.

Hacking with Live Linux Distros

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Mon Oct 17, 2005 12:06 am

Hacking with Live Linux Distros

We all know that Live Linux distros on a single CD are a great way to evaluate & learn Linux, but they also make for a great tool for you ethical hackers out there to do some penetration testing on your own netorks. Check out some of the Live Distros listed below (in alphabetical order) specifically created for this purpose:

F.I.R.E. Forensic and Incident Response Environment Bootable CD
http://biatchux.dmzs.com/

L.A.S. Linux. Live-CD security toolkit.
http://www.localareasecurity.com/

PHLAK: a modular live security Linux distribution.
http://www.phlak.org/modules/news/

WHAX: White Hat SLAX
http://www.iwhax.net

Share your thoughts,
Don
CISSP, MCSE, CSTA, Security+ SME
<<

Goders

Newbie
Newbie

Posts: 8

Joined: Sun Jan 01, 2006 6:52 pm

Post Sun Jan 01, 2006 7:01 pm

Re: Hacking with Live Linux Distros

Question, with Live Linux distros, you dont even have to install anything or what? How do they work? I have tried installing Linux in this computer many times, but all to no good. I can install it easily if I run VirtualPC, but that is it. Would a Live Linux be a good alternative?
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Sun Jan 01, 2006 7:22 pm

Re: Hacking with Live Linux Distros

All you do is insert the CD of the live Linux distro of your choice, and then boot to that CD.

If you want to play with Linux or use some of its features without having to lose your Windows installation, then it is a great choice. Especially if you just want to play with Linux to learn. As for it being an alternative to a full install of a Linux distro, that's up to you. Clearly a full install will perform better.

I am a big fan of virtualization, although VirtualPC at the moment does not support Linux. So either wait for the next update or use VMWare Workstation today (http://www.vmware.com/).

Good luck,
Don
CISSP, MCSE, CSTA, Security+ SME
<<

mitchmcse

Newbie
Newbie

Posts: 7

Joined: Fri Feb 17, 2006 7:42 am

Location: Aurora, CO

Post Sat Feb 25, 2006 3:36 am

Re: Hacking with Live Linux Distros

Another decent one to use is Knoppix STD (security tools distribution)
http://www.knoppix-std.org/
<<

piroman

Newbie
Newbie

Posts: 1

Joined: Wed Mar 01, 2006 12:53 pm

Location: Serbia

Post Wed Mar 01, 2006 1:20 pm

Re: Hacking with Live Linux Distros

  BackTrack  is the result of the merging of two Innovative Penetration Testing live Linux distributions

Whax and Auditor


http://www.remote-exploit.org/index.php/BackTrack
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Wed Mar 01, 2006 2:26 pm

Re: Hacking with Live Linux Distros

Check out this posting on the release of BackTrack Beta.

http://www.ethicalhacker.net/component/ ... opic,169.0

Don
CISSP, MCSE, CSTA, Security+ SME
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Wed Mar 01, 2006 3:34 pm

Re: Hacking with Live Linux Distros

Almost everyone at work including me uses Kubuntu (install version). As far as live CD's are concerned I must agree with mitchmcse and vote for Knoppix. It's really easy to use and very intuitive. It' s shame it only comes as a live disk, though one of my colleagues recomended installing a raw Linux kernel, and copying on top of that all the programs, desktop, features, shell, tools etc. from the Knoppix disk.  ;)
Another one of my colleagues swears by Whax and refuses to hear about anything else.

Regarding Don's comments about VMware, or rather continuing on from them, VMware have ready made open source appliances. Check it out here. You would never be able to get something like this from Virtual PC, because it's a Microsoft product, and for them consent to have open source software virtually installed on their OS would be like fraternising with the devil. ::)
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Thu Mar 02, 2006 12:50 pm

Re: Hacking with Live Linux Distros

How could we forget Helix? Maybe because it is meant for forensics and incident response as opposed to pen testing. Should I put this in the Forensics board? Anyway, here's the link.

http://www.e-fense.com/helix/downloads.php

Helix is a customized distribution of the Knoppix Live Linux CD. Helix is more than just a bootable live CD. You can still boot into a customized Linux environment that includes customized linux kernels, excellent hardware detection and many applications dedicated to Incident Response and Forensics.

