Slashdot Mirror
Nmap Security Tool Survey
spring writes "Every so often, the author of everyone's favorite network reconnaissance tool, nmap, runs a survey to determine which security-oriented software products are most popular. This year's tool survey was just released, and it contains some interesting results. Old favorites like Nessus, Snort, Netcat, and Ethereal made the list, of course. SAINT and SARA are still around. But a number of new tools appeared this year, like Windows-only GFI LANguard, SuperScan, and Cain & Abel. Nikto and Kismet demonstrate the growing importance of wireless networks. The survey contains many good tools. Certainly worth a read."
FIRST POST FUX0R5
that's what you all are
have a nice day, fags
FP! I have an FP.
I rock.
I's a needing more hos
"Certainly worth a read."
Michael, you're getting almost as bad as... COMMANDER TACO! "Read" is NOT a noun, so you don't use an article as you would with one.
Warning: Spoiler in topic!
remember that these tools aren't going to be the "end all/be all" of network security.
You also have to have a good preventive security plan, which these tools will help out in. However, there should also be a plan of action should these security measures get bypassed (i.e. an insider job, program exploits, trojans, etc...)
But that's just my contention...
Join the TWIT army now!
How it's better... I'm not sure... But it is an excellent tool.
||| I still can't believe Parkay's not butter.
It's too bad. I'd liked to use it sometimes ;)
"But a number of new tools appeared this year, like Windows-only GFI LANguard, SuperScan, and Cain & Abel."
Cain & Abel has been around for ages, so maybe a new one on the list, not really a new tool.
Just my two cents.
In need of reliable and affordable server monitoring?
Not kidding, this is serious!
Zone Alam is good for the M$ PC
It's These Guys.
When a windows java exploit can reformat your disk by visiting a malformed web page, you don't really have to wonder why they're so popular.
Hilary and I intend to run these against every machine in the world, ferreting out and destroying those eeeevil P2P pirates!
Ethereal == tcpdump with graphical interface. Incredibly nice tool, but hardly a security tool.
"A door is what a dog is perpetually on the wrong side of" - Ogden Nash
I reccomend these guys instead, they recovered my data from a molten slop of metal!
it sucks. If you want to totally secure, none of these can do it, they do help and prevent most attacks but they do have flaws. To be totally secure you would have to isolate your computer from all networks.
In other words no internet; I told you it sucks
for those interested in sec tools on mac OS X, here is a small list of tools to add :
rpg password generator
kismac a kismet equivalent that also includes a WEP cracker. very nice!
macanalysis a really good security tools suite
... hitting the reply button, whilst logged in, reveals the post anonymous check box is still there.
No idea why you do not see it. Perhaps post your config instead of just cursing at the owners? maybe it's only broken with some combinations?
FWIW, old coal burner pentium, linux,i686, moz 1.3b browser
just run an http proxy through a serial port so that the windows system can't use any other type of connection.
I'd like to see zone alarm beat that! My solution wouln't give any modal dialog boxes either.
You can't judge a book by the way it wears its hair.
WHERE'S THE 5DWM, NICK?
WHERE IS IT?
Lameness filter encountered. Post aborted!
Reason: Don't use so many caps. It's like YELLING.
Although it wasn't on the list, Wellenreiter is really great wireless scanner. Plus, it runs on the Zaurus under OZ3, which makes it great for less conspicuous scanning since you don't have to lug a laptop around.
Eric MASSON, where is 5dwm
Has anyone seen a decent piece of software that can find WAP's on your network by scanning from the wired part of your network?
What I want is something that scans for known MAC ID's or something to identifiy wireless access points without having to fly all over the country to do it.
There are plenty of wireless based scanners but they involve travel.
Any hints?
About 70-80% of an "average" human poop consists of water. Water is absorbed out of fecal material as it passes through the intestine, so the longer a poop resides inside before emerging, the drier it will be.
Much of the remaining portion of the poop, about 1/3 is composed of dead bacteria.
These microcorpses come from the intestinal garden of microorganisms that assist us in the digestion of our food.
Another 1/3 of the poop mass is made of stuff that we find
indigestible, like cellulose, for instance.
