I was discussing this very thing with another client of mine. I told him the story and he siad  "man that would seriously suck. You think they would tell the IT team about this to give them a heads up." Once he said that, i wondered for a moment. This pen test story was a great example of being prepared. No hacker is going to tell you " hey today i mihgt try and bust you up a we bit" So having that incident management team in place with some failsafes is a very good idea. Maybe the CFO didnt want his IT team to know about to make it more "real" But then again he claims he didnt know about it either. BUT to lose that kind of money on a pratice drill has gotta be painful.

Maybe i need to switch to VMware rather than VB? How much does VMware cost?

Ok. i think i understand what was being said by both of you and the book. For some reason i was under the impression that malware could detect the presence of Virtual software, therefore making it more difficult to study since the malware would not behave as if it were on a real system..  Maybe i misunderstood the readings. hahah

thanx for the input.

Ok cool.

Thanx for the input. I look forward to my finished result of all my hard work and logging. I figure i outa learn pen testing since i am going into Business Technology Management with a two year degree in network engineering.

Chapter 5 of the book however brings some questions to mind. For example: A controlled lab with virtualbox to study malware and examine it. Seems confusing to st one up.

thanx

Matt

DANG. We had a very similar experience on our network BUT the only diff was that it was not a pentest. some punk kid was trying to brute force our network because he was able to get the username file from our server using the null session with dumpsec tatic. Luckily we make sure our users have to follow our password policy. Still was annoying to get into work at 6 in the morning and have 33 accounts locked out.

Anyway. awesome post. Ill be sure to remember this for future use and recommendation.

Thanx for the input. I cant believe that im 25 and i still dont know the best way for me to learn. HAHA

Sometimes i dont mind being shown the answer because then that allows me to try and find out how they got that answer. But then i dont mind trying to figure it out as well.

But for this excercise since i have never done pen testing, i dont mind being walked throw. lol

thanx

I am currently reading Toms book. So far so good. My goal though is to document everything i learn and post it on me blog.  I basically read each chaptor and document my findings and i also do the homework at the end of each chapter. I am currently on chapter 5 and have some questions. BUT my main question i need answered is what type of software should i use to document. As of now i am using google docs so that when im in BT2 or any of my virtualboxes, i can copy and paste my text into the online doc. Is there another way or a better way to document my project? I dont mind google docs cuz then i can copy paste right from the VB into google docs and then access it from my HOST machine. Whilst if i used just word on my HOST, i wouldnt be able to copy paste from my VB guest to the HOST since i do not have the live cd's installed. Just running them as a live cd

thanx

Matt

I appreciate your concern and time. Since i am new to the security world, i lack the experience for it. Hence why i am here. haha. Im looking forward to toms book. At least with that i will have a foot in the door. From there i will use the backtrack labs/tutorials i got from my professor.  Im glad that virtual box will do what i need it to do and thank you for researching that for me. I didnt know where to start. The only issue i have is i cant really use VB to do security with routers and switches or firewalls. But luckily for me i have a CCNP cisco lab in my dang room. haha.

Hope you dont mind me hi-jackin the thread real fast, but i wanna try this with virtual box. So i need a lab. I just bought Toms book and it should be here within the week. The lab that he instructs us to build in the book, will that work with these ettercap attacks and tutorials?? Or do i need to add some other hosts and devices to it for it to work?

thanx

Matt

Ok thanx. Im looking forward to reading the book. Just need patience so i dont get overwhelmed..

NICE, did not know you were on these forums. I have heard of your book and want to buy it. I actually have been saving for it. I did not know it was a step by step guide so i appreciate that input. I wish i could find a study group around here that would want to learn with me. I cant motivate myself to learn outside of full time school. hahah. Well im gonna buy the book now. If i have questions though, where do i go and how do i ask you if i need answers??

thanx

Matt

EDIT

Just bought the book

I have a bunch of info on ethical hacking. I just have no idea where to start. But first of all what i need help with is De-ice. I am the type of person that needs to be shown first then i try it and learn from that. IE, a instruction sheet says type this command in the global config of routerA. THEN it explains to me what the command is doing. I then type it and watch what happens. Ok now that you know how i semi work, i am looking for a great tutorial that has been written on how to hack and complete de-ice exercises and explain what is happening at the same time. Sorta like how the CCNP books i use for school. So basically a lab guide to complete the exercises of de-ice step by step.

I have done my CCNA stuff, I have done all my RHCT and some RHCE stuff and now im working on my CCNP. However i still have problems understanding how protocols work.

Ok now that that is out of the way here is what i have gained from friends and professors/classes for net security.

Hacking exposed 5th edition
CEH study guide 2009 edition.
pen test open source tool kit vol2 2007 (lost the dang CD)
A few labs from backtrack(received by a professor)

I need to build a good lab as well. I have 3 cisco enterprise routers and 5 switches. What is a good lab set up?? oh and i have a really powerful desktop for vm's..I have heard about that course by backtrack but never looked into it cuz i have no money for that. BUT i want to build the same lab environment that they use so if anyone has taken the courses it would be nice to know what machines or devices you attacked.

Ok thats it i think..

I really really appreciate this guys. Im not kidding. Thank you so much.

Matt

PS. im not looking for someone to hold my hand perse, but rather "shove" me in the right direction.

LOL, awesome. thanx for the info. i plan on taking a few weeks for level 1

Ok i have started reading books. I own the CEH 6th edtion review guide. I have my virtual lab set up with bt3 and deice 1. I have found user name for interns remote login via ssh. Just not his password. This is where i could use the help. Im completly new at this. I just need to be lead the way a lil bit. Maybe hold my hand while i cross the street for the first time sorta thing. Then once im across. i will learn from there..

Thanx

Matt

Ill check it out from library. Cookbooks can be usefull at times but i also dont want all theory. i want to be taught how to use the tools and have hands on for pentesting and not just read a book about what pen testing is. I have begged and begged for the labs from my friend back east for offsec 101. so he let me borrow them. so hopefully they will work for me rather than against me.

Your so lucky you know IPtables. i wish i could read and edit those.

Smoothwall plays very nicely with other VPN's. never had an issue with wacthgaurd or sonic wall. Egress filtering is all done with a pertty lil GUI in smoothwall. AND you can add custom entries in IPtables if wanted. The only thing i dont think smoothwall can do is this: some isp's block certain ports and i know with ipcop you can add a custom ip entry to redirect any incomming data for that port to another port. Its more than portforwarding. I cant exactly remember what it is. Its like comcast blocks port 441 and so any incomming dat to that port is dropped but in ipcop you can redirect port 441 to 4598 or whatever. smoothwall i dont think can do that