OSSEC 2.8 - 'hosts.deny' Local Privilege Escalation

!/usr/bin/python Exploit Title: ossec 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalation Date: 14-11-14 Exploit Author: skynet-13 Vendor Homepage: www.ossec.net/ Software Link: https://github.com/ossec/ossec-hids/archive/2.8.1.tar.gz Version: OSSEC - 2.8 Tested on: Ubunutu...

OSSEC 2.8 umask Clear Text Passwords

OSSEC 2.8 umask problem with clear text passwords :- [email protected] / SecurityByDefault.com root@digitalsec:/home/aramosf /var/ossec/agentless/registerhost.sh add ossec@server1 Please provide password for host ossec@server1. Password: Please provide additional password for host ossec@server1 f...