Helix has been modified very carefully to NOT touch the host computer in any way and it is forensically sound. Helix wil not auto mount swap space, or auto mount any attached devices. Helix also has a special Windows autorun side for Incident Response and Forensics.

Helix focuses on Incident Response & Forensics tools. It is meant to be used by individuals who have a sound understanding of Incident Response and Forensic techniques. That said Helix is used by the following organizations for Incident Response/Forensics Training:


e-fense: Helix Incident Response & Computer Forensics
NW3C: Linux Forensics
SANS Track 508: System Forensics, Investigation and Response.
InfoSec Institute: Computer Forensics Training
SEARCH: Basic Investigators Training


Don
Last edited by don on Thu Mar 02, 2006 12:55 pm, edited 1 time in total.
CISSP, MCSE, CSTA, Security+ SME
<<

pcsneaker

Jr. Member
Jr. Member

Posts: 73

Joined: Mon Nov 07, 2005 12:23 pm

Post Sat Mar 04, 2006 8:52 am

Re: Hacking with Live Linux Distros

It' s shame it only comes as a live disk, though one of my colleagues recomended installing a raw Linux kernel, and copying on top of that all the programs, desktop, features, shell, tools etc. from the Knoppix disk.


No need to do so. Knoppix includes a script to install theLive-CD on Harddisk.
MCSA:Security (W2k, W2k3)
MCSE:Security (W2k, W2k3)
CPTS, Network+
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Sun Mar 05, 2006 2:33 pm

Re: Hacking with Live Linux Distros

pcsneaker wrote:
It' s shame it only comes as a live disk, though one of my colleagues recomended installing a raw Linux kernel, and copying on top of that all the programs, desktop, features, shell, tools etc. from the Knoppix disk.


No need to do so. Knoppix includes a script to install theLive-CD on Harddisk.


Yes, I've discovered it here. I've actually decided to give it a go. I've become a bit dissappointed with Kubuntu, because I've come across some irritating bugs that just won't go away, and with the Knoppix live CD it works fine.

I'll install the Knoppix 4.0.2 on my hard drive using the "sudo knoppix-installer" command from one CD, and then install the tools from my Knoppix-STD 0.1 CD using the "apt-cdrom add" command. If all goes well I'll stick with the Knoppix, if not I'll revert back to Kubuntu.
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

Kev

Post Thu Jun 29, 2006 10:41 am

Re: Hacking with Live Linux Distros

I have tried a lot of different Distros , but for me Backtrack is the best. I like it so much I decided to DL to the hard drive on one of my laptops for a more permanent install.
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Thu Jun 29, 2006 11:29 am

Re: Hacking with Live Linux Distros

I agree. Now that Backtrack v1.0 has been officially released, I've been using it with great satisfaction. In fact, I'm using it in a virtual machine for testing in my CEH boot camp (right now BTW).

I do like your thought on making it permanent on a laptop. When I get time, I plan on doing the same. Until I get there, would you be willing to share the method in which you did this with the community? If yes, start a new thread.

Thanks in advance,
Don
CISSP, MCSE, CSTA, Security+ SME
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Thu Jun 29, 2006 12:59 pm

Re: Hacking with Live Linux Distros

There's a new security distro out! Nubuntu 6.06 which stands for Network Ubuntu (for the security aware). It's basicly a linux kernel based on Ubuntu linux with a fluxbox desktop and a whole lot of tools.

I've downloaded and burned a copy, but have yet to play around with it. The beta copy I tried a few months ago was quite disappointing, but then again that was a beta. The beta version of Backtrack was also not impresive but the final version is quite a masterpiece. Maybe Nubuntu will also impress.
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Thu Jun 29, 2006 3:08 pm

Re: Hacking with Live Linux Distros

There's yet another based on SUSE. Look for it at VMware's site:

http://www.vmware.com/vmtn/appliances/directory/

Filter 'Solution Area' by 'Security.'

Don
CISSP, MCSE, CSTA, Security+ SME
<<

ZoZa

Newbie
Newbie

Posts: 1

Joined: Sun Sep 03, 2006 7:52 am

Post Sun Sep 03, 2006 8:53 am

Re: Hacking with Live Linux Distros


Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 2 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software