panic_bcast
#Network & Cloud#Network Security
Snort 3 is the next generation Snort IPS with enhanced features and improved cross-platform support.
Understanding the panic_bcast Network Protocol
The panic_bcast is a network protocol that functions as a panic button. It operates in a decentralized manner using UDP broadcasts and HTTP.
Intended Functionality of panic_bcast
The purpose of this tool is to serve as a panic button within a sensitive network, making it more difficult to execute cold boot attacks. A dedicated freedom fighter would deploy this on all nodes within the computerized network. The panic_bcast utility was developed to be compatible with any version of UNIX that can execute Python.
Successful Testing on FreeBSD and Linux
It has been successfully tested on both FreeBSD and Linux systems.
To trigger the panic signal over HTTP, simply send a request to http://...:8080/panic from any machine that is running panic_bcast. Any machine will work for this purpose.
Understanding the Process
An activist faces uninvited guests at the door.
The Activist Sends the Panic Signal
The activist sends a panic signal, which is a UDP broadcast, using panic_bcast. Other machines on the network receive this panic signal. Once panic_bcast detects the panic signal, it terminates TrueCrypt and powers off the machine.
Authentication
If desired, you can append a required key to the panic signal. To do this, run the script with the -k option. When you use a key, it is added to the string "panic"; for example, if your key is "_banana," then the resulting panic signal will be "panic_banana."
