It is now recommended to upgrade scutum with --upgrade parameter (since 2.5.2)
Never mind. Please run the installation below again manually.
- Designed for Linux OS
curl
orwget
is required for quick installgit
should be installed
SCUTUM Dependencies can be found in DEPENDENCIES.md
via curl
$ sudo sh -c "$(curl -fsSL https://raw.githubusercontent.com/K4YT3X/SCUTUM/master/quickinstall.sh)"
via wget
$ sudo sh -c "$(wget https://raw.githubusercontent.com/K4YT3X/SCUTUM/master/quickinstall.sh -O -)"
- UFW can now be managed with SCUTUM
- Fixed some logger issues
- A LOT of other small improvements (eg. documentations)
- Fixed & Improved the Installation Mathod
- Changed TCP/UDP/ICMP Firewall to UFW
- Added new logger
- Added Easy TCP port manager
- Created different class for adapter controller
- Created different class for Installer
- Registers SCUTUM as a systemd system service
- Changed the way configurations are being stored (configparser)
- Fix self-upgrade feature
- Create 2.6.1 Release for Debian
- Added Self-Upgrading Function, now users can execute self-upgrading with $ sudo scutum --upgrade
- Added AVALON Framework Self-Upgrading function (included when using "--upgrade" parameter)
- Interfaces are now controlled by a new interface controller class
- SCUTUM GUI is now avaliable for testing
- Added option to choose whether to delete the installer file after installation
- Fixed arptables detection errors on some Linux distributions
Long story short, ARP firewall. It automatically adds gateways to the whitelist on connect and blocks everthing else to avoid potential threat.
SCUTUM is an ARP firewall that prevents your computer from being ARP-spoofed by other computers on LAN. SCUTUM controls "arptables" in your computer so it accepts ARP packets only from the gateway. This way, when people with malicious intentions cannot spoof your arp table. SCUTUM also prevents other people from detecting your device on LAN if SCUTUM is used with properly configured TCP/UDP firewall.
SCUTUM is also capable of handling tcp/udp/icmp traffic with iptables. You can choose to enable this feature during installation. However, a more professional firewall controller like UFW is recommended. They can handle traffic with more precision.
You should run a installation before running it for the first time for setting up configuration files. I am not sure if portable version is necessary. If you think this should be changed, raise an issue and I will change it.
Quick install above is recommended
git clone https://github.com/K4YT3X/SCUTUM.git
cd SCUTUM/
sudo python3 scutum.py --install
ENABLE: Enable SCUTUM (Start spontaneously)
DISABLE: Disable SCUTUM (Never start spontaneously)
DISABLE (Temporarily): Disable SCUTUM until the next time connected to a network
This should be easy SCUTUM starts automatically by itself after installation
$ sudo service scutum start # Start scutum service
$ sudo service scutum stop # Stop scutum service
$ sudo systemctl enable scutum # Start SCUTUM with system
$ sudo systemctl disable scutum # Don't start SCUTUM with system
$ sudo scutum # Start SCUTUM Normally
$ sudo scutum --start # Start SCUTUM Manually for once even it it's disabled
$ sudo scutum --enable # Enable SCUTUM (Start automatically on connect)
$ sudo scutum --disable # Disable SCUTUM (Don't start automatically on connect)
$ sudo scutum --reset # Reset SCUTUM (Allow ALL ARP packages temporarily)
$ sudo scutum --purgelog # Purge SCUTUM logs
$ sudo scutum --install # Run scutum installation wizard and install SCUTUM into system
$ sudo scutum --uninstall # Remove SCUTUM from system completely
$ sudo scutum --upgrade # Upgrade SCUTUM and AVALON Framework
- Connect to Wi-Fi
- Accept all ARP packets
- Cache gateway MAC address by establishing a socket connection with a timeout of 0
- Add Gateway MAC to exception
- DROP all ARP packets
[Finished]
- Accept all ARP packets
[Finished]