Pen testing « secauditor speaks: hmmmm…Security

Now the Tools – Pt.3 Hydra

Posted on October 23, 2008. Filed under: Auditing, Penetration Testing | Tags: Auditing, Hydra, password cracking, Pen testing, Penetration Testing, security auditing |

Ok part 3 of the series of tools used for auditors is based around Hydra
Hydra was a software project developed by a German organization called “The Hacker’s Choice” (THC) that uses a dictionary attack to test for weak or simple passwords on one or many remote hosts running a variety of different services. It was [...]

Read Full Post | Make a Comment ( 1 so far )

SANS offers training on Pentesting, Policy Development, Log Mgt & More….

Posted on October 13, 2008. Filed under: General, Training | Tags: Logging, Pen testing, Policy Develpoment, Training |

Free Training Oppurtunities
WEBCAST 1
The Pen Testing Perfect Storm Series: With Skoudis, Wright and Johnson
Combining Network Web App and Wireless in the Ultimate Penetration Test
WHEN: Wednesday, October 15, 2008 at 1:00 PM EDT (1700 UTC/GMT)
FEATURING: Ed Skoudis, Josh Wright & Kevin Johnson
http://www.sans.org/info/31948
Sponsored By: Core Security http://www.coresecurity.com/
This trio of experts will show you how to assess an [...]

Read Full Post | Make a Comment ( None so far )

Penetration Testing Ninjitsu (Now 3 Part Series)

Posted on February 21, 2008. Filed under: Auditing, Penetration Testing, Training | Tags: Auditing, Ed Skoudis, Intelguardians, netcat, Pen testing, Penetration Testing, SANS |

This is just an Updated Note. THis training is now a 3 part series.
Part I: “Windows Command Line Hero”
A brief introduction to the value of penetration testing + an overview of pen testing techniques using the Windows command shell.
Part II: “Crouching Netcat, Hidden Vulnerabilities”
An introduction to techniques for performing the functions of Netcat – [...]

Read Full Post | Make a Comment ( None so far )