.

Prefered Pen Testing Platform

<<

n37sh@rk

User avatar

Jr. Member
Jr. Member

Posts: 70

Joined: Thu Jan 24, 2013 1:07 pm

Location: Anywhere

Post Mon Apr 15, 2013 12:32 pm

Prefered Pen Testing Platform

Hello, I'm new to the field and wondering what everyone's opinion's are on platforms. Do you prefer Backtrack, Kali or other? Also if I am just starting out should I go with the newest tools available? i.e Kali or start with backtrack first? Any advice is welcome. Sorry if this is in the wrong location.
C|EH,CPT
<<

DragonGorge

User avatar

Jr. Member
Jr. Member

Posts: 86

Joined: Wed Feb 08, 2012 6:30 pm

Post Mon Apr 15, 2013 12:41 pm

Re: Prefered Pen Testing Platform

Personally, I'm not that fond of Kali - it's slow (in my VM) compared to the Backtrack versions. However, it's unlikely that they'll continue to support BT so if you're starting out, you might as well go with the latest version and the one they're going forward with...Kali.
<<

st8k

Newbie
Newbie

Posts: 3

Joined: Mon Apr 15, 2013 12:11 pm

Post Mon Apr 15, 2013 1:29 pm

Re: Prefered Pen Testing Platform

Hi n37sh@rk!

Welcome to the field! In terms of platforms Backtrack or Kali should be fine to get you started, DragonGeorge makes a good point BT support will be ending eventually.

My recommendation is to make a live CD of Kali and try it out for awhile, get the lay of the land and learn about the tools. I found that the best way to learn was to use BT for awhile, and then create my own platform (use a base OS and install the tools on your own). This helped me to learn dependencies, etc that I wouldn't have learned with everything pre-installed.

Best of luck!
<<

n37sh@rk

User avatar

Jr. Member
Jr. Member

Posts: 70

Joined: Thu Jan 24, 2013 1:07 pm

Location: Anywhere

Post Mon Apr 15, 2013 1:34 pm

Re: Prefered Pen Testing Platform

Thanks guys! I currently have both platforms installed to dual boot on a laptop, so ill play with both. I am taking the Infosec C|EH and CPT class in May so i'm trying to get comfortable with what ever I can.
C|EH,CPT
<<

Jamie.R

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Mon Aug 06, 2012 9:57 am

Location: UK

Post Wed Apr 17, 2013 2:36 am

Re: Prefered Pen Testing Platform

Kali for me seem to have some bugs so I don't really use this.

If you want easy life then BT5 as it has all tools and you don't need to worry about install new tools.

If you want a challenge and want to learn more about Linux I would say Ubuntu or any other linux OS where you need to install tools from scratch as it give you experience working with the system and fixing things when they break.
| OSWP | eCPPT Silver and Gold | eWPT |

I'm an InterN0T'er
<<

UKSecurityGuy

User avatar

Jr. Member
Jr. Member

Posts: 88

Joined: Wed Mar 27, 2013 10:51 am

Post Wed Apr 17, 2013 5:04 am

Re: Prefered Pen Testing Platform

I'd have to agree with the other posters, Kali seems a little buggy to me at the moment, so I'm not using it as my primary platform.

At the moment I'm using three Virtual Machines for my Pen Testing.

1. Kali Linux (as mentioned by other posted they're going to phase out Backtrack eventually so I need to start getting to know it now)

2. BackTrack Linux 5 R2

3. Windows XP


I then use the most appropriate platform for whatever I'm testing, depending on what tools I need.
<<

n37sh@rk

User avatar

Jr. Member
Jr. Member

Posts: 70

Joined: Thu Jan 24, 2013 1:07 pm

Location: Anywhere

Post Wed Apr 17, 2013 8:09 am

Re: Prefered Pen Testing Platform

Ive been using both for about 2 weeks and the Debian interface with Kali just seems more functional to me at least. Could just be because i'm a n00b. I like the idea of using a base and then installing the tools you need rather than having an out of the box solution.
C|EH,CPT
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Wed Apr 17, 2013 11:32 am

Re: Prefered Pen Testing Platform

Once I get some time, in about 2 weeks, I'm going to install and start using Pentoo. I spoke at 3 cons last year about the insecurities of BT (ok, my real point was to introduce people to securing Linux), and I've not heard many good things from Kali on the different podcasts I listen too.

