.

Q&A for Pen Testing Perfect Storm Webcast Series: Part I

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Tue Oct 14, 2008 5:06 pm

Q&A for Pen Testing Perfect Storm Webcast Series: Part I

This is the place to be following Part I of this webcast series that took place at 1:00 PM EST on Wednesday October 15, 2008:

Combining Network, Web App and Wireless
into the Ultimate Penetration Test


EH-Net members are invited to keep the conversation going with Kevin Johnson, Josh Wright and Ed Skoudis from InGuardians. These 3 security experts will be with us for about a week (depending on their time constraints) after each webcast to answer your questions. We will also post the links to webcasts as they become available.

If you are not an EH-Net Member, please register now to post questions.

Feel free to ask away...

Many thanks to SANS and Core Security for making this possible,
Don
EH-Net Editor-in-Chief




You can click on the same link when first viewing the webcast to see it again... or the first time if you are just joining us. Just in case:

Last edited by don on Wed Jan 14, 2009 1:21 am, edited 1 time in total.
CISSP, MCSE, CSTA, Security+ SME
<<

joswr1ght

Newbie
Newbie

Posts: 11

Joined: Wed Oct 15, 2008 12:55 pm

Post Wed Oct 15, 2008 12:58 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

Thanks Don, and thanks to everyone who caught the webcast today.  Please post your questions and comments here; looking forward to hearing your thoughts!

-Josh
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1905

Joined: Mon Dec 11, 2006 3:23 pm

Post Wed Oct 15, 2008 1:03 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

Great webcast guys! I enjoyed it and am looking forward to the next one.

There was a tool mentioned on the 'Using XSS to pivot' slide... it was briefly mentioned about comparing administrative interface fingerprints (or something similar). Can you post a link/name of that tool or maybe a brief rundown of what it does if I misunderstood?

Thanks again!

BillV
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Wed Oct 15, 2008 1:03 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

The live Q&A is asking about tools. Ed mentioned that he will do his best to list them here. To get you started, a number of great software can be found in our Tools Board.

Don
CISSP, MCSE, CSTA, Security+ SME
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Wed Oct 15, 2008 1:11 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

Another of the live Q&A questions was about virtual images for your pen testing labs. VMware has a great repository of images:

http://www.vmware.com/appliances/

Also, Josh mentioned getting bootable versions of distros. One cool thing you can do is set VMware to boot the ISO of the bootable distro you just downloaded. This way you can run multiple of them at the same time both on the attacker and victim side.

Hope this helps,
Don
CISSP, MCSE, CSTA, Security+ SME
<<

solidvision

User avatar

Newbie
Newbie

Posts: 1

Joined: Tue Jul 15, 2008 1:09 pm

Location: Dallas, GA

Post Wed Oct 15, 2008 1:19 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

Hey guys, thanks for taking the time to do this presentation.  It was very helpful and informative.  I have a ton of question as I am new to the field, but I won't bother you with those.  My only real important question that I didn't hear much about during the presentation is hardware related.  I've had trouble getting the right wireless cards to work with software that I've tried in the past.  Do you have any recommendations as to which hardware to use for wireless testing?

Again, thanks for the webinar!
<<

PreferredUser

Newbie
Newbie

Posts: 1

Joined: Wed Oct 15, 2008 1:17 pm

Post Wed Oct 15, 2008 1:37 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

One of the additional areas that I would like to see discussed in relation to pen testing is from the forensic side.  For example are there markers to be read in a memory grab, magic numbers for the processes that can be grepped from an image (or the memory), what are some of the tell tales that can be found post-mortem.  I know 508 covers some of the post-mortem topics, but in a live forensic environment there has not been as much presented.
<<

edskoudis

Newbie
Newbie

Posts: 10

Joined: Tue Dec 18, 2007 6:26 am

Post Wed Oct 15, 2008 1:59 pm

Tools

I’d also like to thank all those who joined us on the webcast today.  We really appreciate your interest and participation!  Thanks also to Core Security Technologies, our gracious webcast sponsor.

On the webcast, I promised I’d post a list of some of the tools we referenced.  This list isn’t exhaustive, but does represent the majority of the functionality we discussed.

BeEF, the Browser Exploitation Framework, by Wade Alcorn, available at http://www.bindshell.net/tools/beef

AirCSRF, “Air-Sea-Surf”, by Garland Glessner, not yet released publicly… stay tuned.

Yokoso!, by Kevin Johnson, et al, release imminent, to be available at http://sourceforge.net/projects/yokoso/

Samurai Web Testing Framework, by Kevin Johnson, et al, available at http://sourceforge.net/projects/samurai

Metasploit, by HD Moore, et al, available at http://www.metasploit.com

AirPwn, by Toast, available at http://airpwn.sourceforge.net/Airpwn.html

Of course, the techniques we discussed can be stitched together from any number of tools, but the items above were specifically mentioned and are very useful.

