Date: Aug 2005
Posts: 75
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I thnk anyone that has alot of hacks, mods, and extensions in should install this just to patch up any unnecessary holes in the mods they used.
Reply With Quote
  #15  
Old 03-12-2006, 03:08 PM
buro9 buro9 is offline
 
Join Date: Feb 2002
Location: London, UK
Posts: 585
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

If you have your own server and want to spend a little time learning about how to configure mod_security for Apache, you can obtain peace of mind for all of the sites, forums and scripts you host.

That can be found over here:
http://www.modsecurity.org/
Reply With Quote
  #16  
Old 03-12-2006, 04:33 PM
JakeS JakeS is offline
 
Join Date: Feb 2006
Location: United Kingdom
Posts: 115
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Nice, used to use this back in the day..
Reply With Quote
  #17  
Old 03-17-2006, 01:13 AM
MyGamez MyGamez is offline
 
Join Date: Mar 2006
Location: Australia
Posts: 10
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

This is a Great Addition For Security on my Board.
Thank You Very Much, Works Perfectly.
Reply With Quote
  #18  
Old 04-04-2006, 07:53 AM
sandalwood sandalwood is offline
 
Join Date: Mar 2006
Posts: 35
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

this is fcking EXCELLENT, since mod-security is a handful and still not simple.

however, please make a version that skins the next time, so in other words make the error message on a normal vb page so its still in the forum theme colors etc. at least use the css.. thanku
Reply With Quote
  #19  
Old 04-04-2006, 07:57 AM
sandalwood sandalwood is offline
 
Join Date: Mar 2006
Posts: 35
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

can you PLEASE have it log a few things

1. whatever the vb variable for the currently logged in username is, LOG THE USERNAME PLEASE

2. log the date better, like YYYY-MM-DD, so it sorts chronologically. this has nothing to do with country format it is common sense for computer sorting purpose, left to right. 2006-04-03 .. and have that be the first column

... see number 1 actually thats the main thing
so you know if someone was logged, then know who they were
Reply With Quote
  #20  
Old 04-16-2006, 07:49 AM
Devil Woman Devil Woman is offline
 
Join Date: Jul 2005
Location: England
Posts: 390
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I have added this to my forum all seems to be working ok or atleast I think so were exactly do I find the logs of attacks?

Thanks
Reply With Quote
  #21  
Old 04-16-2006, 08:05 AM
Onur Onur is offline
 
Join Date: Oct 2005
Posts: 13
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

@sandalwood
1. no, on this hook are no userinfo avalible
2. this is possible at next release

@devil Woman
*youre forum*/elog/logfile_injects.txt (last 100 logs)
*youre forum*/elog/counter.txt (count of all attacks)
Reply With Quote
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 12:24 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.08768 seconds
  • Memory Usage 2,293KB
  • Queries Executed 25 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (6)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (3)pagenav_pagelink
  • (11)post_thanks_box
  • (11)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (11)post_thanks_postbit_info
  • (10)postbit
  • (11)postbit_onlinestatus
  • (11)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete