From: Holmes, Brian (Brian.Holmes@corelab.com)
Date: Fri May 07 2004 - 09:15:03 EDT
I haven't performed pen testing in about 2 years, but some of the ones I
liked that I can remember off the top of my head:
Netcat
Nmap
Nessus (Linux only)
SuperScan
Siduser (.exe runs on DOS, dumps the SID database I believe)
Enum (.exe runs on DOS, enumerates user/group accounts I believe)
Lophtcrack (password cracker)
Sam Spade
Snort (and Air Snort for wireless testing)
Ethereal
Network Stumbler (wireless)
Kismet (wireless)
Also, see this link for some good tools w/ descriptions of their
functionality:
http://www.insecure.org/tools.html
Brian Holmes
IT Business Analyst
Core Laboratories
phone: (713) 328-2679
fax: (713) 328-2901
bholmes@corelab.com
-----Original Message-----
From: Mark Melonson [mailto:blindtechie@yahoo.com]
Sent: Thursday, May 06, 2004 3:46 PM
To: pen-test@securityfocus.com
Subject: The Ultimate Toolkit...
Hi all,
I'm researching tools, and would like input on, what
would be your ultimate toolkit be. I'm attempting to
put together some resources! Be as specific as
possible. I'm looking for tools that are somewhat
portable i.e.: can be put on a CD and used w/o an
install. For all platforms...
My list:
(OS Independant):
-- Knoppix-STD
(Windows):
-- ntchpw [bootdisk]
- NetCat (duh!)
- RegAgeR (Automated enumeration and exploitation
against weak Registries)
- Scanline
- Fpipe
- Fport
- Achilles
__________________________________
Do you Yahoo!?
Win a $20,000 Career Makeover at Yahoo! HotJobs
http://hotjobs.sweepstakes.yahoo.com/careermakeover
------------------------------------------------------------------------
------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off
any course! All of our class sizes are guaranteed to be 10 students or
less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of
in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------
-------
------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:53 EDT