What is Digg?72 Comments
- inactive, on 07/03/2008, -0/+57Or you could just download and install BackTrack 3 and have all those tools plus a few hundred others already installed
- ninjasenses, on 07/03/2008, -1/+37Backtrack 3 is all you need.
- moonboots, on 07/03/2008, -1/+30if you listen closely, you can hear another wave of scriptkiddies crashing into the shore
- astrocreep2k, on 07/03/2008, -2/+21I tried using some of these on the Gibson. The sys admin caught on and sent Teller over to my house to kick my ***
- ninja0, on 07/02/2008, -0/+14He changed it to netcat.
- MistaMatt90, on 07/02/2008, -0/+12Why PuTTY? Just install the clients you want, and run them from the terminal.
- whiteghetto, on 07/03/2008, -1/+13word... backtrack 3 FTMFW :)
- rowjimmy, on 07/03/2008, -0/+11you can spoof the sender address with telnet, or any mail-sending utility (eg sendmail).
and i'm sure this script-kiddie package has absolutely no malware built into it, huh... - spxiii, on 07/03/2008, -0/+10For anyone who thinks metasploit is not a hacking tool and that they are too hard to be bothered with anything more than netcat and a diet rockstar energy drink, please actually try breaking into a modern system. It isn't the 1980's and you aren't Kevin Mitnick.
- Chaulis, on 07/03/2008, -0/+10Hell these aren't even really "security tools" they're just network and system administration tools that with knowledge of systems can be used for other things. With the exclusion of nessus.
- AbstortedMinds, on 07/03/2008, -0/+9n00b article
- inactive, on 07/03/2008, -0/+8great. now a bunch of ***** are going to start spoutin' off BS acting like they know what they are talking about.. typical of these types of stories.
- Eazy~e, on 07/03/2008, -3/+11equal fail for thinking metasploit is a hacker tool. Metasploit is a skiddie tool.
- Suzilla, on 07/03/2008, -0/+7BackTrack3, hands-down.
- billbugger, on 07/03/2008, -1/+8It's not even a linux tool, it's windows. Linux has ssh built in.
- centran, on 07/03/2008, -1/+7I really should try and get Snort working... but I got lazy.
Most of the attacks on my servers are people trying to brute force ssh. They will go at it for hours and hours!
I just use denyhosts http://denyhosts.sourceforge.net
It scans the log for a certain number of login attempts from the same IP then adds that IP to your /etc/hosts.deny
Make sure to add your common login IP(including local) to hosts.allow or you could lock yourself out. - Rijnzael, on 07/03/2008, -1/+7PuTTY also has the added caveat of only being useful for Windows, considering most distros of linux come equipped with clients for PuTTY supported protocols, whereas Vista doesn't even come with a telnet client by default anymore..
- Calibur, on 07/03/2008, -0/+6alright Zero Cool
- docfreezzzz, on 07/03/2008, -3/+9I'll second that motion as one who uses Linux for high performance computing. Linux is more that a 'script-kiddie' plaything.
- nytejade, on 07/03/2008, -0/+5You missed the only somewhat difficult step of the process, which is actually decrypting the data you've intercepted.
Something tells me you've never done this before. - QuimbyDogg, on 07/03/2008, -1/+6I am a year in working on my masters in computer, information, and network security and have already worked with--or seen in demonstration--a large number of tools on the list. There are some extremely powerful tools listed but to people without knowledge they will seem pointless. Attacks are able to be done without using metasploit to hold your hand... And from a pure security standpoint some of these tools really are amazing.
I really liked the post above about oldies being still the goodies. The best tools are always going to be the extremely basic yet fully customizable ones which are basically limited by YOUR input and knowledge alone. - naiku, on 07/03/2008, -0/+4nc is amazing if you know how to use it.
- naiku, on 07/03/2008, -1/+5metasploit alright if you are writing your own exploits and using the framework to launch.... but typically its for people who think they can break into computers.