Pentoo however is set to be secure out of the box, and has things still set up to easily find.
OSWP, Sec+
<<

superkojiman

User avatar

Jr. Member
Jr. Member

Posts: 81

Joined: Thu Sep 20, 2012 9:42 pm

Post Wed Apr 17, 2013 11:36 am

Re: Prefered Pen Testing Platform

Backtrack is no longer supported. While that doesn't mean it's useless, if you're just starting out, I recommend using a distribution that's supported so you can get some help when the time comes. My preference is currently with Kali, but there are other alternatives such as Pentoo and Backbox. You could even use any distribution and just pick the tools you need. Pentesting distributions typically pack a lot of tools in them, but you're probably going to use only a small handful, so you can just install those on your own distribution of choice.
OSCP + OSCE
<<

n37sh@rk

User avatar

Jr. Member
Jr. Member

Posts: 70

Joined: Thu Jan 24, 2013 1:07 pm

Location: Anywhere

Post Wed Apr 17, 2013 12:38 pm

Re: Prefered Pen Testing Platform

Thanks guys I didn't even know that Pentoo or backbox existed, I guess there is some more testing and playing around I will need to do before I decide my favorite. Now that said if I am looking at getting my OSCP would you recommend using Kali? I haven't seen any updated course ware and it seems it is still using Backtrack. One can only assume they are going to update the course ware to use Kali?
C|EH,CPT
<<

superkojiman

User avatar

Jr. Member
Jr. Member

Posts: 81

Joined: Thu Sep 20, 2012 9:42 pm

Post Wed Apr 17, 2013 2:02 pm

Re: Prefered Pen Testing Platform

n37sh@rk wrote:Thanks guys I didn't even know that Pentoo or backbox existed, I guess there is some more testing and playing around I will need to do before I decide my favorite. Now that said if I am looking at getting my OSCP would you recommend using Kali? I haven't seen any updated course ware and it seems it is still using Backtrack. One can only assume they are going to update the course ware to use Kali?


I've heard that they will be updating the course but as for when, I have no idea. If you plan on taking PWB, and you're new to hacking, I would probably stick with Backtrack (despite what I said in my previous post). If
you've already got a handle on what tools to use to get things done, you can certainly use other distributions.

As I said, Backtrack is no longer supported so you may run into some walls when trying to fix things that don't work. Certain tools referenced in PWB no longer come preinstalled with Kali (eg: unicornscan, MinGW), although you can certainly install them yourself. In fact, I believe the course material uses Backtrack 4, and when I took it, 4 was no longer supported and I was using 5R3 so some things were already different then. As long as you do a bit of reading and research, you should be able to follow the course material without too many problems.
OSCP + OSCE
<<

n37sh@rk

User avatar

Jr. Member
Jr. Member

Posts: 70

Joined: Thu Jan 24, 2013 1:07 pm

Location: Anywhere

Post Wed Apr 17, 2013 2:20 pm

Re: Prefered Pen Testing Platform

Thanks superkojiman! It wont be anytime soon as i have to save up for that one. Hopefully by the time i take it they have an update course.
C|EH,CPT
<<

m0wgli

User avatar

Sr. Member
Sr. Member

Posts: 308

Joined: Fri Jul 20, 2012 3:34 pm

Post Wed Apr 17, 2013 2:22 pm

Re: Prefered Pen Testing Platform

n37sh@rk wrote:Thanks guys I didn't even know that Pentoo or backbox existed, I guess there is some more testing and playing around I will need to do before I decide my favorite. Now that said if I am looking at getting my OSCP would you recommend using Kali? I haven't seen any updated course ware and it seems it is still using Backtrack. One can only assume they are going to update the course ware to use Kali?


There are other Penetration Testing Linux Distros as well. I'm still using BT5 R3 mainly (whilst I'm studying for OSCP), although I'm also running Kali as well to a lesser extent.

Regarding the OSCP, the plan is to update the courseware.

However, until that happens I'd follow superkojiman's advice for now.

I have the v.3.3 courseware and it references BT5.
Security + | OSWP | eCPPT (Silver & Gold) | CSTA

Return to Other

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software