Penetration Testing: RE: delving deeper

Penetration Testing mailing list archives

RE: delving deeper

From: "David Taylor" <David.Taylor () austrac gov au>
Date: Wed, 15 Dec 2004 11:16:54 +1100

My favourite is whoppix, another knoppix variant that has a large body
of exploits included.

www.whoppix.net  And the site even has some nice demos to get you going
:)


Regards
David Taylor

-----Original Message-----
From: xyberpix [mailto:xyberpix () xyberpix com] 
Sent: Wednesday, 15 December 2004 4:00 AM
To: Chris Benedict
Cc: pen-test () securityfocus com
Subject: Re: delving deeper

Hi Chris,

Go and download a copy of PHLAK(http://www.phlak.org), there's a load of
good docs on the disc, and some really good tools to get you going.
Above
it all it's Linux, so it should run on your machines.
Aside from that scour the net for anything pertaining to pen testing and
security, and read as much as you can possibly tollerate, it'll be worth
it in the end.


xyberpix

On Mon, 13 December, 2004 10:34 pm, Chris Benedict said:

Hi, I've been looking at security and penetration-testing for some
time now and would like to get further into it.  I'd like to learn
more about penetration-testing, forensics, techniques for network
exploration/mapping, web application security and incedent handling.
However I'm not really sure where to start, I looked at the OSSTMM and
it was above my head.

At the moment I have a very limited budget and only a few spare
low-end computers.  If it matters, I'm mainly running OpenBSD.  Are
there any particular books or other media that I should take a look

at?


Any thoughts or recommendations are welcomed and greatly appreciated.

-Chris Benedict



-- 
For security and Opensource news check out:
http://www.xyberpix.com



**********************************************************************
Please  note  that  your  email address  is known to  AUSTRAC  for the
purposes  of  communicating with you.  The information  transmitted in
this  e-mail is  for the  use of  the intended  recipient only and may
contain confidential and/or legally  privileged  material. If you have
received  this information  in error you must not disseminate, copy or
take  any  action on  it and we  request that you delete all copies of
this transmission together with attachments and notify the sender.

This footnote also confirms that this email message has been swept for
the presence of computer viruses.
**********************************************************************

By Date By Thread

Current thread:

delving deeper Chris Benedict (Dec 14)
- Re: delving deeper xyberpix (Dec 14)
  - Re: delving deeper Jacob Weeks (Dec 14)
- Re: delving deeper Jose Costa (Dec 15)
- <Possible follow-ups>
- Re: delving deeper bart2k (Dec 15)
- RE: delving deeper David Taylor (Dec 15)
  - Re: delving deeper GuidoZ (Dec 20)
- Re: delving deeper GuidoZ (Dec 22)
- Re: delving deeper GuidoZ (Dec 22)