- nytejade, on 07/03/2008, -0/+4To successfully use WireShark you need at least an elementary understanding of basic protocols like HTTP, TCP, and UDP.
Wikipedia should be just fine. Once you understand the structure of a packet, it becomes clearer. - saranagati, on 07/03/2008, -0/+4i think by unprotected network he meant an unsecure website as in, not encrypted.
- billbugger, on 07/03/2008, -0/+4http://www.remote-exploit.org/backtrack.html
- kungfoolou, on 07/03/2008, -0/+4Hacking and Security Tools? How about troubleshooting tools? These are all great tools. I've used them all. But never for the purpose of hacking, sometimes for security tho.
- jgtg32a, on 07/03/2008, -0/+4You can install it to a flash drive so it can be kept up to date.
- inactive, on 07/03/2008, -1/+5Great list , sadly i'm not smart enough to use most of these tools. I tried wireshark but i guess i just didn't understand how to use it correctly. I like Nmap to, i have used john the ripper to decode password hash files? or something like that back in the day
- dfndoe, on 07/03/2008, -0/+4Backtrack is dang kludgy. If you do any of this intrusion/pen "testing" with any frequency you should just run a real linux distro with the tools from BT that you find useful. Then you have a usable distro with frequent updates AND you don't have problems with thing like BT's choice of module versions and whatnot.
- Hydraulix, on 07/03/2008, -2/+5Probably the saddest list I've seen so far. No mention of hydra, ettercap, airsnort, and many more awesome tools that should be on that list.
- burjzyntski, on 07/03/2008, -1/+4than*
I agree, but I thought your post needed that clarification. - specialK16, on 07/03/2008, -0/+3Lol, how old are you?
- mattguitar, on 07/03/2008, -0/+3OMG this l1st will show you how to h4x0r!!!! w00t l337!
- gn0stik, on 07/03/2008, -0/+33 is out? I've been running 2 which I don't like all that much.
- plhofmei, on 07/03/2008, -0/+3I read this article hoping to hear of some new l33t tools I knew nothing about. Alas, these have been around for years. In a way, it's good to know that the oldies are still the goodies.
- Rijnzael, on 07/03/2008, -0/+2anyone with kismet should also check out wigle.net and gpsmap, which is installed when you install kismet. check out what gpsmap can do: http://athan.asia/wardriving/may31-08/
- fload, on 07/03/2008, -0/+23 is yummy
- 5plic3r, on 07/04/2008, -0/+2gcc?
- admdrew, on 07/03/2008, -0/+2Surprised ngrep isn't on there too.
- inactive, on 07/03/2008, -0/+2So if i understand correctly, with wireshark i should be able to capture packet streams in the network and decode what traffic it is and what is being transmitted? text?
- inactive, on 07/03/2008, -0/+2Back track live CD.
Not only are these tools great, but they'll land you in a load of trouble when dealing with airport security! - irishhairball, on 07/03/2008, -0/+2sectools.org anyone?
- admdrew, on 07/03/2008, -0/+2Have you tried it in Wine? The Wine AppDB seems inconclusive about whether or not it works correctly.
- inactive, on 07/03/2008, -0/+2Actually no, it's not too terribly difficult to decrypt said packets after they're pulled down by Wireshark. If you know what kind of traffic you're looking for, it's incredibly doable when sniffed at the source.
- fload, on 07/03/2008, -0/+2kismet?
- colonelxc, on 07/04/2008, -0/+1Except no nessus :(
- MikePricee, on 03/06/2009, -0/+1Thanks, that is useful http://www.unlockcomputers.com/
- hdante, on 07/04/2008, -0/+1Exactly 100% of the software in the article is not linux-only software. Most run in dozens of Unix flavors and many run on Windows too.
-
Show 51 - 74 of 74 discussions
© Digg Inc. 2009
— Content created and posted by Digg users is