NetSecL is not new on the block but was outdated and as it is updated its back in action! We had even mentioned it in our List of TOP LiveCD’s for Penetration Testers post here.
It was time for a change and NetSecL realized that! The new version of NetSecL 3.0 is a live DVD + installation based on OpenSuse. Once installed you can fully enjoy the features of GrSecurity hardened kernel and penetration tools OR if you like to do some penetration testing you can directly run all tools from the live DVD. NetSecL firewall is included as always and most of the penetration tools are ported to the new platform. Also like to mention that threr are many other programs up and running with GrSecurity enabled, which is great success especially when it comes to programs like wine, OpenOffice, Vuze, Qemu and many gnome applications. The password for both admin and root user on the DVD is linux.
Warning: When you install use ext3, as it is tested for root partition.
Minimal System Requirements for running the live DVD: 512 MB of RAM
Minimal System Requirements for installing: 1 GB of RAM, 5 GB partition at least SATA is also tested
With that said we think that the new version of NetSecL is fully function as a Desktop, Server and Penetration testing environment.
Download NetSecL v3.0 here
Searches leading to this post:
netsecl admin password,
NetSecL 3 0,
Creating netsecl usb,
netsecl admin,
netsecl usb,
newest google dorks
Tagged as: LiveCD, NetSecL, Penetration Testing, Security tools
This week its full of updates major security tools are been updated. Just like VAST Live Distro beta 2.77!
“VAST is a VIPER Lab live distribution that contains VIPER developed tools such as UCsniff, videojak, videosnarf and more. Along with VIPER tools and other essential VoIP security tools, it also contains tools penetration testers utilize such as Metasploit, Nmap, and Hydra.“
This is from Artemisa: “Artemisa is a VoIP/SIP-specific honeypot software designed to connect to a VoIP enterprise domain as a user-agent back end in order to detect malicious activity at an early stage. Moreover, the honeypot can play a role in the real-time adjustment of the security policies of the enterprise domain where it is deployed.”
Download VAST Live Distro beta 2.77 here
Searches leading to this post:
live cd penetration distro 2010,
netsparker 1 5 0 0 enterprise download,
pen testing live cd,
update Vast
Tagged as: LiveCD, Penetration Testing, UCSniff, VAST, VideoJak, VideoSnarf, web application security
REMnux is a lightweight Linux distribution for assisting malware analysts in reverse-engineering malicious software. The distribution is based on Ubuntu.
REMnux is designed for running services that are useful to emulate within an isolated laboratory environment when performing behavioral malware analysis. As part of this process, the analyst typically infects another laboratory system with the malware sample and directs potentially-malicious connections to the REMnux system that’s listening on the appropriate ports.
REMnux is also useful for analyzing web-based malware, such as malicious JavaScript, Java programs, and Flash files. It also has tools for analyzing malicious documents, such as Microsoft Office and Adobe PDF files, and utilities for reversing malware through memory forensics. In these cases, malware may be loaded onto REMnux and analyzed directly on the REMnux system without requiring other systems to be present in the lab.
You can learn about malware analysis techniques that make use of the tools installed and pre-configured on REMnux by taking the SANS Institute course on Reverse-Engineering Malware (REM). Hence the name – REMnux.
REMnux does not aim to include all malware analysis tools in existence. Many of these tools are designed to work on Windows, and investigators prefer to use Windows systems for running such tools. If you are interested in running Windows analysis tools on a Linux platform.
Tools included on REMnux:
Analyzing Flash malware: swftools, flasm, flare
Analyzing IRC bots: IRC server (Inspire IRCd) and client (Irssi). To launch the IRC server, type “ircd start”; to shut it down “ircd stop”. To launch the IRC client, type “irc”.
Network-monitoring and interactions: Wireshark, Honeyd, INetSim, fakedns and fakesmtp scripts, NetCat
JavaScript de-obfuscation: Firefox with Firebug, NoScript and JavaScript Deobfuscator extensions, Rhino debugger, two versions of patched SpiderMonkey, Windows Script Decoder, Jsunpack-n
Interacting with web malware in the lab: TinyHTTPd, Paros proxy
Analyzing shellcode: gdb, objdump, Radare (hex editor+disassembler), shellcode2exe
Dealing with protected executables: upx, packerid, bytehist, xorsearch, TRiD
Malicious PDF analysis: Dider’s PDF tools, Origami framework, Jsunpack-n, pdftk
Memory forensics: Volatility Framework and malware-related plugins
Miscellaneous: unzip, strings, ssdeep, feh image viewer, SciTE text editor, OpenSSH server
REMnux is a virtual server we liked it very much. It is easy to use if you can play with Linux.
Download REMnux version 1.0 here
Searches leading to this post:
cache:ApqipPv-DcEJ:pentestit com/2010/07/08/remnux-tool-reverseengineering-malware/ exploit lab which linux distro,
linux reverse engineering tutorial,
linux reverse engineering vs open source,
REMnux tutorial,
reverse engineering on linux,
security tools distribution
Tagged as: LiveCD, Malware Analysis, REMnux, Reverse Engineering
