Penetration Testing mailing list archives

RE: Exploit Archive

From: "Todd Towles" <toddtowles () brookshires com>
Date: Mon, 23 Aug 2004 23:02:34 -0500

L.S.A is a good one and so are the other linux live-cd that have been
talked about on here. But to keep up with the newest updates you need a
live linux filesystem. One that is active and can be updated with the
newest exploits. Nessus, metaploit, nmap. All the new version are not
apart of these linux cds.

Don't get me wrong, I believe they are very useful. I still use Knoppix
3.3 at starbucks, but I don't think we should forget they most of the
program on that have holes (which have been fixed) and are a bit
out-of-date. 

-----Original Message-----
From: bora.dal () coldbytes net [mailto:bora.dal () coldbytes net] 
Sent: Monday, August 23, 2004 10:32 AM
To: pen-test () securityfocus com; demott_jared () bah com
Subject: Re: Exploit Archive

Also, from the more practical tools stand point, do you guys just have

everything loaded on one "attack" laptop.
Dual boot, or VmWare?


I would strongly recommend Local Area Security @ Linux
www.localareasecurity.com ,a knoppix derivative with live-cd properties.
The distro can fit into any minidisk(you can even squeeze the bigger
version through) and has hundreds of network auditing, assessment,
forensics tools. Has windowmaker at default and ideal for virtual
machines. Lightweight, low resource consumption, live-cd and Information
security focused.

Regards,

-Bora

------------------------------------------------------------------------
------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Check out our Advanced
Hacking course, learn to write exploits and attack security
infrastructure. Attend a course taught by an expert instructor with
years of in-the-field pen testing experience in our state of the art
hacking lab. Master the skills of an Ethical Hacker to better assess the
security of your organization.

http://www.securityfocus.com/sponsor/InfoSecInstitute_pen-test_040817
------------------------------------------------------------------------
-------


------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------

Current thread:

Re: Exploit Archive, (continued)
- Re: Exploit Archive Senser (Aug 20)
  - Re: Exploit Archive Robert Rich (Aug 20)
    - RE: Exploit Archive Michael Zanetta (Aug 23)
- RE: Exploit Archive Víctor Chapela (Aug 20)
- RE: Exploit Archive Todd Towles (Aug 20)
  - Re: Exploit Archive Jacob Uecker (Aug 20)
    - Re: Exploit Archive Jose Maria Lopez (Aug 24)
- RE: Exploit Archive Altheide, Cory B. (IARC) (Aug 20)
- RE: Exploit Archive Strand, John (Aug 21)
- Re: Exploit Archive bora . dal (Aug 23)
- RE: Exploit Archive Todd Towles (Aug 24)
- Re: Exploit Archive George Lantz (Aug 24)