Re: pentest documentation

["Andres Riancho" <andres.riancho () gmail com>]

If your pentests are done using Linux you could use script for logging
all your console activity, tcpdump for the network, and screencast[1]
for the Xwindow things.

Cheers !

[1] http://en.wikipedia.org/wiki/Screencast

On 10/2/06, "Jürgen R. Plasser" <plasser () hexagon at> wrote:
> David Swafford wrote:
> > I have not used this personally but I have seen it demonstrated in an
> > ethical hacker training:
> >
> > A commercial product by the name of Core Impact.  It's capabilities are
> > enormous as it can capture the entire packet flow, key commands, and all
> > the necessary info and then break it out to nicely written reports.
> >
> > Link:  www.coresecurity.com/products/coreimpact/
>
> I've heard of Core Impact and even tried to get a price info. Their
> sales dpt did not respond ...
>
> It would be nice to have some open source tools for this tasks.
>
> Jürgen
>
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
> http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
> ------------------------------------------------------------------------


--
Andres Riancho
http://w3af.sourceforge.net/ Web App Attack and Audit Framework
http://www.securearg.net/ Secure from the source

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------