Daniel Compton, Information Security Consultant of 7Safe, took the audience through a demonstration of common risks found that he sees whilst carrying out penetration tests for clients.
This covered two main areas which were "client side attacks" and "pivot attacks". The demonstrations were all based on fully patched Windows operating systems with anti-virus protection, firewall protection and the latest patches for 3rd party products.
Exploit Pack is an licensed GPL product. The penetration testing tool goes beyond simple detecting vulnerabilities to safely exploiting them. Exploit pack is the first commercial grade, integrated vulnerability and penetration testing tool.
One of the best strengths of Exploit Pack is to have a friendly and simple user interface and make the penetration testing task so easy as point and click, drag and drop.
Penetration testing is used to test an infrastructure. With the help of a penetration test you can see what kind of vulnerabilities you have in your infrastructure. Once your infrastructure has been tested, the penetration tester will give you advice on what to do with your infrastructure vulnerabilities.
A list with top security tools.
1. Nmap – Get Nmap Here - nmap -v -sS -A xxx.xxx.xxx.xxx
Ashiyane is a Persian website that is moderated by the Iranian government. I believe that this forum is a great training ground because there are a lot of topics on hacking and security. I have seen topics come by that included hacking facebook servers and myspace profiles.
But on the other side this forum gives a lot of information on how to protect your business against hackers. This is a blackhat and whitehat forum.
The PenTest Magazine is a magazine that is devoted exclusively to penetration testing. The magazine publishes articles by penetration testing specialists and experts in vulnerability assessment and management. So there is enough to read about the penetration testing world.