This indigestible material is called "fiber," and is useful in getting the poop to move along through the intestine, perhaps because it provides traction.
The remaining portion of poop is a mixture of fats such as
cholesterol, inorganic salts like phosphates, live bacteria, dead
cells and mucus from the lining of the intestine, and protein.
Poop has an odor ("stinks") as a result of the products of bacterial action. Bacteria produce smelly, organic compounds such as indole, skatole, and mercaptans, and the inorganic gas hydrogen sulfide. These are the same compounds that give farts their odor.
The color comes mainly from bilirubin, a pigment that arises from the breakdown of red blood cells in the liver and bone marrow. The actual metabolic pathway of bilirubin and its byproducts in the body is very complicated, so we will simply say that a lot of it ends up in the intestine, where it is further modified by bacterial action. But the color itself comes from iron. Iron in hemoglobin in red blood cells gives blood its red color, and iron in the waste product bilirubin gives rise to its brown color.
Poop is mostly shades of brown or yellow, but other colors can arise under certain circumstances. For example, someone with a bleeding ulcer might have tarry black poop from the presence of partially digested blood. Bleeding in the intestine, from an anal fissure or split, for example, can stain the poop red. Some illnesses in babies gives them green or even blue-green poop. But another source of blue poop in children is more innocent: it can come from eating a concentrated source of blue food coloring such as ice cream. Intense red food coloring can produce bright red poop. Sometimes brightly colored foods pass through the gut almost unchanged, and the poop may
be speckled with bright red fragments such as pimentos, or bright yellow kernels of corn.
Many animals eat poop on a regular basis. These include rabbits, rodents, gorillas, many insects such as dung beetles and flies, and yes, dogs. (Keep that in mind the next time a dog wants to lick you!) Herbivores such as rabbits and rodents eat their own poop because their diet of plants is hard to digest efficiently, and they have to make two passes at it to get everything out of the meal. This is equivalent to a cow chewing its cud, only cows are able to re-eat their food without having to poop it out first. Another reason why animals eat poop is that poop contains vitamins produced by their intestinal bacteria. The animal is unable to absorb the vitamins through the intestinal wall, but can get at them by eating the poop. Another reason that animals such as dogs and flies eat poop is that
poop contains a certain amount of protein. Dogs are particularly fond of cat poop because cat poop is high in protein.
People all have eaten poop at one point or another. One of the main ways that diseases and parasites spread is through the consumption of food and water contaminated with feces. This happens because people don't wash their hands carefully after pooping or changing a diaper or scratching their butt. It can also happen through careless disposal of diapers.
You can definitely get sick from eating poop, even in minute
quantities! Although urine emerges sterile from the body (unless the person has an infection), poop emerges loaded with bacteria and sometimes other life forms. Many diseases, including food poisoning, cholera and typhus, are spread by fecal contamination. Many par
Huh?
While all these tools turn out to be the Security Analyst's bible to utopia, they're also the ultimate cracker tools, missing only the Xploits that the old neverending line of script-kiddies use to bypass each and every point that these tools do their best to detect.
Nessus is, however, a single tool, that can be as both useful to the white hat5 as it is the bl4ck hats.
It gets my number one tool vote as being as useful to both partys - yet completely impartial.
A very difficult road to tread indeed...
In the last couple weeks I've amassed a few servers and a client network so, I've had no choice but to become a sysadmin. Which is not what I consider myself (I'm a graphic designer/Web App Programmmer) but, for the sake of responsibility, I find myself fast becoming one.
So I welcome any such article as the one posted here to help better educate me and get me up to date on the even the most mundane of utilities (I hadn't even heard of nessus/netcat)
I'm not a fresh unix convert or technically challenged, it's just that my occupation has demanded that I focus on front end and applicational development rather than network security and monitoring.
So to get by I've been using very basic common sense like running firewalls for port blocking, not running insecure services such as telnet and in the event that i have to (one of my servers is a multiuser webhost so I had to turn FTP on) research and run a more secure variant of that service (for FTP I opted for vsftpd over wu/pro)
And for security, besides my basic IP Masquerading and port blocking firewall (ya, it's that basic, I'm no guru) I run tripwire, which I run a sanity check daily as well as run snort.
