jinwald12

@ajohnson wrote:

Why is everyone saying BackTrack is outdated? It’s based off an LTS version of Ubuntu and is still completely supported: https://wiki.ubuntu.com/LTS

it’s based off of 10.04 (lucid) which while in theory is still LTS but does not get nearly as much attention as other releases and BT uses different repos then normal lucid for most…[Read more]

Are you crazy? It’s never a good idea to run as root the hole point of sudo/levels of privilege is to allow for “security in layers” so that way if they compromise the signed in user an attacker does not have free reign of the system they have to find a way to escalate privileges. And it does not matter if it’s a forensics boot or not backtrack…[Read more]

this is probably the best progressive lock out there http://learnlockpicking.com/

Like the guy above said the best way to get good really fast at lock picking is to get a progressive lock and practice. Lock your self in a room (no pun intended) for a day or so and do nothing but pick locks. And be sure to change up the configuration of the practice lock you are using, switch pins based on weight, size and type until you can…[Read more]

But to be honest use specific VMs are better and more cost efficient. Assuming your virtualization software is up to date its really unlikely that malware will “jump the petri dish” as it where. Also Backtrack 5 runs as root on a outdated version of ubuntu with tons of after market modifications i would not use it to do banking under most circumstances

he forgot to mention the tin foil hats and vpn chaining

for practicing and learning SQL injection i reccomend this lab on a LAMP server: https://github.com/Audi-1/sqli-labs  and if you get stuck the developer of these labs has video tutorials on Security Tube

Against a modern IDS i am not so sure they would not notice and do you really want to risk ending a pen test during the recon phase, because you got caught? I would rather deal with a slightly slow stealthy scan then a fast loud and noticeable scan.

I would have made it multi-threaded, but the thing with brute forcing DNS is it’s noisy-ish, not as noisy as a Zone-transfer but even a half-assed IDS would pick up multi-threaded DNS brute force. also in my Experience python does not do multi-threading well.

i found a book on exploiting these systems:http://tinyurl.com/cq6r869

Don’t get the H it does not support 802.11N or many advanced features that is why the Hakshop no longer sells it they now sell the NHA which is far superior DO NOT I REPEAT DO NOT GET the H

the  Alfa AWUS036H has the shitty reltek chipset and can not do 802.11N so go for the  Alfa AWUS036NHA and the hakshop no longer sells the  Alfa AWUS036H they sell the NHA so regardless of what vivek will tell you it is shit go for the NHA

Mdk3 will suit your needs if scripted, or you can look into http://openwips-ng.org/index.html however it is immature at  this time.

I wrote a article on this with a focus on wifi pen testing, it may be of help to you.
http://resources.infosecinstitute.com/wlan-penetration-test/

There may be a few maverick networks out there, but generally you will be dealing with EAP and WPA2-PSK so focus on that  and get a good GPU rig.

Cracking wep is not that useful for pen testers, as most of the companies that can afford AND want a legitimate penetration test are not using wep. WPA-      enterprise attacks are essential and so are physical attacks on routers and access points as well as a good GPU rig.

be sure to get the alfa card with the atheros chipset as atheros is the gold standard for wifi hacking it has the best compatibility with linux

this is a newer alfa card then the one vivek recommends which in my opinion is shit it can not go into master mode which is vital for EAP attacks on modern kernels but if you can’t get one from a store near where you live i recommend ace hackware they sell this particular card and ship to pretty much anywhere domestically (U.S.) for 10$  and…[Read more]

your welcome i hope this helps you guys get more exposure

alfa makes a newer that can use 802.11N and has an atheros chipset the advantage the atheros chipset has is that it can go into master mode for EAP attacks the problem with the rtl8187 chipset is it can not go into mastermode to be used as a soft ap on modern linux kernels (regardless of the outdated label on the box it comes in) and it also can…[Read more]