Nice intro into TCP / tcpdump
http://danielmiessler.com/study/tcpdump/
Lots pentest links:
http://danielmiessler.com/study/tcpdump/
Lots pentest links:
http://code.google.com/p/pentest-bookmarks/wiki/BookmarksList
BrowserSec:
http://code.google.com/p/browsersec/wiki/Main
Malware on routers:
http://www.securelist.com/en/analysis/204792187/Heads_of_the_Hydra_Malware_for_Network_Devices
Nice tools:
http://dereknewton.com/forensic-tools/
File checksum integrity verifier:
http://support.microsoft.com/kb/841290
Microsoft AD directory services - blog
http://blogs.technet.com/b/askds/
.: TEST APPS :.
BadStore
Link: http://www.badstore.net/
Platform: Perl, Apache and MySQL
Install: Meant to run by booting a Live CD, but I'd recommend using my Live CD VMX
Notes: Easy to set up, and it's nice that you can run it from a VM with a little work. Just make sure you set the VM to use the IP addresses that are only available from the local host OS (NAT or Host-only).
Damn Vulnerable Web App
Link: http://www.ethicalhack3r.co.uk/damn-vulnerable-web-app/
Platform: PHP, Apache and MySQL
Install: Should work on any box you can install Apache/PHP/MySQL on.
Hacme TravelLink: http://www.foundstone.com/us/resources/proddesc/hacmetravel.htm
Platform: Windows XP, MSDE 2000 Release A, Microsoft .NET Framework v1.1, C++
http://www.mcafee.com/us/downloads/free-tools/hacme-bank.aspx
Moth
Link: http://www.bonsai-sec.com/en/research/moth.php
Platform: Linux VMWare image
Install: Just download the VM and open it in VMWare player
WebGoat
Link: http://www.owasp.org/index.php/Category:OWASP_WebGoat_Project
Platform: J2EE web application
Install: Self contained Tomcat server you can run from a directory under Windows or Linux
Test ssl
http://www.darknet.org.uk/2011/12/sslyze-fast-and-full-featured-ssl-configuration-scanner/
The internet ;)
https://www.google.com
No comments:
Post a Comment