Penetration Testing mailing list archives
Re: Pentesting lab
From: chr1x <chr1x () sectester net>
Date: Tue, 29 Dec 2009 21:01:46 -0600
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I would recommend you the following Book: Build Your Own Security Lab: A Field Guide for Network Testing http://www.amazon.com/Build-Your-Own-Security-Lab/dp/0470179864 But in a personal opinion, you should arm what you need, not taking as a guide of other needs. If you want to work on malware analysis, just try to figure out what do you need in order to have a Lab for it. - --- [CubilFelino Security Research Lab] http://chr1x.sectester.net The computer security is an art form. It's the ultimate martial art." New Forum at: http://www.sectester.net. Share your knowledge! s3c.b3n escribió:
Hi all, I'm just starting my career a security specialist. I'm interested in creating my own penetration testing lab. To test exploits (metasploit epically) I need some targets (vulnerable servers). Are there such servers (VM images or ISOs) for general services like OWASP for web apps? or are there any scripts or applications that can create those vulnerabilities. My main goal is to get familiar with the existing tools. Thanks
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJLOsKaAAoJEENUkd83ZfT4Jd8H/2b38tudrH0mXLtjFPv2HN1I 0jU6T6AG2k/zFtkGxtYPFOqcei4I2ojsPB6TsUvzuNgR1lWlvuux4IZ5vPr2kJbV yNAg1pl9ojCx8IlEnNV5PP4o4xyPKO2dmo5XJh0/NHXbJa7b9EdIJN99JpmCT3ci /VBnAAg7+9S3tTgf3rY2kJRZiKXg9M+M1Oslvm/Ee4WF6waniZGf+MxxEmiI5xJx sAjyMmaECqXJ6HLfZH9LcZXUq/j2dRwfAgM1cGNTsyJgLfs8VFptE+oAAW94csex HF4CIVyXY1LNzR9xTehOzxp+1kcf9zqe89MI1WSS3p6yMmQfkCPNm2ApL39SPAc= =ivIo -----END PGP SIGNATURE----- ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Re: Pentesting lab chr1x (Jan 04)
- <Possible follow-ups>
- RE: Pentesting lab Swaminathan, Balaji (Jan 04)
- Re: Pentesting lab s3c.b3n (Jan 04)
- RE: Pentesting lab Elliot Fernandes (Jan 04)
- RE: Pentesting lab Swaminathan, Balaji (Jan 04)
- RE: Pentesting lab Elliot Fernandes (Jan 05)
- Hacking and Building Web Applications Swaminathan, Balaji (Jan 05)
- Re: Hacking and Building Web Applications Morgan Reed (Jan 06)
- RE: Hacking and Building Web Applications Swaminathan, Balaji (Jan 11)
- Re: Hacking and Building Web Applications Morgan Reed (Jan 11)
- Re: Hacking and Building Web Applications J. Bakshi (Jan 06)