Prevent Brute Force SSH Attacks in 30 Seconds


In this video, John shows off the “denyhost” utility from the “Active Defense Harbinger Distribution” security toolkit. The denyhost tool is extremely easy to deploy and blocks attackers from performing brute force SSH attacks. Here are all of the commands you need to run the tool:

sudo /etc/init.d/denyhosts start

To identify what IP addresses have failed their login attempt seven times and are now being blocked from access the server, type:

less /etc/hosts.deny


Interested in threat hunting tools? Check out AI-Hunter

Share this:
AI-Hunter Datasheet
AI-Hunter Demo Video
Subscribe to Our Blog

Sign up for email notifications of our new blog posts, threat hunting training, webcasts and other relevant information.

We are not spammy and you can unsubscribe at any time :)

* indicates required