¤ Monitor Brute Force Attacks
Monitor Brute Force Attacks...
This feature is not possible with Abyss alone. The technique I'm about to show you, will allow you to log Failed Logins. Too many
could be a sign of a Brute Force program trying to crack a Login
Account on your server. Enjoy!

Read the following guide and you will have a Brute Force
Monitoring System within just a few minutes.

Return to the Hacks page

Let's get to the Hacking...
How does the Brute Force Monitoring work?

The monitoring script will create the file "brute_attacks.log" and log every failed password attempt to that log. You should check this log with a Log Analyzer program and see which IP Addresses are requesting these failed logins. A good Log Analyzer is AWStats (Links to a Tutorial).

I'm interested, how do I use the Brute Force Monitoring System?

Make sure you correctly installed PHP before you begin. This will not be possible without PHP installed. PHP Tutorial (Windows), or you can use AbyssUnderground's tutorial. Aprelium also provides a tutorial for use with their Pre-Configured PHP package. (Recommended)

Note: Aprelium's PHP Tutorial, shows you how to install PHP for Windows, Linux, Mac OS X, and FreeBSD. I recommend this to the non-Windows folks.

First, you need to download the error401.zip file and save it to your htdocs folder. Now you must unzip your error401.zip. You can optionally open error401.php file, and edit the "$ipaddr" option. You'll see an Array where you can add IP Addresses that will not be monitored.

Configuring "Abyss Web Server" for the Brute Force Monitoring System.

Open your Abyss Web Server console and click on the Host you wish to configure. Go to "Custom Error Pages." Click Add, and add the following settings.

Error Code: 401
Associated URL: /error401.php

After you copy the following settings, click OK and restart Abyss Web Server. To test it, simply link to a User Login and type in some false account information. Check your "brute_attacks.log" file for the path to the User Login you attacked. Well, I hope you enjoyed this tutorial. C ya!

Note: Your "brute_attacks.log" file will be located in your default Abyss Web Server log folder. There is no need to change any settings in your "error401.php" file, unless you need to change the log file directory. Hopefully you won't have any problems with it. Enjoy!

Note: You can change the Error 401 HTML with your own.

Return to the Hacks page.
Copyright © 2006-2021 TRUSTAbyss.com
All Rights Reserved.