Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Exploit package analysis

from [Mattias Ahnberg] Network Security [Permanent Link]
Subject: Re: Exploit package analysis
Date: Fri, 29 Jul 2005 13:35:13 +0200
Erin Carroll wrote: 
My question to all of you is what are some basic sandbox tools you would
recommend to pursue this? Does anyone work in a similar vein and has the
experience been helpful in your pen-testing work?


I normally use VMware with one or more boxes in a virtual VMware-internal
network to test things out. Its easy to take a snapshot, entirely trash a
system, press a button and revert all changes back to the state it was in
before you begun. A _huge_ timesaver when debugging & analyzing.

In Windows I run tools like ethereal, sysinternals tools (filemon, regmon
and whatever else suits your current needs) and ollydbg for example. As a
complement to the Windows box I usually have another virtual machine alive
with Linux on it; I run a VMware internal network and use the Linux box as
default gateway for the Windows box, and therefore see all traffic that
the box attempts to send out when infected.

On the Linux (or whatever OS you favor at the time) box it is useful to
run something like dsniff's arpspoof & dnsspoof.

There are a million ways you can do things like this. Put perhaps this is
of some use to someone. :)
--
/ahnberg.

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Exploit package analysis, Lars Troen
Next by Date:  Re: IPS Comparison, Ivan C
Previous by Thread:  RE: Exploit package analysis, Eyal Udassin
Next by Thread:  RE: Exploit package analysis, Matt
Indexes:  [Date] [Thread] [Top] [All Lists]