|
EH-Net
|
|
May 23, 2013, 04:26:12 AM
|
 Show Posts
|
|
Pages: 1 2 [3] 4 5
|
|
32
|
Ethical Hacking Discussions and Related Certifications / Hardware / OS X as a Pentest Platform
|
on: February 05, 2009, 03:14:20 PM
|
|
Hi guys,
i've recently gotten hold of a macbook and i gotta say that i'm totally lovin it. Now I have it running pretty well with kismet (yes that's kismet), nmap, metasploiot, ettercap etc... and all seems to be working well.
My question is, do any of you pentesters out there use a mac as your main pentest platform? or through experience have you found it to not be as flexible as Linux?
i've done a little testing in the week that i've had it and it seems to be working well but I just wondered if theres a "gotcha" just waiting to happen.
Any thoughts on this would be great.
Cheers
Syn
p.s Has anyone read Johnny Long's book on OS X Hacking and if so was it any good?
|
|
|
|
|
34
|
Ethical Hacking Discussions and Related Certifications / Wireless / Re: Am I Secure?
|
on: February 05, 2009, 02:53:36 PM
|
|
sgt_mjc
in answer to your question, there's a few ways you could do this as i see it. You could move the AP onto the LAN and arp poison between that and the gateway, however this does place your LAN at risk if not done properly. An approach I like which worked well for me in the past was to set up an old box with PFSense on and 3 network interfaces. I then put an AP onto the DMZ interface and used the PFSense box to capture all traffic that flowed from the DMZ to the outside interface. This got me what I wanted and did not put my LAN at risk.
I'm sure there are a load more ways to do this, but this worked for me.
Hope that helps.
Syn
|
|
|
|
|
35
|
Ethical Hacking Discussions and Related Certifications / Wireless / Re: Am I Secure?
|
on: February 04, 2009, 04:40:52 PM
|
|
oh, one last thing from me on this. I believe that there are ways of disabling the SSID broadcast altogether (if your router supports it), but be aware that any clients connecting will likely broadcast it initially. So you might want to be aware of that point.
Cheers
Syn
|
|
|
|
|
36
|
Ethical Hacking Discussions and Related Certifications / Wireless / Re: Am I Secure?
|
on: February 04, 2009, 04:08:37 PM
|
|
Thanks for the compliment on my blog, i appreciate it.
one other thing, you could play around with the DHCP scope, can you limit the leases handed out and move the subnet to something other than 192.168.1.x
This, along with your other measures makes an attackers job a little harder.
Regards
Syn
P.S or you could be plain evil, by securing it slightly so you know whoever uses it has used it knowing that they have bypassed your security, and then put an old linux box between your AP and the internet and capture all the traffic. Sorry, i shouldn't think out loud, i'd better put that hat away again ;-)
|
|
|
|
|
40
|
Resources / Career Central / Re: Blog?
|
on: February 04, 2009, 02:56:40 PM
|
|
I can only echo Don's comments, but also I use my blog to keep my mind on track and to help me focus, otherwise i'm like "oh nmap upgrade gotta give that a look" and "wow i didn't know hping could do that, let me try", then "metasploit can do that too. let me see". And all this happens in the space of a few minutes so the result is nothing gets really looked at in any level of detail.
And the problem? Well the truth is that all these tools, techniques and websites are all so cool and interesting and it's hard to keep focused. So i use my blog to do just that. I pick something that interests me and try to come up with enough material in my spare time for a post each week.
hope that help. Sorry for rambling.
Syn
|
|
|
|
|
44
|
Features / Book Reviews / Re: Favorite security book?
|
on: January 20, 2009, 04:11:44 PM
|
|
I'm a really big fan of the Cyber fiction genre such as the Stealing the Network Series, published by Syngress.
Harlan Carvey's "Window Forensics and Incident Recovery" is also one of my favourites.
Regards
Syn
|
|
|
|
|
Loading...
|
Editor-In-Chief : Special Xmas Deal: 10% Off eLearnSecurity Courses
