Security Basics mailing list archives

RE: Building a 'security consultant' laptop

From: "Con or" <csibley () inbox net>
Date: 11 Apr 2003 21:24:02 -0000

Here is a list of tools that I put on machines of mine before I audit from a network perspective:
nmap
nessus
vlad
ettercap
superscan
enum
dsniff
ForensicToolkit
kismet

Then d/l as many pieces of exploit code as you can find specific to packages and OSes on their network and put them in 
a convenient dir.  It is a good idea to have a full install of redhat so you have gcc, make, mysql and other generic 
information gathering services available to you.
Good places for exploit code include packetstormsecurity.nl and netsys.com.
Happy Hunting,
Conor

-----Original Message-----
From: mr_polanco () hotmail com [mailto:mr_polanco () hotmail com]
Sent: Thursday, April 10, 2003 10:21 AM
To: security-basics () securityfocus com
Subject: Building a 'security consultant' laptop




I wanted your input on how should I go about setting up a laptop that will 
be used for security testing purposes (penetration testing, forensics, 
etc). Also planning to add a pcmcia wireless card (any recommended?

This is the 
laptop:http://www.dell.com/us/en/bsd/products/model_inspn_inspn_1100.htm

I'm planning to dual boot Red Hat 9.0 and Windows 2k, along with 
installing the usual tools like Ethereal, nmap, tcpdump, etc.

What else should I add?  Are these the recomended OS, or would you put 
something else instead? In other words, if you were to walk into a company 
for a consulting job, what would you want to have on this laptop?

Thanks to all!



-------------------------------------------------------------------
Is SPAM over-loading your e-mail server, disk space or bandwidth?
SurfControl E-Mail Filter is flexible, intelligent and policy-driven
protection.
http://www.securityfocus.com/SurfControl-security-basics2
Download your free fully functional trial, complete with 30-days of free technical support.
Stop SPAM before it stops you.
-------------------------------------------------------------------



-------------------------------------------------------------------
Is SPAM over-loading your e-mail server, disk space or bandwidth?
SurfControl E-Mail Filter is flexible, intelligent and policy-driven
protection.
http://www.securityfocus.com/SurfControl-security-basics2
Download your free fully functional trial, complete with 30-days of free technical support.
Stop SPAM before it stops you.
-------------------------------------------------------------------

Current thread:

Building a 'security consultant' laptop mr_polanco (Apr 11)
- RE: Building a 'security consultant' laptop Firegoblin Postmaster (Apr 12)
- RE: Building a 'security consultant' laptop Michael Cunningham (Apr 12)
- <Possible follow-ups>
- Re: Building a 'security consultant' laptop Paris Stone (Apr 12)
- RE: Building a 'security consultant' laptop Con or (Apr 12)
- Re: Building a 'security consultant' laptop H Carvey (Apr 12)