This config runs on everyting from my OS X laptop to the RH9 boxes for dev/production serving and seems "ok" for the moment.
I do plan on evaluating/installing some kernal level patches to the RH boxen such as grsecurity but I thought I'd use this topic to fish for pointers as I am also looking for some good educational material such as IP/Network configuration and indepth material on properly setting up an ironclad DMZ. So if anyone has some highly recommended links or knows of soome good books on amazon to point out or even comments to make here to give some pointers, i'd be much appreciative.
He developed it as a tool to help system administators secure their system but SGI did not like it because crackers could use it.
Was this SGI tool nmap or not? I was only 16 at the time and can't remember.
http://saveie6.com/
1) Unplug the power cords and network cables / phone lines.
2) Put it back in the box.
3) Send it back to the place that you bought it from.
Sure its not very practical, but it would make my job a hell of a lot easier
FOBBMAN is a FAG! He's a QUEER LIBERAL!!!
I am surprised that aide was not listed. It is a free equivalent to tripwire (which is on the list), and works very well for my needs on both Linux and FreeBSD.
After SAINT the network tool went after the author of Saint (the open source server/service uptime application) over a name/branding dispute, we have stopped recommending their product (the network security tool) entirely.
They were similarly named, however, there was very little chance of them being confused for one another. Apparently SAINT didn't have enough confidence in their own marketing or their customers intelligence to keep their lawyers out of it.
Just my 2 cents worth. But then, my 2 cents has an effect on a few large clients with large budgets. Good Job SAINT.
----- LoboSoft specializes in Digital Language Lab
I belive that you're thinking of Netsaint...aren't you?
:-)
It's now called Nagios
This is always a must read. As are a lot of things at insecure.org.
Some of these tools will allow anyone to monkey f*ck a network if they'd like. Hopefully the script kiddies won't be able to figure these out. LOL!
I'm not the parent...but uh, troll? nah, just funny/offtopic.
IRIX has changed a lot over the past 6 years. At one point, a stock install of IRIX had almost a dozen root-exploitable holes. These days security holes in IRIX are rare, and are quickly patched by SGI. The company has gone a step further and has actually been making useful security suggestions to its customers. IRIX 6.5 includes a pointy-clicky GUI app to help its artsy users secure some common weaknesses.
For those that have been away from IRIX for awhile, even since 6.5.0 shipped, a lot has been added in recent years... IPFilter, SSH, Kerberos, and other security-aware goodies are now offically supported and have been added in IRIX updates.
IRIX is no OpenBSD, but it has come a LONG way to make itself more secure, especially over the past two years. These days it's on-par with most Linux and Unix distros... average is a pretty good step up from what it once was.
Where'd they get the name nikto? It sounds like the Russian word for nobody.
On the same page is a link to a tool called YaHa. Why the capital H? Makes it kinda look like "I'm on" in Russian, but I don't know what that would mean.
1) Update your install of IRIX 6.5 to the most recent version available to you (6.5.16m for most people, 6.5.19 or 6.5.20 for those with a support contract). If you're unsure about updating, read about the IRIX Release Process as well as theIRIX Compatibility Mandate.
2) Install the security patches for your version of IRIX (note that IRIX releases previous to 6.5.15 will probably not have the most recent security patches available).
3) If you're a security newbie, run the "Improve System Security" application... it can be found under the Security and Access Control section of the System Manager.
4) Install IPFilter, be sure to learn how to use it.
5) Subscribe to SGI's security advisory mailing list.
6) Newbies outta read some of SGI's other sysadmin manuals as well:
Personal Sysadmin
IRIX Admin
7) Update your various freeware apps... be sure to read the seperate freeware security notice:
http://freeware.sgi.com
i certainly learned something new
Retina, by Eeye, is another excellent scanning school. IMHO, it's better than GFILanguard. I especially like the ability to fix registry problems from the scanning machine. It's interface is also very smooth. It's located here. They also have another product for scanning IIS, but I haven't used it yet.
Maybe we DID take the blue pill. You wouldn't remember anyway.
APTools is one example.
Why is this flamebate.