Port HoneyPot is ready for action

Viktoria Vereb
A long time ago, in a galaxy far, far away … Ohh wait, it’s just happening. Yeah, one of the most anticipated ninja modules, the ‘gorgeous’ Port Honeypot has been released.  I know what you are thinking now “How can it be gorgeous? But seriously, this is about a security function”.  Let me introduce you this sexy component of the ninja protection, even Winnie the Pooh can’t say No to it. More about Port Honeypot This is a general honeypot module. After activating this module will set up 100 honeypots on your server on random ports chosen from the 1.000 most popular ports. I...
Read more

Release note on BitNinja 1.9.2

Boglarka Angalet
Happy Holidays everyone! Most of us are tuned for Christmas time already, but ninjas don’t know free days, as hackers are just getting in their element in the busiest days of the year. So we haven’t wated our time in the last few weeks, but developed some new features and useful things for you. Grab the latest version of BitNinja (1.9.2) and enjoy the hacker-free holidays! Brand new documentation site First of all, an old deficiency was eliminated lately. We released our new documentation site which contains more information about the mechanism behind BitNinja. IP reputation meth...
Read more

BitNinja WAF Beta

Boglarka Angalet
Our Ninja Lab is always full of fantastic ideas and improvements. Sometimes it’s an easy ride to develop a terrific feature, sometimes it takes longer to find the right recipe. Yes, you guessed well, we are talking about the web application firewall module. But thanks to our enthusiastic users’ contribution in development and to our ’never givin’ up’ kind of tech ninjas, WAF Beta is available now for BitNinja 1.8.   Web Application Firewall: a holy grail feature Generally speaking, web application firewalls monitor, filter and block incoming and outgoing traffic on HTTP protoc...
Read more

The story of BitNinja WAF from backstage

Boglarka Angalet
BitNinja has two very efficient detection modules. Log analysis and DoS detection does a great job in filtering attacks, but they are lack of one very important thing. Log analysis can only work on requests already reached your server. There are attacks like login brute force attacks, where it is not a problem as there is a very low chance the right user/pass combination will work within a few trials. Unfortunately, there are attacks when one good targeted request is enough to hack a web application and inject infected code or alter files and gain access. Since we started BitNinja,...
Read more

New dashboard function: filter your incidents by server or domain

Boglarka Angalet
We are happy to announce a long-awaited function at the BitNinja dashboard that facilitates your job to analyze attacks. The first step was to make the incident flow more transparent and clear for you. Many of you have a significant number of servers with huge traffic day by day. As you know, on average, 50% of the traffic consists of bots – most of them aren’t the good ones – and in the upper cases, it means lots of successfully avoided attacks and BitNinja incident logs also. You will no longer need to scroll for long minutes to analyze the current problem as we provide a one-...
Read more

BitNinja WHM plugin

Boglarka Angalet
Do you think using BitNinja can be easier than now? Yes, it can!   We are happy to announce that WHM integration for BitNinja is alive. If you are a user of this WebHost Manager, monitoring BitNinja will be much easier for you with our new plugin. WHM plugin Sometimes you can feel that BitNinja’s complex and detailed dashboard is not needed in hurried everyday life. And at the same time, managing your server is much easier by WHM than using a console. That’s why we developed a plugin for you with some awesome functions and easy installation.   Installation...
Read more

Release note on BitNinja 1.7 | OpenVZ/Virtuozzo support

Boglarka Angalet
Right after HostingCon, we are full of newer and newer function ideas to BitNinja. But now we made something ready for you, that has been promised for some weeks. Enjoy! Features and fixes IPfilter module has been completely refactored Now we have a basic support for OpenVZ/Virtuozzo based VPS DoS Detection has been boosted, now it’s even faster than it used to be Some minor fixes in CaptchaHTTP Fixes in DataProvider module SenseWebHoneypot fixes   Auto-release will be rolled out on Tuesday. Automatic updates are scheduled for Tuesday. But if you can’t w...
Read more

Release note on BitNinja 1.5 | DoS Detection update

Boglarka Angalet
We’ve been through some busy weeks again, full of excitements and DoS-improvements. We’d like to say thank you again for all the supportive bugfix and development tickets, sent by you all. We can bring the best out of BitNinja together, no doubts about it. ;) Let’s see the new features and bugfixes which gave birth to BitNinja 1.5.   Features DoS Detection has been refactored. Now it supports exceptions for local and remote ports. For remote port 25 the new threshold is 200 connections. For local 22 port the new threshold is 40 connections. Auto...
Read more

Release note on BitNinja 1.4

Boglarka Angalet
As always, you are encouraged to tell us what you think about BitNinja. Everything is welcome from bugs to development suggestions. That’s how version 1.4 was born, too. We’d like to extend a special thank you to all of the Ninjas who contributed to this version by contacting us tirelessly. Check out what’s new for this version of BitNinja below. Feature There’s no further issues about newly installed servers with our greylist. It happened occasionally that if someone installed BitNinja on his server with a formerly greylisted IP address, BitNinja banned it out. From 1.4, if the...
Read more

Version 1.3.7 is out | Check new command line interface

Boglarka Angalet
BitNinja team is pleased to announce version 1.3.7. We added a new feature and some bug fixes to our server security system, so that it is even more comfortable to use now. Command line interface As a helpful feature for BitNinja dashboard, we integrated a command line interface. Now you do not need to login to dashboard for blacklisting or whitelisting of IP addresses. It’s an easier and faster way to work with BitNinja.Usage: # bitninjacli --help Available functions are whitelist|blacklist add|del|check   Bug fixes and add-ons SenseLog module is extended wit...
Read more