BackTrack 4: Assuring Security by Penetration Testing

 jQuery  No Responses »
Sep 082011
 

eBook Details:

  • Paperback: 392 pages
  • Publisher: Packt Publishing (May 11, 2011)
  • Language: English
  • ISBN-10: 1849513945
  • ISBN-13: 978-1849513944

eBook Description:

Master the art of penetration testing with BackTrack

  • Learn the black-art of penetration testing with in-depth coverage of BackTrack Linux distribution
  • Explore the insights and importance of testing your corporate network systems before hackers strike it
  • Understand the practical spectrum of security tools by their exemplary usage, configuration, and benefits
  • Fully illustrated with practical examples, step-by-step instructions, and useful tips to cover the best-of-breed security assessment tools

In Detail

BackTrack 4: Assuring Security by Penetration Testing is a fully focused, structured book providing guidance on developing practical penetration testing skills by demonstrating the cutting-edge hacker tools and techniques in a coherent step-by-step strategy. It offers all the essential lab preparation and testing procedures to reflect real-world attack scenarios from your business perspective in today’s digital age.

BackTrack is a penetration testing and security auditing platform with advanced tools to identify, detect, and exploit any vulnerabilities uncovered in the target network environment. Applying appropriate testing methodology with defined business objectives and a scheduled test plan will result in robust penetration testing of your network.

The authors’ experience and expertise enables them to reveal the industry’s best approach for logical and systematic penetration testing.

The first and so far only book on BackTrack OS starts with lab preparation and testing procedures, explaining the basic installation and configuration set up, discussing types of penetration testing (black-box and white-box), uncovering open security testing methodologies, and proposing the BackTrack specific testing process. The authors discuss a number of security assessment tools necessary to conduct penetration testing in their respective categories (target scoping, information gathering, discovery, enumeration, vulnerability mapping, social engineering, exploitation, privilege escalation, maintaining access, and reporting), following the formal testing methodology. Each of these tools is illustrated with real-world examples to highlight their practical usage and proven configuration techniques. The authors also provide extra weaponry treasures and cite key resources that may be crucial to any professional penetration tester.

This book serves as a single professional, practical, and expert guide to developing hardcore penetration testing skills from scratch. You will be trained to make the best use of BackTrack OS either in a commercial environment or an experimental test bed.

A tactical example-driven guide for mastering the penetration testing skills with BackTrack to identify, detect, and exploit vulnerabilities at your digital doorstep.

What you will learn from this book :

  • Initiate the BackTrack OS environment in your test lab by installing, configuring, running, and updating its core system components
  • Draw a formal BackTrack testing methodology
  • Scope your target with definitive test requirements, limitations, and business objectives, and schedule the test plan
  • Gain practical experience with a number of security tools from BackTrack logically divided into sub-categories of testing methodology
  • Practice the process of reconnaissance, discovery, enumeration, vulnerability mapping, social engineering, exploitation, privilege escalation, and maintaining access to your target for evaluation purposes
  • Document, report, and present your verified test results to the relevant authorities in a formal reporting structure
  • Assess the various technologies comprising your target information system’s environment, such as web applications, network administration servers, workstations, Cisco devices, firewalls, load balancers, routers, switches, intrusion detection and prevention devices, and many more
  • Examine and research the vulnerability in greater detail before attempting to exploit it by taking control of the target, thus reducing any false positives
  • Exploit human vulnerability by wrapping yourself with the art of deception to acquire the target

Approach

Written as an interactive tutorial, this book covers the core of BackTrack with real-world examples and step-by-step instructions to provide professional guidelines and recommendations to you. The book is designed in a simple and intuitive manner, which allows you to explore the whole BackTrack testing process or study parts of it individually.

Who this book is written for

If you are an IT security professional or network administrator who has a basic knowledge of Unix/Linux operating systems including awareness of information security factors, and you want to use BackTrack for penetration testing, then this book is for you.

MediaFire Download 14.75Mb

 Posted by Hà con at 05:30  Tagged with: , ,

Total Training – Backtrack DVD Tutorials

 Linux  3 Responses »
Jan 092010
 

Name: Backtrack DVD Tutorials
Size: 5.6GB
Include:
Installing Backtrack 3
Episode 1 – Network Hacking – Arp Poisoning
Episode 2 – Wireless Hacking – Cracking WEP
Episode 3 – Wireless Hacking – DeAuth
Episode 5 – Lock Picking – Bump Key
Episode 6 – Phone Phreaking – Beige Box
Episode 7 – Phone Phreaking/Network Hacking – Sniffing VOIP
Episode 8 – Lock Picking – DIY Padlock Shims
Episode 9 – Lock Picking – Mult-Disc Combo Locks
Episode 10 – Hacking Basics – MD5
Episode 11 – Website Hacking – Sql Injection
Episode 12 – Hacking Basics – Backtrack
Episode 13 – Website Hacking – XSS
Episode 14 – Staying Secure – SSH Tunnel
Episode 15 – Modding – Xbox Softmod
Episode 16 – Wireless Hacking – Cracking WPA
Episode 17 – Triple Boot – Windows, Backtrack, & Ubuntu
Episode 18 – Local Password Cracking
Episode 19 – Lock Picking Basics
Episode 20 – Ettercap
Episode 21 – XSS Tunnel
Episode 22 – Playstation 2 Softmod
Episode 23 – Cracking WEP Update
Episode 24 – Bypass Hotspot’s Access Controls

