From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: <gentoo-hardened-return-171-arch-gentoo-hardened=gentoo.org@gentoo.org> Received: (qmail 28497 invoked by uid 1002); 8 Aug 2003 19:00:17 -0000 Mailing-List: contact gentoo-hardened-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: <mailto:gentoo-hardened@gentoo.org> List-Help: <mailto:gentoo-hardened-help@gentoo.org> List-Unsubscribe: <mailto:gentoo-hardened-unsubscribe@gentoo.org> List-Subscribe: <mailto:gentoo-hardened-subscribe@gentoo.org> List-Id: Gentoo Linux mail <gentoo-hardened.gentoo.org> X-BeenThere: gentoo-hardened@gentoo.org Received: (qmail 9415 invoked from network); 8 Aug 2003 19:00:16 -0000 From: Ned Ludd <solar@gentoo.org> Reply-To: solar@gentoo.org To: zhen@gentoo.org Cc: gentoo-hardened@gentoo.org In-Reply-To: <200308081418.25090.zhen@gentoo.org> References: <200308081418.25090.zhen@gentoo.org> Content-Type: text/plain Organization: Gentoo Linux Developer (Hardened) Message-Id: <1060369345.16905.177.camel@simple> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.3 Date: 08 Aug 2003 15:02:25 -0400 Content-Transfer-Encoding: 7bit Subject: Re: [gentoo-hardened] PenTest LiveCD X-Archives-Salt: 90a0c41a-1d08-4c59-8c1b-6f1f25135e50 X-Archives-Hash: 44c94870817723cf406da30aeed8fefc On Fri, 2003-08-08 at 14:18, John Davis wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Greets all: > I am currently working on putting together a Gentoo LiveCD that can be used > for Penetration Testing on hybrid networks. Basically, the CD will contain > many well known security scanners, possibly some exploits, documentation, > etc. > > What I need is some feedback on what security packages to include. This is > what I have so far: > > Nessus > xfree (using openbox for the wm) > hping > nmap > netcat > whois > iptraf > ettercap > (ethereal included with the above) > johntheripper > samba > traceroute > (ipv6 tools would be nice also.. ) Please include * lsof * fenris * exaiminer * strace * ltrace * gdb * valgrind * elfkickers * paxtest * tcpdump * ngrep * dnsiff * netstat-nat == not in portage yet but worth looking at == * revirt (http://www.eecs.umich.edu/CoVirt/) * amap pretty much every thing on http://www.thc.org/releases.php is something I want to get into portage sooner or later. > > for exploits: > windows dcom exploit > ( I need more here ) > > Documentation: > ?? > > I will also protect the livecd with Project Firewall, and at some point in > time, propolice, etc. > > Please comment on any of the above, as I am always open to suggestions. > > Regards, > //zhen > > - -- > John Davis > Gentoo Linux Developer > <http://www.gentoo.org/~zhen> > > - ---- > Knowledge can be more terrible than ignorance if you're powerless to change > your world. > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.2.2 (GNU/Linux) > > iD8DBQE/M+lxZlASNRlGLUcRAqbjAJ94ghuGpiAXLJOdKsZBM3czfgctQQCgmVmA > 1T09OC25sgXfULpB/IElhl8= > =fAUT > -----END PGP SIGNATURE----- > > > -- > gentoo-hardened@gentoo.org mailing list -- Ned Ludd <solar@gentoo.org> Gentoo Linux Developer (Hardened) -- gentoo-hardened@gentoo.org mailing list