HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 40 guests and 1 member online
 
Advertisement

You are here: Home arrow Resourcesarrow Toolsarrow Core Impact
EH-Net
May 20, 2013, 10:50:48 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
EH-Net > Resources > Tools (Moderator: don) > Core Impact
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Core Impact  (Read 5658 times)
0 Members and 1 Guest are viewing this topic.
Dengar13
Sr. Member
****
Offline Offline

Posts: 380



View Profile
« on: April 03, 2010, 06:21:54 PM »
Does anyone else have this?  If so, what are your pros/cons?

I think it does a pretty good job at web app pen testing, but have found that Paros, w3af, and others find some vulnerabilities/items of interest that it doesn't.  I also find that Wikto finds directories that Core doesn't.

An external network pen test is OK, but haven't found another tool better.  Some of the OS fingerprinting is a little off and sometimes it cannot detect one at all.

Client-side is really good and have found a TON of corporate emails that I can use to leverage an attack.

One thing I find in an internal test is that Symantec Endpoint Protection goes berserk on the host that I am testing against.  I guess that is a good thing though, but not for for me when I am testing.

Just was wondering what everyone else's opinion was.
Logged
A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!
pizza1337
Full Member
***
Offline Offline

Posts: 156

Resource is Power.


View Profile
« Reply #1 on: April 03, 2010, 06:29:07 PM »
its a hard tool to get your hands on(at least for me), me and my friend asked for trial, none of us ever got it, or any respond from them.
Logged
Knowledge Resource is Power.
ajohnson
Recruiters
Hero Member
*
Offline Offline

Posts: 1057


aka dynamik


View Profile WWW
« Reply #2 on: April 03, 2010, 07:13:40 PM »
Quote from: pizza1337 on April 03, 2010, 06:29:07 PM
its a hard tool to get your hands on(at least for me), me and my friend asked for trial, none of us ever got it, or any respond from them.

If I remember correctly, you get access to that with Offensive Security's PWB (OSCP) course. I'm not sure if that's still included after the revision though.
Logged
WIP: GCFA | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
Kev
Sr. Member
****
Offline Offline

Posts: 428


View Profile
« Reply #3 on: April 04, 2010, 12:31:16 AM »
 I have used Core a lot to test vulnerabilties if I am attacking the network internally. It does a great job and is an asset to a pentester's tool box. However, if I am attacking from the "outside" I find its way too noisy. I hate getting shut down or alerting anyone of my attack early on, although sometimes I am amazed how asleep at the wheel some folks can be!

 I still follow the concept of attacking a network the way a hacker would. Most black hats that I have been aware of dont have access to tools like Core and use more simple and stealth techniques. Thats been my experience.
Logged
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #4 on: April 04, 2010, 12:40:54 AM »
I know that it does a great job pivoting through a compromised host.   I haven't used it in a while, but I would agree with Kev, in that it's noisy.
Logged
~~~~~~~~~~~~~~
Ketchup
Dengar13
Sr. Member
****
Offline Offline

Posts: 380



View Profile
« Reply #5 on: April 05, 2010, 06:38:04 AM »
Yes, it does a wonderful job pivoting through a compromised host and is very, very noisy.  Another thing that they could do better is the reporting.  If I were scanning for PCI compliance would want that reporting option, especially for the price you pay for it.

I feel you, Pizza.  I was in the same boat years ago when I was looking for a vulnerability scanner.  If they sniff the fact that you are hesitant or  think you don't have the funding for it, they won't bother with you.  At least that was my perception and that was back in '05.
Logged
A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.081 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Free Business and Tech Magazines and eBooks

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.