Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

pen-test logo Penetration Testing mailing list archives

Re: Tools to use for Penetration Testing?
From: Jon Kibler <Jon.Kibler () aset com>
Date: Wed, 10 Sep 2008 21:55:42 -0400
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Chip Panarchy wrote:

Hello

I am interested in getting started as a white hat hacker/pen tester.

I would like to know what tools I should get familiar with, and be
able to use to be a pen-tester.

I only know of a few at the moment, and of them, I only use 2 (NMap
and Wireshark).

Can I please receive recommendations on tools to use?

Thanks in advance,

Chip Panarchy

PS: I am currently in training towards my CCNA and (maybe) MCSE.


Hi,

I can give you some places to start from and some basic tools. CCNA
would be a good cert to have, but can the MCSE (Must Call Someone
Experienced). Unless you know zero about windows admin, it will be
nearly useless for security work.

I will put the list of tools I use below and a few web sites that I use
for tools. Also, I am currently reading Grossman's XSS Attacks book
which has a ton of new tools that I am finding I need to learn.

Another good book to start with is Penetration Tester's Open Source
Toolkit. It has a bunch of open source tools and how to use them.

Google is increasingly beneficial to pen testing. Be sure to read Long's
Google Hacking for Penetration Testers book. (Another of Long's books I
can recommend is No-Tech Hacking.)

Finally, you REALLY REALLY REALLY have to understand the IP protocol a
the minute detail level to do network security or network pen testing. I
highly recommend you read the late Richard Stevens' TCP/IP Illustrated
(esp. Volume 1). Despite the fact it is over a decade old, it is still
probably the best reference for IPv4.

Hope this helps.

Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC  USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224
http://www.linkedin.com/in/jonrkibler

My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253





http://www.phenoelit-us.org/
http://freeworld.thc.org/
http://www.cqure.net/
http://www.l0t3k.org/
http://www.ntsecurity.nu/
http://www.foundstone.com/us/resources-free-tools.asp
http://www.sysinternals.com/
http://www.shmoo.com/
http://www.churchofwifi.org/
http://packetstormsecurity.org/
http://www.owasp.org/
http://www.securityfocus.com/tools
http://www.milw0rm.com/
http://www.metasploit.com/
http://www.packetfactory.net/
http://www.webappsec.org/
http://www.cultdeadcow.com/
... these are the ones I can think of off the top of my head. There are
a bunch I am forgetting, but I don't have my pen test laptops with me on
this trip.

These are the tools I use that are on my resume.
   Absinthe
   AIDE
   Aircrack-ng
   Airsnort
   Amap
   ARP-sk
   ARPing
   ARPoison
   ARPwatch
   BackTrack Toolkit
   Bastille
   Brutus
   Cain and Able
   Cheops-ng
   CkRootKit
   ClearLogs
   CoWPAty
   Crack
   Cryptcat
   dARPwatch
   Dsniff Toolkit
   DumpUsers
   EtherChange
   EtherFlood
   Ettercap
   Firewalker
   Foundstone Toolkit
   Fragrouter
   GNU Privacy Guard / OpenPGP
   Grendel Scan
   HijackThis
   Hping
   Hunt
   Hydra
   ICMPenum
   IKEscan
   iptables
   IPSecScan
   John
   KerbCrack
   Kerberos
   KisMAC
   Kismet
   Klogger
   LNS List ADS
   Macstumbler
   Metasploit
   NBTscan
   Nemesis
   Nessus
   Netcat
   Net Flow Tools
   Netstumbler
   Ngrep
   Nikto
   Nmap
   Ntop
   OAT
   p0f
   Paros Proxy
   PortBunny
   Psyche
   PWdump
   RainbowCrack
   Retina
   RKHunter
   Saint
   Sara
   Scapy
   SING
   SNMPwalk
   Snoop
   Snort
   SQLDict
   SQLmap
   SQLNinja
   SQueaL
   Squirtle
   Sussen
   Swatch
   SysInternals Toolkit
   TCP Dump
   Tini
   Tor
   Unhide port
   WebScarab
   Wikto
   Windows Hacking Kit
   WinZapper
   Wireshark
   Xprobe2
   Yersina
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjIep4ACgkQUVxQRc85QlNTiwCfS5EAw0orQEEQOWaj7eEAnSra
jz4An1MVW9Ga1QdiWawrZ1Krv7z+/Xx/
=1ym6
-----END PGP SIGNATURE-----




==================================================
Filtered by: TRUSTEM.COM's Email Filtering Service
http://www.trustem.com/
No Spam. No Viruses. Just Good Clean Email.



------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]