Hope this helps—
--Ed Skoudis.
InGuardians
<<

joswr1ght

Newbie
Newbie

Posts: 11

Joined: Wed Oct 15, 2008 12:55 pm

Post Wed Oct 15, 2008 2:33 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

solidvision wrote:I've had trouble getting the right wireless cards to work with software that I've tried in the past.  Do you have any recommendations as to which hardware to use for wireless testing?


A lot of people really like the Alfa card; it is USB and high-powered (500 mW with external antenna connector!) and is plug-and-play with just about any modern Linux distribution.  Here is one site that sells this card (no affiliation):

http://www.netgate.com/product_info.php?products_id=665

I still use Atheros 5211 cards with the madwifing drivers.  One madwifing-compatible card that supports 802.11a/b/g with an external antenna connector is at:

http://www.netgate.com/product_info.php?products_id=130

The madwifing cards work great with distributions like Backtrack 3, but will require patching and recompiling your kernel for other Linux distributions.  The patch for this card is on the Aircrack-ng site:

http://patches.aircrack-ng.org/

Best of luck!

-Josh
<<

joswr1ght

Newbie
Newbie

Posts: 11

Joined: Wed Oct 15, 2008 12:55 pm

Post Wed Oct 15, 2008 2:37 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

BillV wrote:There was a tool mentioned on the 'Using XSS to pivot' slide... it was briefly mentioned about comparing administrative interface fingerprints (or something similar). Can you post a link/name of that tool or maybe a brief rundown of what it does if I misunderstood?


Yokoso!, by Kevin Johnson, et al, release imminent, to be available at http://sourceforge.net/projects/yokoso/.

Yokoso! is a tool to identify the administrative interfaces used through fingerprinting techniques.  This can be helpful to sort through the page history of a browser controlled by a pen-tester to identify valuable targets to exploit (e.g. previously logged-in administrative pages).

-Josh
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1905

Joined: Mon Dec 11, 2006 3:23 pm

Post Wed Oct 15, 2008 3:03 pm

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

Excellent! Thanks, Josh! Will keep a watch out for its release :)
<<

rAWjAW

Newbie
Newbie

Posts: 1

Joined: Wed Oct 15, 2008 5:07 pm

Post Wed Oct 15, 2008 5:13 pm

Available Online

Unfortunately I was only able to make it until the last half of the presentation and I was wondering if it will be available online again for people to watch (such as the Pentest Ninjitsu series).  Thanks in advance.
<<

joswr1ght

Newbie
Newbie

Posts: 11

Joined: Wed Oct 15, 2008 12:55 pm

Post Wed Oct 15, 2008 7:48 pm

Re: Available Online

rAWjAW wrote:Unfortunately I was only able to make it until the last half of the presentation and I was wondering if it will be available online again for people to watch (such as the Pentest Ninjitsu series).  Thanks in advance.


No worries, you can catch the recorded version.  Visit:

https://www.sans.org/webcasts/show.php?webcastid=91601

And click "Click here to register for this webcast."; you'll need to fill in a form but you can de-select "share this information with the sponsor".

-Josh
<<

hawaii67

User avatar

Newbie
Newbie

Posts: 6

Joined: Thu Nov 09, 2006 2:46 am

Post Thu Oct 16, 2008 1:22 am

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

Great webcast. Will also the slides be available soon??
Thanks so far.

EDITED: Thanks, found them. I'm looking forward to PART II. See you.
Last edited by hawaii67 on Thu Oct 16, 2008 1:24 am, edited 1 time in total.
<<

KevinInGuardians

Newbie
Newbie

Posts: 15

Joined: Wed Oct 15, 2008 1:26 pm

Post Thu Oct 16, 2008 8:42 am

Re: Q&A for Pen Testing Perfect Storm Webcast Series: Part I

BillV wrote:There was a tool mentioned on the 'Using XSS to pivot' slide... it was briefly mentioned about comparing administrative interface fingerprints (or something similar). Can you post a link/name of that tool or maybe a brief rundown of what it does if I misunderstood?


Hi BillV,

The tool we mentioned is Yokoso! and will be at yokoso.inguardians.com.  We are currently looking to get fingerprints from people and are hoping to get the first set of tools out this weekend. (Depending on my copious amounts of free time)

If you would like to help out,  yokoso@inguardians.com or the developers mailing list are perfect places.

Kevin
Next

Return to Special Events

Who is online

Users browsing this forum: No registered users and 2 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software