Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 22

Thread: Simple Pen-test Using Nmap, Nikto, Bugtraq, Nslookup and Other Tools

  1. #11
    King Tutorial-ankhamun
    Join Date
    Jul 2004
    Posts
    897
    Yes, it could take quite awhile. give it at least 5 min. Are you sure the IP is up?

  2. #12
    Senior Member genXer's Avatar
    Join Date
    Jun 2005
    Posts
    252
    What IronGeek has provided is a *very* basic pen test. I'm certain he didn't go on to show the actual technique of compiling, reporting and running the exploit because of liability concerns (rightly so). In a real pen test, there is usually a POC (proof of concept) section where you publish specific details on the actual success rates of known (sometimes unknown) vulnerabilities on the box/device.

    Just a suggestion for ya Irongeek. Many folks here have never done a real pen test (some don't even know what that's short for) so you may want to note in your video tut that you are only covering the initial steps of the process, not a complete penetration test.
    First - Irongeek - thanks for this post - great stuff.

    Second - th13 - do you have information on sources for conducting 'good' pen testing?

    Thanks!
    \"We\'re the middle children of history.... no purpose or place. We have no Great War, no Great Depression. Our great war is a spiritual war. Our great depression is our lives. We\'ve all been raised by television to believe that one day we\'ll all be millionaires and movie gods and rock stars -- but we won\'t. And we\'re learning slowly that fact. And we\'re very, very pissed off.\" - Tyler (Brad Pitt) Fight Club.

  3. #13
    Junior Member
    Join Date
    May 2003
    Posts
    6
    I took your advice, gave it about ten minutes, and it did finish.

    Now for my Nikto problem. It seems I can only find tarz, which I can't seem to open with windows?

    Thanks for your help, as a newbie I found it quite helpful as a beginning point.
    \" Love is the sugar that rotts your heart \" ~ Iniquity

  4. #14
    King Tutorial-ankhamun
    Join Date
    Jul 2004
    Posts
    897
    I use a Debian based system and just used Apt-get to install it. You may need to compile it yourself. What distro do you use? Also, I assume you found a web server running on the box you scanned?

  5. #15
    Banned
    Join Date
    Aug 2004
    Posts
    534
    you cannot use *nix binaries on on XP system w/out some typle of emulation..

    the easiest thing is probably run a live linux CD (whoppix/knoppix, SuSe)

  6. #16
    King Tutorial-ankhamun
    Join Date
    Jul 2004
    Posts
    897
    Did he say he was on an XP box? I could have missed that. This is the most feed back I've gotten on one of my tuts in quite awhile.

  7. #17
    Junior Member
    Join Date
    May 2003
    Posts
    6
    Im using Windows Xp, with SP1. I'm scanning the box that hosts both my webserver and multiple ircds.
    \" Love is the sugar that rotts your heart \" ~ Iniquity

  8. #18
    King Tutorial-ankhamun
    Join Date
    Jul 2004
    Posts
    897
    I'd see if I could find a Linux boot cd then that has Nikto. If you use the newest version of Knoppix with unionfs you should be able to do an:

    apt-get install nikto

    and get it.

  9. #19
    Junior Member
    Join Date
    May 2003
    Posts
    6
    Will do. Thanks for the help, its greatly appreciated.
    \" Love is the sugar that rotts your heart \" ~ Iniquity

  10. #20
    Senior Member kr5kernel's Avatar
    Join Date
    Mar 2004
    Posts
    347
    Infonomicon TV 5 is out, including Irongeeks PenTest:

    http://www.infonomicon.org/video.php
    kr5kernel
    (kr5kernel at hotmail dot com)
    Linux: Making Penguins Cool Since 1994.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •