RE: pentesting and macbook pro

["j w" <punk3rx () hotmail com>]

They have a nessus client/server out for os x, that works pretty good,
I haven't tried to get rainbowcrack or john to work, but i fought with hydra 
for a while with no success.

but on the bright side everything i've tried to run through parallels worked 
perfectly, so i'm sure you won't have a problem running core.


From: "Kyle Starkey" <kstarkey () siegeworks com>
To: "'DaKahuna'" <da.kahuna () gmail com>, <pen-test () securityfocus com>
Subject: RE: pentesting and macbook pro
Date: Thu, 27 Jul 2006 14:04:34 -0600

Thanks for the input folks... I am trying to cost justify the $3K for my new
MBP right now (anyone have any good security/pentest focused reasons to go
this direction)... Has anyone had any problems compiling/running any of the
unix flavor tools in OSX (john, nessus, hydra, rainbow crack)?  Or has
anyone had any problems with the windows stack being muddled thru paralles
and into OSX and as such stopping attack tools from working?

I know, I know... If you have a native *nix OS why would you be messing with
Windows... My only response is CORE...

Cheers
-K

-----Original Message-----
From: DaKahuna [mailto:da.kahuna () gmail com]
Sent: Monday, July 24, 2006 6:11 PM
To: pen-test () securityfocus com
Subject: Re: pentesting and macbook pro

Kelly,

  I am using a D-Link DWL-122 with my MBP and it works just fine.  OS
X sees it as a Prism 2 chipset and KisMAC uses it natively.  I have
also used it successfully on other systems with both Auditor and
BackTrack.

Other than having to use Rosetta every once in a while to get a DMG
to work correctly, I do not see any problems with the MBP.  I have
Windows XP installed under Paralles but have not spent any time with it.


On Jul 22, 2006, at 4:45 PM, kelly () cliffhanger com wrote:

> I just bought a macbook pro.  I can still take it
> back if I want to but, I'm wondering if any of you
> find the macbook pro (intel proc) useful for pen
> testing?
>
> I'm running an app called parallels.  Parallels is
> like vmware for mac.  But I'm not sure if I can
> build internal networks like vmware tho.
>
> My biggest question is ...
>
>  - What usb wireless cards are available that work
>    with the bootable linux distros (for pen
>    testing)?
>
>  - Is the macbook pro (intel) useful for pen
>    testing?
>
> --
> kelly
> http://home1.gte.net/res0psau/index.html#Hang-Gliding-Stuff
>
>       --    --
>         \  /
>          \/
>          /\
>         /  \
>       --    --
>
>
>
> ----------------------------------------------------------------------
> --------
> This List Sponsored by: Cenzic
>
> Concerned about Web Application Security?
> Why not go with the #1 solution - Cenzic, the only one to win the
> Analyst's
> Choice Award from eWeek. As attacks through web applications
> continue to rise,
> you need to proactively protect your applications from hackers.
> Cenzic has the
> most comprehensive solutions to meet your application security
> penetration
> testing and vulnerability management needs. You have an option to
> go with a
> managed service (Cenzic ClickToSecure) or an enterprise software
> (Cenzic Hailstorm). Download FREE whitepaper on how a managed
> service can
> help you: http://www.cenzic.com/news_events/wpappsec.php
> And, now for a limited time we can do a FREE audit for you to
> confirm your
> results from other product. Contact us at request () cenzic com for
> details.
> ----------------------------------------------------------------------
> --------
>


----------------------------------------------------------------------------
--
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to
rise,
you need to proactively protect your applications from hackers. Cenzic has
the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request () cenzic com for details.
----------------------------------------------------------------------------
--


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to 
rise,
you need to proactively protect your applications from hackers. Cenzic has 
the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------

_________________________________________________________________
Don’t just search. Find. Check out the new MSN Search! 
http://search.msn.click-url.com/go/onm00200636ave/direct/01/


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security? 
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's 
Choice Award from eWeek. As attacks through web applications continue to rise, 
you need to proactively protect your applications from hackers. Cenzic has the 
most comprehensive solutions to meet your application security penetration 
testing and vulnerability management needs. You have an option to go with a 
managed service (Cenzic ClickToSecure) or an enterprise software 
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can 
help you: http://www.cenzic.com/news_events/wpappsec.php 
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------