TriplePlay-NetworkPenTestingTools(1).pdf
(
4146 KB
)
Pobierz
Best Of Network
Penetration Testing
Tools
January 2009
Paul Asadoorian, Larry Pesce, John Strand
PaulDotCom Enterprises, LLC
psw@pauldotcom.com
Who We Are
•
PaulDotCom Enterprises
-
-
-
-
PaulDotCom Security Weekly Podcast
Penetration Testing, Security Consulting, Device Testing
•
PaulDotCom Community
Forum, IRC, Hack Naked TV, Wiki, Mailing List
•
SANS Instructors & Certified Professionals
Upcoming courses all across the world!
http://pauldotcom.com/events/
http://pauldotcom.com
January 2009
The Challenge
•
If you had to pick 6 tools to take with you on
a penetration test, what would they be?
-
-
-
You are limited to network penetration testing, no web
applications, no wireless, no client-side
You must map the entire network and identify
vulnerabilities
You must penetrate systems, gain access, and keep that
access to demonstrate risk
http://pauldotcom.com
January 2009
Best Of Penetration
Testing Tools
1)
Nmap
- Worlds Best Port Scanner
2)
Nessus
- Vulnerability Scanner
3)
Metasploit
- Exploit framework
4)
Pass-The-Hash
- Who needs passwords?
5)
Hydra
- Brute force password guessing
6)
Cain & Abel
- The ultimate MITM utility
Spotlight - Core IMPACT
http://pauldotcom.com
January 2009
This Presentation Will Help
Build Your Ninja Skills...
There is a network ninja in
this picture....
http://pauldotcom.com
January 2009
Plik z chomika:
musli_com
Inne pliki z tego folderu:
2008_Return_Oriented_Programming(2).pdf
(4147 KB)
2009_debugging_buffer_overruns_freebsd_kernel(1).pdf
(338 KB)
2010_gdb(1).pdf
(1957 KB)
2010_memory_corruption_attacks(2).pdf
(3883 KB)
2010_ROP(1).pdf
(208 KB)
Inne foldery tego chomika:
CloudStack
distribution
dsp
electronics
LPI
Zgłoś jeśli
naruszono regulamin