Underground – Install Backtrack 3 on USB
Underground – CSRF(Cross Site Request Forgery)
Underground – Alternate Data Streams
Underground – Local File Inclusion
Underground – Windows Privilege Escalation
Underground – Bluetooth Hacking
Underground – VMWare
Underground – Fix Google Mail Enumerator
Underground – Home Made Lock Picks
Underground – Downfalls of Anti-Virus Software Part 2
Underground – Downfalls of Anti-Virus Software
Underground – Evilgrade
Underground – Trojan Basics
Underground – Manipulating Windows User Accounts
Underground – Combine Files
Underground – Password Phishing
Underground – Windows SMB Relay Exploit
Underground – Application Patching
Underground – Metasploit Autopwn
Underground – Email Spoofing
Underground – Introduction
Extracting Database Information from Information_Schema
FPGA MD5 Cracker
Arduino ARP Cop
Email Injection
Ping of Death
DNS Spoofing with Virtual Hosts
Bypass Cisco Clean Access & Cisco NAC Appliance
Dual Boot – Windows & Backtrack
Sql Injection Challenge How-to
How to use Intel Pro/Wireless 3945ABG in Backtrack 2
Local Privilege Escalation Vulnerability in Cisco VPN Client

Download:
hotfile:

http://hotfile.com/dl/22206150/5055010/BacktrackTut.part01.rar.html

http://hotfile.com/dl/22206170/491d4b6/BacktrackTut.part02.rar.html

http://hotfile.com/dl/22208071/90d3e38/BacktrackTut.part03.rar.html

http://hotfile.com/dl/22208191/dbbcfcc/BacktrackTut.part04.rar.html

http://hotfile.com/dl/22208223/0ab59f3/BacktrackTut.part05.rar.html

http://hotfile.com/dl/22208237/4bf6420/BacktrackTut.part06.rar.html

http://hotfile.com/dl/22208946/1339c55/BacktrackTut.part07.rar.html

http://hotfile.com/dl/22209110/00711c5/BacktrackTut.part08.rar.html

http://hotfile.com/dl/22208949/2b57d54/BacktrackTut.part09.rar.html

http://hotfile.com/dl/22210555/cc08471/BacktrackTut.part10.rar.html

http://hotfile.com/dl/22210524/ed18a58/BacktrackTut.part11.rar.html

http://hotfile.com/dl/22210551/b6294e7/BacktrackTut.part12.rar.html

http://hotfile.com/dl/22211239/6d24299/BacktrackTut.part13.rar.html

http://hotfile.com/dl/22211198/45e1942/BacktrackTut.part14.rar.html

http://hotfile.com/dl/22210896/b70d66b/BacktrackTut.part15.rar.html

rapidshare:

http://rapidshare.com/files/327331770/BacktrackTut.part01.rar

http://rapidshare.com/files/327327365/BacktrackTut.part02.rar

http://rapidshare.com/files/327327660/BacktrackTut.part03.rar

http://rapidshare.com/files/327323828/BacktrackTut.part04.rar

http://rapidshare.com/files/327333876/BacktrackTut.part05.rar

http://rapidshare.com/files/327327535/BacktrackTut.part06.rar

http://rapidshare.com/files/327324000/BacktrackTut.part07.rar

http://rapidshare.com/files/327322929/BacktrackTut.part08.rar

http://rapidshare.com/files/327326376/BacktrackTut.part09.rar

http://rapidshare.com/files/327325818/BacktrackTut.part10.rar

http://rapidshare.com/files/327332866/BacktrackTut.part11.rar

http://rapidshare.com/files/327325790/BacktrackTut.part12.rar

http://rapidshare.com/files/327332469/BacktrackTut.part13.rar

http://rapidshare.com/files/327326886/BacktrackTut.part14.rar

http://rapidshare.com/files/327329050/BacktrackTut.part15.rar

http://rapidshare.com/files/327325280/BacktrackTut.part16.rar

http://rapidshare.com/files/327322054/BacktrackTut.part17.rar

http://rapidshare.com/files/327325142/BacktrackTut.part18.rar

http://rapidshare.com/files/327332579/BacktrackTut.part19.rar

http://rapidshare.com/files/327322451/BacktrackTut.part20.rar

http://rapidshare.com/files/327328912/BacktrackTut.part21.rar

http://rapidshare.com/files/327322253/BacktrackTut.part22.rar

http://rapidshare.com/files/327323003/BacktrackTut.part23.rar

http://rapidshare.com/files/327323169/BacktrackTut.part24.rar

http://rapidshare.com/files/327331616/BacktrackTut.part25.rar

http://rapidshare.com/files/327331008/BacktrackTut.part26.rar

http://rapidshare.com/files/327329830/BacktrackTut.part27.rar

http://rapidshare.com/files/327330886/BacktrackTut.part28.rar

http://rapidshare.com/files/327330201/BacktrackTut.part29.rar

http://rapidshare.com/files/327329675/BacktrackTut.part30.rar

Pass if need: clgvn.biz

 Posted by Hà con at 12:12  Tagged with: ,

Backtrack 4

 Linux  10 Responses »
Mar 202009
 

Intro by me:
Mệt với ông này ta, mất khá … ít thời gian nhưng viết ra để sau đỡ mất công tìm lại vậy. Mk, cái thói của mình, trước biết thì éo viết, sau đến lúc cần thì lại … éo nhớ và cứ google loạn cả lên, rất tốn time.

Giới thiệu chút về BackTrack

BackTrack is the most top rated linux live distribution focused on penetration testing. With no installation whatsoever, the analysis platform is started directly from the CD-Rom and is fully accessible within minutes.

It’s evolved from the merge of the two wide spread distributions – Whax and Auditor Security Collection. By joining forces and replacing these distributions, BackTrack has gained massive popularity and was voted in 2006 as the #1 Security Live Distribution by insecure.org. Security professionals as well as new-comers are using BackTrack as their favorite toolset all over the globe.

BackTrack has a long history and was based on many different linux distributions until it is now based on a Slackware linux distribution and the corresponding live-CD scripts by Tomas M. (www.slax.org) . Every package, kernel configuration and script is optimized to be used by security penetration testers. Patches and automation have been added, applied or developed to provide a neat and ready-to-go environment.

Thế là đủ, hem cần viết nhiều =)), các bác tự dịch, em chỉ hiểu mang máng thôi.

LiveUSB với Backtrack

Download BT4 ở đây
http://www.remote-exploit.org/backtrack_download.html

Tình hình là lên bản 4 thế nào nó lại … hơn 800MB, mà burn đĩa DVD thì … tiếc , thui, quyết định bắn qua USB xài cho lành, lượn lờ mãi mượn được con USB 2Gb là thoải mái rồi. Cắm BT qua USB để liveUSB dễ thui.
- Down file ISO về ( đương nhiên ) hoặc copy, mượn … từ bạn bè, được hết – miễn là có.
- Giải nén file ISO ra ( nếu mượn bạn bè thì bỏ qua ).
- Copy toàn bộ thư mục giải nén ra vào USB ( boot và BT4 thui – hem có nhìu ).
- Trong windows, vào thư mực boot, chạy file bootist và cứ next next khi nào xong thì … khởi động lại và trải nghiệm
- Trong linux, mount ổ đĩa

mount -t /mnt/<đặt bừa cái tên> /dev/<tên của ổ usb được nhận>
chmod a+x /mnt/<cái tên vừa đặt bừa>/bootins.sh

rồi cũng next, next, next và.. khởi động lại và trải nghiệm
Rồi, bạn đã có 1 chiếc USB boot BT4.

Mạng với BT

- Mặc định BT khởi động mà tắt mạng – Cái này mới đau, mình bị dính mà không chịu đọc wiki, kết quả là vừa xài BB vô đọc, vừa dùng PC khởi động – bách nhục, ngu không kể tuổi . Để khởi động mạng tự động

/etc/init.d/networking start

hoặc có thể làm bằng tay
b1. gán địa chỉ IP

ifconfig eth0 <địa chỉ IP> netmask <subnet mask>

ví dụ

ifconfig eth0 192.168.1.10 netmask 255.255.255.0

b2. cấu hình defaul Gateway

route add defaul gw <IP của DG>

ví dụ

 route add defaul gw 192.168.1.1

b3. cấu hình DNS

echo "nameserver <IP của DNS server>" /etc/resolv.conf

ví dụ

echo "nameserver 202.67.222.222" /etc/resolv.conf
echo "nameserver 202.67.220.220" /etc/resolv.conf
# của openDNS mà

Việc cài đặt BT lên thì lằng nhằng, viết dài mà giờ buồn ngủ rồi, đi ngủ thôi mai tính tiếp.
… to be continue.

 Posted by Hà con at 11:31  Tagged with: ,
© 2012 Hapm's Blog Suffusion theme by Sayontan Sinha