From: Erin Carroll (amoeba@amoebazone.com)
Date: Tue Feb 21 2006 - 16:19:38 EST
I would like to expand on this question to list members to see which of
the security-focused live CD distros people have used and what
shortcomings or strengths you've observed. Which have you used in the past
and what would you like to see included as part of a "core security
testing distro"? Has the underlying OS choice played a part in your
selections (debian vs slack vs *BSD etc)?
Lately I have been taking the beta Backtrack distro from
remote-exploit.org out for a spin. Backtrack, which has taken the WHAX and
Auditor distributions and expanded upon them, seems to be much more
wireless focused in the core tools but there are some nice additions in
the forensic analysis tools sections you don't normally see in other
distros. While I have some minor nitpicks about the interface (and my
personal preference to debian vs. the slackware which Backtrack sits on),
overall it seems to be a very solid and flexible option for a
load/point/shoot security distro.
In any event, when addressing this thread, if members wouldn't mind adding
some hands-on experiences it would be much more helpful than a generic
list of distros out there.
Thanks!
Erin Carroll
Moderator
SecurityFocus pen-test mailing list
On Tue, 21 Feb 2006, Toby Barrick wrote:
> All,
>
> Once upon a time I saw a list of bootable CDs that contained most of
> "the tools of the trade." I just burned Knoppix 4.0 but there were a few
> that were a bit more Security centric.
>
> Could someone point me in the right direction to find those again?
>
> Thanks!
>
>
> ------------------------------------------------------------------------------
> Audit your website security with Acunetix Web Vulnerability Scanner:
>
> Hackers are concentrating their efforts on attacking applications on your
> website. Up to 75% of cyber attacks are launched on shopping carts, forms,
> login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
> futile against web application hacking. Check your website for vulnerabilities
> to SQL injection, Cross site scripting and other web attacks before hackers do!
> Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> -------------------------------------------------------------------------------
>
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:33 EDT