The Ethical Hacker Network - Q&A for Pen Testing Perfect Storm Webcast Series: Part I

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 3113

Editor-In-Chief

Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« on: October 14, 2008, 05:06:56 PM »

This is the place to be following Part I of this webcast series that took place at 1:00 PM EST on Wednesday October 15, 2008:

Combining Network, Web App and Wireless
into the Ultimate Penetration Test

EH-Net members are invited to keep the conversation going with Kevin Johnson, Josh Wright and Ed Skoudis from InGuardians. These 3 security experts will be with us for about a week (depending on their time constraints) after each webcast to answer your questions. We will also post the links to webcasts as they become available.

If you are not an EH-Net Member, please register now to post questions.

Feel free to ask away...

Many thanks to SANS and Core Security for making this possible,
Don
EH-Net Editor-in-Chief

You can click on the same link when first viewing the webcast to see it again... or the first time if you are just joining us. Just in case:

Click HERE to see the webcast!


« Last Edit: January 14, 2009, 12:21:49 AM by don »	Logged

CISSP, MCSE, CEH, Security+ SME

joswr1ght

Newbie

Offline

Posts: 11

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #1 on: October 15, 2008, 12:58:07 PM »

Thanks Don, and thanks to everyone who caught the webcast today. Please post your questions and comments here; looking forward to hearing your thoughts!

-Josh


	Logged

BillV

Hero Member

Offline

Posts: 1386

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #2 on: October 15, 2008, 01:03:03 PM »

Great webcast guys! I enjoyed it and am looking forward to the next one.

There was a tool mentioned on the 'Using XSS to pivot' slide... it was briefly mentioned about comparing administrative interface fingerprints (or something similar). Can you post a link/name of that tool or maybe a brief rundown of what it does if I misunderstood?

Thanks again!

BillV


	Logged

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 3113

Editor-In-Chief

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #3 on: October 15, 2008, 01:03:40 PM »

The live Q&A is asking about tools. Ed mentioned that he will do his best to list them here. To get you started, a number of great software can be found in our Tools Board.

Don


	Logged

CISSP, MCSE, CEH, Security+ SME

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 3113

Editor-In-Chief

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #4 on: October 15, 2008, 01:11:26 PM »

Another of the live Q&A questions was about virtual images for your pen testing labs. VMware has a great repository of images:

http://www.vmware.com/appliances/

Also, Josh mentioned getting bootable versions of distros. One cool thing you can do is set VMware to boot the ISO of the bootable distro you just downloaded. This way you can run multiple of them at the same time both on the attacker and victim side.

Hope this helps,
Don


	Logged

CISSP, MCSE, CEH, Security+ SME

solidvision

Newbie

Offline

Posts: 1

http://www.simpletechguy.com *Computer repair*

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #5 on: October 15, 2008, 01:19:08 PM »

Hey guys, thanks for taking the time to do this presentation. It was very helpful and informative. I have a ton of question as I am new to the field, but I won't bother you with those. My only real important question that I didn't hear much about during the presentation is hardware related. I've had trouble getting the right wireless cards to work with software that I've tried in the past. Do you have any recommendations as to which hardware to use for wireless testing?

Again, thanks for the webinar!


	Logged

PreferredUser

Newbie

Offline

Posts: 1

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #6 on: October 15, 2008, 01:37:10 PM »

One of the additional areas that I would like to see discussed in relation to pen testing is from the forensic side. For example are there markers to be read in a memory grab, magic numbers for the processes that can be grepped from an image (or the memory), what are some of the tell tales that can be found post-mortem. I know 508 covers some of the post-mortem topics, but in a live forensic environment there has not been as much presented.


	Logged

edskoudis

Newbie

Offline

Posts: 10

Tools

« Reply #7 on: October 15, 2008, 01:59:59 PM »

I’d also like to thank all those who joined us on the webcast today. We really appreciate your interest and participation! Thanks also to Core Security Technologies, our gracious webcast sponsor.

On the webcast, I promised I’d post a list of some of the tools we referenced. This list isn’t exhaustive, but does represent the majority of the functionality we discussed.

BeEF, the Browser Exploitation Framework, by Wade Alcorn, available at http://www.bindshell.net/tools/beef

AirCSRF, “Air-Sea-Surf”, by Garland Glessner, not yet released publicly… stay tuned.

