Whoppix is similar with the Auditor, WhiteHatKnoppix is also a penetration test (pengtest) tool.
Whoppix is born because of its developer Muts be asked for a large organization with an internal penetration tests. He explained that the guiding principle of "Pentest would not allow me to install it on your own notebook, you cannot modify the organization any client configuration, like installing software on your local computer. "Whoppix is a penetration testing of heaven. It contains many useful tools, as well as a large number of knowledge base (hackers use to gain access to your system's access method). Although Muts not very fond of CD many documents, but he packaging approach is unique. Muts there these tools are simple to explain, but with other several very active members for these tools provide a few small flash demo video image, so that even a novice can understand how to attack a without careful configuration of msql database. To version 2.6SP1, Whoppix is using the default knoppix kernel. New version (not yet published) uses a customized version of the kernel 2.6.11.5, which provides better support WiFi (Orinoco patch). Although you can add Whoppix installed on your hard disk, but not on this Muts offer strong support. His idea is to provide a portable pentest platform, you can directly take advantage of this platform, without having to go through the lazy hackers computer setup process. "One of my long term goal is to write the documentation for these tools, and may publish a book called ' Whoppixhack ' book (very similar to ' knoppixhacks ')," Muts said. "I'm looking for some general help Whoppix, both at the technical level, but also others. If someone is willing to these documents provide me with some help, that's nice. "Figure 2.Whoppix tool Knoppix-STD this release is a customized version of Knoppix, it focuses on information security tools, so you'll have a STD (SecurityToolsDistribution). Knoppix-STD currently maintained by MarkCumming, from initial he is a very active contributors. Cumming so explain Knoppix-STD goals and how it relates to other similar projects: "with all the tools are open source, there are many tools which do the same thing; Security CD is no exception. From the beginning, STD's design is not a user friendly; this means that we do not cater to popular taste. The reality is we use Linux as the ultimate aim of a STD is about means; security tools in a package, and not a Linux, although we have a lot of Linux enthusiasts. STD attempt to try to stay away from the noisy sound. We are not without xwindows, however if you have a simple terminal method can implement the required functionality, so we'll use this method; we do not just out of interest in the development of a GUI. We do not care to ensure that this is a feature unique to the unique tools; in fact, we plan to include all currently available tools. "STD has for those interested in the safety of people created a teaching tool, this means including a lot of documentation. Each tool set has its own document directory. You can in each relevant/usr/bin toolset directory access these tools. You will find the "sticky honeypot", firewall, IDS, and some network tool can help you better mapping heterogeneous network. "Now we are building a development team to continue the development of STD project. We try to do one from the ' everything ' is converted to a more open development environment, it can be organized into several separate groups, each group has its own head. This development a LiveCD can use to develop and compile LiveCD release natural characteristics. We also do not need to have the actual hardware and bandwidth infrastructure to support CVS, etc. "Cumming said. He promised that future versions will work with the existing version there are significant differences, and to provide better WiFi support. "In the future, we will develop on a small wireless network card support. We need to purchase only the cheapest cards $ 9.99 users support that weight takes up most of our development. "Cumming said. You can also install STD to hard disk, you can use ordinary Knoppixhd-install script implementation, the default is contains the script. STD is a great attempt to help users to fix the problem, but when many new users choose RedHat desktop system to directly replace the Knoppix, they lost their official support. Figure 3.Whoppix defect testing PLAK PHLAK (ProfessionalHackerLinuxAssaultKit) is a derived version of Morphix. Based on Morphix modular features, users can use a small module to add your own tools/settings without having to swap out the whole CD. All the development features of Morphix in PHLAK in can be used. "We can also add some PHLAK educational content. Users can browse the documentation to learn about the security content, and how to use these tools, "ShawNHawkins explained that he is one of the developers of PHLAK, at the same time, the Web administrator. /Usr/share/doc following documents about 118MB. This stored information about the various types of security tools, divided into 13 categories, including analysis, certification, auditing, scanning, and tunnels. There is also the buffer overflow, firewalls, intrusion detection and more. "We at 0.2-1 in the added another thing is that we call ' XPde sneaky ', the reason is very obvious (using a pseudo-Linux distributions). Of course, we also added some of their stuff, and the whole theme, other tools, and so on, "says Hawkins. Currently developing 0.3 version incorporates a new Morphix based and 2.6 version of the kernel. Hawkins also promised to provide better wireless support, new hard drive installation Morphix, more documentation, as well as some new security tools. You can use the new Morphix0.5Pre4 in Setup script will install to the hard drive PHLAK. It has been designed to meet the requirements of PHLAK some changes, some will copy data 1.5 to 2.0GB. In the long run, you may expect a streamlined version of PHLAK, it can be installed on a 128 MB or 256MB USB flash drive. Hawkins was also discussed in a future PHLAK release contains a new file system problems, the unionfs file system to boot from the CD so that users can write to the file system. Although this will not save the user's information to a CD, but you can use to upgrade, update apt-get nessus plugins, as well as on the file system has write permissions. Figure 4.PHLAK in conclusion spite everyone agrees on the system or network security assessment is a key issue, but a thorough assessment is a very time-consuming task, may be other tests (such as performance testing); rapid inspection system defects is also a very useful tool, this form of 4 kinds of LiveCD security evaluation package can solve this problem.
No comments:
Post a Comment