Dru’s New World

This is just something that I have been noticing a lot lately.

Awhile back in time… (a couple of years ago) People kept talking about how Email is going to make the post office go out of business. I never believed that but I am sure with the invention of PC’s and getting them to talk to each other over this Internet thing has slowed down the amount of love letters one may send to another. I am sure that with the ability to get your phone bill or credit card bill emailed to you and pay it on line has dropped how heavy the mail carriers bags are.

Now… With this new pain in the ass thing called SPAM (no not that fake meat in a can) is Email going away? I have noticed that I have not been receiving as many emails as I used to. Now everything is done though Instant Messaging. I know two things… The Spammers haven’t started nailing me on Google Talk… And as long as I use my SKYPE I won’t get hit with spammers… I think it is amazing how technology makes things easier but then there is something that comes out and makes it more of a pain in the ass…

So, My view is Email was great… Spammers do what they think they need to do. I do not have a spam issue with my email. But there is just something about logging into google talk and getting replies almost immediatly…

These are where I list the tools that I use for my job. I do change it around a lot and most the better tools are easier and more productive on Linux machines. A lot of these tools are rated at www.seclist.org

1. Cain and Able - Packet sniffer - Password Recovery tool… This is a great tool and surprising enough it is for Windows… http://www.oxid.it/cain.html

2. Nessus - Vulnerability Scanner - Unix based great Vunerabilty scanner over 11,000 plug-ins http://www.nessus.org/

3. Retina -Vulnerability Scanner - Windows based Vulnerability scanner. I am a strong believer that you should use multiple tools for Scanning. http://www.eeye.com/html/Products/Retina/index.html - Retina is a great tool but I am currently testing out a couple of other tools to see if I want to replace Retina. Penetration testers need great tools and great reporting rigt now I am really looking at GFI LANGaurd - http://www.gfi.com/lannetscan/

4. Kismet - Wireless Scanning - I actually have this loaded on my IPAQ. This is fun… I just started playing around with Wireless testing. http://www.kismetwireless.net/

5. Paros Proxy - Web Vulnerability Scanner - Probably not the best tool but was the first I learned to use and I ave fun with it. http://www.parosproxy.org/

Cain & Able Is a great Windows tool to play with as a Penetration Tester. So being a windows guy and new to the Penetration testing position I figured I should play with it a little. So I started out loading this on my laptop that is connected to my home network that is Dual boot Windows XP and Ubuntu. Started up Cain & Able to see what can be done…
The first thing I realized is I need to turn off any anti-Virus Software loaded on the machine. So instead I just uninstalled it. (what is the sence of having AV when everything I load on there flags up as a virus.)
So I let Cain & Able connect to the network and started a Network Discovery… Surprisingly enough it found everything… Okay I wasn’t to surprised at that fact.
The next thing I did was wanted to see what I could do with Sniffing though Cain and Able. Sure enough I started sniffing and did a little Arp Poinsoning on my other laptop and my Daughters Desktop.
How did it work… Well lets see with out doing more that a few clicks i was able to retrieve almost every password of every website that me and my daughter went to.
So My thoughts on this: It is easy for people to get your information with the right tool especially on the same network as you. When you see the Certificate Warning come up in Windows and it say’s “Microsoft recomends closing” do what they recomend It could be worth your Life Savings, or Identity…

I can’t wait to learn more about this Job it is so much fun…

This is a list of the tools that I need to play with. Some of them I have before some I have not. But for the next Audit these are the tools I am going to try and use and see how the results look.

nbtscan.exe

nc.exe

pwdumpX1.1.zip

kerbcrack.exe

kerbsniff.exe

gethashes.exe

getsyskey.exe

enum.exe

cifspwscan.exe

parosproxy

pstools

user2sid

sid2user

putty

vncviewer

BiDiBlah

You’re moving from Windows to Linux. You’ve decided you want the stability, flexibility, and cost savings of Linux, but you have many questions in your head. Isn’t Linux like UNIX? Isn’t UNIX hard? Where do you begin to make sense of all of this? Is there a map you can follow?
Hot Move to Linux