Skip to main content

Tools to detect a hack on Windows

6 replies [Last post]
Offline
Joined: 24 Feb 2011
sanjeev's picture
Offline
Joined: 21 Feb 2011
Really nice tool it is

Thanks Jagad.
I liked reading Linux article and now thinking to experiment on some of them . Then I will try to write blog on that.

Process Monitor tool is also good one for Windows.

I Liked nagios, nmap, tcpdump, w, iostat

You know something about picld?Huh? Its in /usr/lib/picl but saying command not founf. althought its there with 755 permission.

Follow us at :
Facebook | Twitter
########### Give me the right place to stand, I shall move the earth. #################

Offline
Joined: 24 Feb 2011
You working on Solaris on x86 Hardware.?

Hi Sanjeev Kumar,

It looks like you working on Solaris on x86 Hardware.. When it comes Scalability Linux is the winner, but because of this it has set of configuration for everything including setting path.
Type SET without parameters to display all the current environment variables. If you do not see  /usr/lib/picl in the path, you have found the cause of the error message " command not found"
Here is a link on how to add paths to PATH
http://www.captain.at/programming/solaris-tricks/

And if anybody wants to know more about environment variables check this link out its cool
http://webtools.live2support.com/linux/env.php

sanjeev's picture
Offline
Joined: 21 Feb 2011
it should set $PATH automatically?

Thanks Jagad.
I usually use top, w , env, $PATH, set etc to check activities and file's path.

And yes it was not there. So exclusively you have to write its pathame there to make it work out.

But usually it should set $PATH automatically, at the time of installation right?

Follow us at :
Facebook | Twitter
########### Give me the right place to stand, I shall move the earth. #################

Offline
Joined: 24 Feb 2011
add the command to .cshrc file

Each time you login to a UNIX host, the system looks in your home directory for initialisation files. Information in these files is used to set up your working environment.
The guidelines are to set ENVIRONMENT variables in the .login file and SHELL variables in the .cshrc file.

so add the command to .cshrc file will make sure everytime you login the path is aviable.

I hope this helps

Jagad

Offline
Joined: 24 Feb 2011
Re: Tools to detect a hack on Windows

smileyThe topic talks about how to detect a hack so just to keep on track to the subject Title. cool
I will mention that these system environment variables are automatically created by Windows upon boot-up in Windows Registry key HKEY_LOCAL_MACHINE\ SYSTEM\ CurrentControlSet\ Control\ Session Manager\ Environment

This is where people can see what setting in the environment are present that are not suppose to be there. A another manual peak into watching out for uninvited guest.

On Unix/Linux system you can look into .profile, .cshrc, or .login this is a good start.

sanjeev's picture
Offline
Joined: 21 Feb 2011
Thanks Jagad

Thanks Jagad............ i think we can learn any cool stuffs based on windows and UNIX from you.yes

I knew about Linux but registry key always scares me.......so i liked that one......keep sharing those stuffs.

Follow us at :
Facebook | Twitter
########### Give me the right place to stand, I shall move the earth. #################

Post new comment

The content of this field is kept private and will not be shown publicly.
CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Enter the characters shown in the image.