RE: delving deeper

From: David Taylor (David.Taylor@austrac.gov.au)
Date: Tue Dec 14 2004 - 19:16:54 EST

• Next message: Omar Herrera: "Respuesta: Penetration Testing Methodologies"
• Previous message: Jim Tuttle: "RE: Port mirroring detection"
• Maybe in reply to: Chris Benedict: "delving deeper"
• Next in thread: GuidoZ: "Re: delving deeper"
• Reply: GuidoZ: "Re: delving deeper"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

My favourite is whoppix, another knoppix variant that has a large body
of exploits included.

www.whoppix.net And the site even has some nice demos to get you going
:)

Regards
David Taylor

-----Original Message-----
From: xyberpix [mailto:xyberpix@xyberpix.com]
Sent: Wednesday, 15 December 2004 4:00 AM
To: Chris Benedict
Cc: pen-test@securityfocus.com
Subject: Re: delving deeper

Hi Chris,

Go and download a copy of PHLAK(http://www.phlak.org), there's a load of
good docs on the disc, and some really good tools to get you going.
Above
it all it's Linux, so it should run on your machines.
Aside from that scour the net for anything pertaining to pen testing and
security, and read as much as you can possibly tollerate, it'll be worth
it in the end.

xyberpix

On Mon, 13 December, 2004 10:34 pm, Chris Benedict said:
> Hi, I've been looking at security and penetration-testing for some
> time now and would like to get further into it. I'd like to learn
> more about penetration-testing, forensics, techniques for network
> exploration/mapping, web application security and incedent handling.
> However I'm not really sure where to start, I looked at the OSSTMM and
> it was above my head.
>
> At the moment I have a very limited budget and only a few spare
> low-end computers. If it matters, I'm mainly running OpenBSD. Are
> there any particular books or other media that I should take a look
at?
>
> Any thoughts or recommendations are welcomed and greatly appreciated.
>
> -Chris Benedict
>

-- 
For security and Opensource news check out:
http://www.xyberpix.com
**********************************************************************
Please  note  that  your  email address  is known to  AUSTRAC  for the
purposes  of  communicating with you.  The information  transmitted in
this  e-mail is  for the  use of  the intended  recipient only and may
contain confidential and/or legally  privileged  material. If you have
received  this information  in error you must not disseminate, copy or
take  any  action on  it and we  request that you delete all copies of
this transmission together with attachments and notify the sender.
This footnote also confirms that this email message has been swept for
the presence of computer viruses.
**********************************************************************

• Next message: Omar Herrera: "Respuesta: Penetration Testing Methodologies"
• Previous message: Jim Tuttle: "RE: Port mirroring detection"
• Maybe in reply to: Chris Benedict: "delving deeper"
• Next in thread: GuidoZ: "Re: delving deeper"
• Reply: GuidoZ: "Re: delving deeper"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:11 EDT