Have you ever had this time – do you really want to understand your network, and what is happening in the system, but you then think: I don't have time to find and install a bunch of auditing tools.
If you ever need to take a closer look at the status of the network, system or application software, here is a way to let you access all the tools you might need, instead of having to install trust software. There is a very interesting Linux version (as well as BSD, Windows occasionally there) are called "LiveCD". This is actually a LiveCD on CDROM (or DVDROM) operating system, available directly from the CDROM boot into desktop or notebook system, then you can run a "LiveCopy" operating system, all of the tools are stored in the CDROM, or memory, instead of the hard disk. All kinds of LiveCD is now being used for the purpose for which it is mainly used for presentation — and purchase your software trial. There is a system for Linux desktop version of the LiveCD (such as Ubuntu), used for simulation game, parallel computing, as well as cluster and grid, Science/Mathematics computing, bioinformatics ... Of course, there are also used for system security testing and auditing (at the end of this article is a resource list, lists some known auditing LiveCD). Tools in this "hand tools" that, let's see how the Linux LiveCD for system auditing. Many can be used to secure LiveCD; look for how people actually need, or the tool this tool really is, everyone has a different idea. We look at here, it is Backtrack integrated performance or tool set is the leader in the series. Use LiveAuditingCD for testing first, a few words of advice: Nmap is a very powerful tool — LinuxAuditingLiveCD stronger than it, because it contains a hundred (or more) of the tool. NMap is a system that is used to scan the host vulnerability as well as those that can easily be overlooked open ports, while the LiveCD audit/security suite provides system lock majority and cracking tools; for strengthening network security, these tools are very useful. However, just like NMap, if you do not press the right to use it, then you will find that her more powerful Baktrack tools, in big trouble. Backtrack has many tools, like the vast majority of AuditingLiveCD, it provides dozens of tools. The creator has attempted to break the existing large tool to select the combination will Backtrack into classification in accordance with the functions partially managed (this section will use the name you use Backtrack, other LiveCD may use different terminology). "Deficient" package, including existing various website and database vulnerabilities and weaknesses in the connection list, parallel to the corresponding patch. "Enumeration (Enumeration) tool"--DNS, and directory service type tool, check a host or network to provide exactly what services are very useful, and you can use these services to obtain the information. "Scanner (Scanners)" — this is a tool that is similar to NMap, can help an approver detection systems on the network, or to detect a specified host (or a group of hosts) on the existence of the open ports and known vulnerabilities. "Password cracking (PasswordCrackers)" — is the literal meaning of the kind used to crack the system password tool. The tool can be used to crack the system, can also be used to check whether users have easily cracked weak password. "Spoofing tools (Spoofing)" — these are the approver machine masquerading as a series of different types of systems or service tools to look at different types of security conditions, who can to network services or system. "Sniffer (Sniffers)" — the sniffer from a wide range of tools, from like WireShark (previously "Ethereal") such network analysis tool, to focus on a variety of advanced protocols (for example, IRC, Jabber AOLInstantMessenger) higher protocol analysis tools, and even database processing of olfactory sigh. "Wireless tools (WirelessTools)" — a set of 802.11 wireless network scanner and monitoring tools that can be used to monitor, analyze, and test the WiFi network. "Bluetooth tools (BlueTooth)" — a group that is used to check that the Bluetooth networks and devices. "CISCO tools (CISCOTools)" — a group that is used to detect and connect to CISCO router tools. "Database tools (DatabaseTools)" — a set of database connectivity and communication tools, suitable for many common database. "Forensics tool (ForensicTools)" — a set of very useful during the audit process can systematic arrangement and record the data; some tools you can add data to a database, the other is that respondents can set up a hard drive's pure backup, and then on this hard disk mirroring to protect and inspection system. Backtrack system also contains a large number can be run locally on the server (such as Web servers, and so on), as well as other systems, such as "honeypot" such tools can be used to attract the attackers on your network, allowing them to attack tools, and they are used for detection systems and network tools is. Linux audit LiveCD can be used for a variety of modes: as a pure test tools that can be used to search on in the network what is running on (for example, using a network Analyzer), the type of serviceAnd the flow of information. Alternatively, they can be used to audit the security status of the specified system (for example, try to use a password cracking tools broke into the system, or test the vulnerability is known to exist). Furthermore, the data capture tool lets you keep all your data, and one way to manage it, thus establishing an evidentiary chain for formal audit or other research. Finally, you may be wondering, how to save your captured data? you are running system only exist in a single notebook memory, once the system restarts, everything's gone. However, these LiveCD designers seem to have everything considered: you can activate the network connection interface, and gives you an interim audit of the workstation IP address, then you can access your network file system, just like your usual normal work done; or you can simply plug in a USB Flash disk to a free USB interface, and then save the data to the above. Fit for work tool as a related short stated earlier, there is no way to determine similar Backtrack (or any other available based on LiveCD audit/security system) such a tool set of scope and width. However, if you need to be able to quickly install a set of audit software packages, you need to ensure that all OK on the network, allowing them to let the boss (or your own), then you cannot miss a Backtrack such tools, it is simple. Audit/security LiveCD as we explain, audit/security LiveCD is very, very many species. Some are content-complete version (you always can choose to install to the system tray, not only in the form of a LiveCD to run them), others are small to fully use a USB Flash disk to store and run.
No comments:
Post a Comment