RE: Building a 'security consultant' laptop
From: Con or (csibley@inbox.net)
Date: 04/11/03
- Previous message: Kinsey, Robert: "RE: Automated analysis of logs?"
- Maybe in reply to: mr_polanco@hotmail.com: "Building a 'security consultant' laptop"
- Next in thread: H Carvey: "Re: Building a 'security consultant' laptop"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 11 Apr 2003 21:24:02 -0000 From: "Con or" <csibley@inbox.net> To: mr_polanco@hotmail.com
Here is a list of tools that I put on machines of mine before I audit from a network perspective:
nmap
nessus
vlad
ettercap
superscan
enum
dsniff
ForensicToolkit
kismet
Then d/l as many pieces of exploit code as you can find specific to packages and OSes on their network and put them in a convenient dir. It is a good idea to have a full install of redhat so you have gcc, make, mysql and other generic information gathering services available to you.
Good places for exploit code include packetstormsecurity.nl and netsys.com.
Happy Hunting,
Conor
-----Original Message-----
From: mr_polanco@hotmail.com [mailto:mr_polanco@hotmail.com]
Sent: Thursday, April 10, 2003 10:21 AM
To: security-basics@securityfocus.com
Subject: Building a 'security consultant' laptop
I wanted your input on how should I go about setting up a laptop that will
be used for security testing purposes (penetration testing, forensics,
etc). Also planning to add a pcmcia wireless card (any recommended?
This is the
laptop:http://www.dell.com/us/en/bsd/products/model_inspn_inspn_1100.htm
I'm planning to dual boot Red Hat 9.0 and Windows 2k, along with
installing the usual tools like Ethereal, nmap, tcpdump, etc.
What else should I add? Are these the recomended OS, or would you put
something else instead? In other words, if you were to walk into a company
for a consulting job, what would you want to have on this laptop?
Thanks to all!
-------------------------------------------------------------------
Is SPAM over-loading your e-mail server, disk space or bandwidth?
SurfControl E-Mail Filter is flexible, intelligent and policy-driven
protection.
http://www.securityfocus.com/SurfControl-security-basics2
Download your free fully functional trial, complete with 30-days of free technical support.
Stop SPAM before it stops you.
-------------------------------------------------------------------
-------------------------------------------------------------------
Is SPAM over-loading your e-mail server, disk space or bandwidth?
SurfControl E-Mail Filter is flexible, intelligent and policy-driven
protection.
http://www.securityfocus.com/SurfControl-security-basics2
Download your free fully functional trial, complete with 30-days of free technical support.
Stop SPAM before it stops you.
-------------------------------------------------------------------
- Previous message: Kinsey, Robert: "RE: Automated analysis of logs?"
- Maybe in reply to: mr_polanco@hotmail.com: "Building a 'security consultant' laptop"
- Next in thread: H Carvey: "Re: Building a 'security consultant' laptop"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