Yokoso!, by Kevin Johnson, et al, release imminent, to be available at http://sourceforge.net/projects/yokoso/

Samurai Web Testing Framework, by Kevin Johnson, et al, available at http://sourceforge.net/projects/samurai

Metasploit, by HD Moore, et al, available at http://www.metasploit.com

AirPwn, by Toast, available at http://airpwn.sourceforge.net/Airpwn.html

Of course, the techniques we discussed can be stitched together from any number of tools, but the items above were specifically mentioned and are very useful.

Hope this helps—
--Ed Skoudis.
InGuardians


	Logged

joswr1ght

Newbie

Offline

Posts: 11

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #8 on: October 15, 2008, 02:33:06 PM »

Quote from: solidvision on October 15, 2008, 01:19:08 PM

I've had trouble getting the right wireless cards to work with software that I've tried in the past. Do you have any recommendations as to which hardware to use for wireless testing?

A lot of people really like the Alfa card; it is USB and high-powered (500 mW with external antenna connector!) and is plug-and-play with just about any modern Linux distribution. Here is one site that sells this card (no affiliation):

http://www.netgate.com/product_info.php?products_id=665

I still use Atheros 5211 cards with the madwifing drivers. One madwifing-compatible card that supports 802.11a/b/g with an external antenna connector is at:

http://www.netgate.com/product_info.php?products_id=130

The madwifing cards work great with distributions like Backtrack 3, but will require patching and recompiling your kernel for other Linux distributions. The patch for this card is on the Aircrack-ng site:

http://patches.aircrack-ng.org/

Best of luck!

-Josh


	Logged

joswr1ght

Newbie

Offline

Posts: 11

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #9 on: October 15, 2008, 02:37:29 PM »

Quote from: BillV on October 15, 2008, 01:03:03 PM

There was a tool mentioned on the 'Using XSS to pivot' slide... it was briefly mentioned about comparing administrative interface fingerprints (or something similar). Can you post a link/name of that tool or maybe a brief rundown of what it does if I misunderstood?

Yokoso!, by Kevin Johnson, et al, release imminent, to be available at http://sourceforge.net/projects/yokoso/.

Yokoso! is a tool to identify the administrative interfaces used through fingerprinting techniques. This can be helpful to sort through the page history of a browser controlled by a pen-tester to identify valuable targets to exploit (e.g. previously logged-in administrative pages).

-Josh


	Logged

BillV

Hero Member

Offline

Posts: 1386

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #10 on: October 15, 2008, 03:03:16 PM »

Excellent! Thanks, Josh! Will keep a watch out for its release


	Logged

rAWjAW

Newbie

Offline

Posts: 1

Available Online

« Reply #11 on: October 15, 2008, 05:13:59 PM »

Unfortunately I was only able to make it until the last half of the presentation and I was wondering if it will be available online again for people to watch (such as the Pentest Ninjitsu series). Thanks in advance.


	Logged

joswr1ght

Newbie

Offline

Posts: 11

Re: Available Online

« Reply #12 on: October 15, 2008, 07:48:22 PM »

Quote from: rAWjAW on October 15, 2008, 05:13:59 PM

No worries, you can catch the recorded version. Visit:

https://www.sans.org/webcasts/show.php?webcastid=91601

And click "Click here to register for this webcast."; you'll need to fill in a form but you can de-select "share this information with the sponsor".

-Josh


	Logged

hawaii67

Newbie

Offline

Posts: 1

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #13 on: October 16, 2008, 01:22:38 AM »

Great webcast. Will also the slides be available soon??
Thanks so far.

EDITED: Thanks, found them. I'm looking forward to PART II. See you.


« Last Edit: October 16, 2008, 01:24:41 AM by hawaii67 »	Logged

KevinInGuardians

Newbie

Offline

Posts: 15

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

« Reply #14 on: October 16, 2008, 08:42:26 AM »

Quote from: BillV on October 15, 2008, 01:03:03 PM

Hi BillV,

The tool we mentioned is Yokoso! and will be at yokoso.inguardians.com. We are currently looking to get fingerprints from people and are hoping to get the first set of tools out this weekend. (Depending on my copious amounts of free time)

If you would like to help out, yokoso@inguardians.com or the developers mailing list are perfect places.

Kevin


	Logged

Pages: [1] 2 3 Go Up

« previous next »