Turns out the network map was pants...
This has to be (not to took my own horn) the most famous post ever on Spiceworks. One day, I posted some very clearly needed corrections to misinformation on SW where people were attacking open source and @akp982 provided the challenge that took me from ~15 posts over every days to the top poster of all time in just a few weeks...
Ohh and not meaning to be bitchy but you have 18 contributions to spiceworks community I have how many?
Me and you have had some good times on the community xD
I've read about Netwrix as well, however I'm critical on those I install on my servers
I've just started using Netwrix on my file servers, seems to work really well and doesn't have much overhead. It can email alert if there are a large number of changes. Fully searchable and can use SQL as a database backend if you have one already setup. If not it uses I believe an access database (don't hold me to that).
It uses the window auditing log to get info about the changes which means its trying to engineer anything new in and will setup the auditing for you on install.
Was really quick to setup and come in fairly cheap
Goes back to lerking...
@coliver I started off using Nagios core but then found FAN which bundled Centreon as the frontend for Nagios which made it nicer to use and gave me a GUI configuration rather.
I think its moved to its own fork of Nagios now though which I'm not sure is a good thing or not.
@oschaudhary FAN hasn't been updated in years (well 2 years)
https://download.centreon.com/ has a more up-to-date nagios core and centreon front end, moving from one to the other is a @@@@@@@@@@ but its much better supported by the community and has a better update process.
Its missing nMap by default I believe but its easy to add in
One of the main things to check either with wordfence or a grep is for the version of timthumb used in plugins WordPress now has a new engine for thumbnails but old plugins and themes use old versions of timthumb which are EXTREMELY easy to use to upload malicious content to your server.
That's caught us out twice now so much we have a plugin approval process which includes a manual check for timthumb.
If you find an out of date version it's really easy to update just download the latest from the link in the header comments.
The link above is a great place to start with securing it.
We use http://www.wordfence.com on all our (the company I work fors) sites it goes a long way in securing them and alerting you to issues quickly.
IMO worth putting on the premium version unofficialspiceworks.com runs the free version which does the job paid for one gives better scheduled scans and external checks.
Sad times not 100% sure i can make it to austin this year due to work comitments sounds like i'll be in Thailand
Great work @bytesnake I'm probably not going to have the time to give it a try this year.
I feel like I'm late to the game... but i'm here